Rahul Sharma

(October 2015 – April 2016 on contract with Silverlink Technologies & April 2016 - November 2018 on contract with

Wipro Technologies) November 2018 – Present (CitiBank NA permanent employee)

• Leading the Asia Pacific Data Security Team ensuring to provide excellent service within given SLAs
• Implementing and managing Splunk UEBA to detect Insider Threats, targeted attacks and fraud
• Threat Intelligence, asset identification, mitigation, risk assessment and threat mapping using threat modeling tools
• Interacting with global teams on a daily, weekly, and monthly basis for Insider threat use cases implementation across the organization
• Mitigating risk, monitoring cyber and aligning security control across global infrastructure
• Ensure that emerging risks are socialized with key stakeholders and mitigation strategies are in place
• Provide supervision of the Risk Control team's efforts and assist with prioritizing and addressing roadblocks
• Taking regulatory requirements as per country compliance and implementing them
• Managing the internal/ external audit requirements from business and regulators
• Collaborate with security product vendors for security enhancements and product delivery
• Splunk deployment/ migration/ expansion
• Working with global teams for feed onboarding on Splunk
• Leading security projects to ensure same security standards maintained globally within country specific regulatory requirements
• Remediation of Vulnerability Assessment issues till closure
• Assisting Team in monitoring information security alerts through SIEM to respond, triage, and escalate
• Collaborating with the engineering team to enhance the security design and infrastructure.
• Reduced security incidents through proactive monitoring, threat analysis, and incident response planning.
• Increased employee awareness of cyber threats with regular security trainings and informative presentations.
• Fostered a strong cybersecurity culture throughout the organization by promoting best practices and open communication channels between departments regarding information security concerns.

• Member of a team that installs, manages & supports network security hardware and software
• Actively working on Incidents/Reported issues and working toward providing resolution to users as per defined SLA and Security Policies
• Working on multiple firewalls like Checkpoint, Juniper, and Cisco
• McAfee ePO: ePO upgrade, ePO Migration, product updates
• Implementation, upgrade and maintain SIEM tools
• Provide level 2/3 support on escalated incidents from help desk
• Strong interpersonal skills to tackle team members and keep them motivated towards their work.

• Responding to security incidents, tasks within an ITIL incident management framework
• Analyzing packet level data for proxy and firewall issues
• Working on netForensics SIEM tool for alert monitoring and escalation to respective teams based on attacks and threats
• Handling incidents, tasks of Firewalls, Proxy, McAfee
• Performance and SLA reports as per requested by client
• Working on project activities for upgrading OS/firmware for multi vendor security products; Palo Alto, Checkpoint, Juniper SSL
• Managed ePO upgrade, ePO Migration, product updates
• Worked on Bluecoat proxy (Upgrade, Pac Script, Network Slowness)
• SOP creation and implementation for any new Changes in Network.