Summary
Overview
Work History
Education
Skills
Certification
Personal Information
Timeline
Generic

Sudhakar Govindaraj

Lead Cybersecurity Engineer
Singapore

Summary

With over 18 years of IT experience, I specialize in cybersecurity, Data Loss Prevention (DLP), threat assessments, risk reduction, and system deployment. I am looking for a challenging role where I can use my skills to strengthen defenses and protect critical assets. I have experience setting up advanced security measures, deploying DLP solutions, finding and fixing vulnerabilities, and creating strong security policies.

Overview

21
21
years of professional experience
4
4
years of post-secondary education
10
10
Certifications

Work History

Lead Cybersecurity Engineer

DACTA SG Pte Ltd
10.2021 - Current
  • Successfully set up and managed Trellix Network and Endpoint Data Loss Prevention (DLP) solutions, ensuring secure data transmission, email security, and comprehensive data protection across the organization
  • Secured air-gapped environments to protect critical systems from external threats by enforcing strict access controls and advanced security measures
  • Monitored and enforced security policies across Trellix Network and Endpoint DLP systems, including Device Control to prevent unauthorized data transfers via removable media, and Email Security to protect sensitive information transmitted through corporate email systems
  • Integrated AIP (Azure Information Protection) Classification with Trellix DLP, classifying documents based on sensitivity levels, and applying corresponding protection measures such as encryption, watermarking, and access restrictions to prevent unauthorized sharing or misuse
  • Developed and enforced data protection policies for documents, leveraging AIP Classification and Trellix DLP to ensure that sensitive data is automatically tagged, monitored, and protected, aligning with organizational and regulatory requirements
  • Led DLP system upgrades across both Network and Endpoint DLP, ensuring minimal downtime and adapting the environment to address evolving security threats and regulatory changes
  • Conducted high-level troubleshooting of Trellix DLP systems to resolve complex technical issues, including system misconfigurations, performance bottlenecks, and integration challenges with other security solutions, ensuring fast recovery and minimal disruption to operations
  • Enhanced Trellix DLP configurations for optimized performance, quickly resolving issues to maintain strong data protection measures and improve overall system efficiency
  • Managed ICAP scanning for web uploads and email, integrating with F5 Networks to ensure compliance and security of data transmissions before being routed through the web or email system
  • Enforced Device Control on Endpoint DLP to monitor and restrict the use of USB drives and other removable media, preventing unauthorized data transfers and enhancing endpoint security
  • Implemented Email Security with Trellix Network DLP to monitor and secure email communications, ensuring sensitive data is encrypted and unauthorized sharing is prevented

Lead Cybersecurity Engineer

DACTA SG Pte Ltd
10.2021 - 11.2023
  • Implemented and documented Trellix (McAfee) Endpoint Protection solution in an air-gapped environment, ensuring secure and isolated deployment
  • Installed and configured Windows and Linux virtual machines as prerequisites for Trellix (McAfee) Suite installation
  • Designed and documented Data Loss Prevention (DLP) security solutions, focusing on Trellix (McAfee) DLP products for comprehensive data protection
  • Deployed Trellix DLP Solutions and managed policies, including device control, to enforce security measures and compliance
  • Configured name-based IIS hosting for Trellix (McAfee) ePolicy Orchestrator (ePO) repositories to facilitate efficient policy management and accessibility
  • Applied hardening techniques to cypher suites on Windows and Linux servers to enhance cryptographic security
  • Provided support in accordance with SLAs and defined timelines, ensuring prompt resolution of issues and maintaining operational efficiency
  • Collaborated with internal and external support teams, as well as vendors, to resolve high-priority issues and integrate solutions effectively
  • Developed and maintained Standard Operating Procedures (SOPs) and detailed design documents for clarity and consistency in security practices
  • Designed and implemented workflows using Python and Dashmagiq to automate processes and improve operational efficiency
  • Configured and managed network firewalls, including Checkpoint and FortiGate, to safeguard network infrastructure against threats
  • Gained hands-on experience with Linux and Windows Servers, Active Directory (AD), Group Policy Objects (GPOs), Microsoft SQL Server, server hardening, and clustering technologies

Senior Engineer, Security

CPF Board
09.2015 - 09.2021
  • Investigated and diagnosed incidents to restore failed IT services as quickly as possible
  • Resolved incidents within specified Service Level Agreements (SLAs) and Operational Level Agreements (OLAs)
  • Documented troubleshooting steps and service restoration details
  • Provided specialized investigation and diagnosis for all incidents and service requests
  • Escalated major incidents to the Incident and/or Problem Manager
  • Applied processes and procedures to analyse workstation, server, and network incidents using SIEM tools (Carbon Black, IBM QRadar), behavioral analytics, and network analysis
  • Administered and integrated IBM QRadar SIEM with backend systems
  • Conducted computer and network forensic investigations, including network packet analysis
  • Investigated potential network attacks, such as DDoS, DoS, DNS attacks, and server exploitations
  • Performed analysis of system and security-related events using Microsoft Power BI

Senior Engineer, Security

CPF Board
09.2015 - 09.2021
  • Provided daily due diligence support for all Wintel platforms, collaborating closely with the Board
  • Integrated and monitored various vSphere components with CA UIM monitoring systems
  • Installed and configured Hyper-V and Windows Clusters
  • Managed Group Policy Objects (GPOs) across the Active Directory (AD) enterprise
  • Maintained and managed Domain Name Service (DNS) for the Active Directory (AD) enterprise
  • Installed, configured, and managed virtual infrastructure and virtual centers
  • Performed snapshots, cloning, cold migrations, and hot migrations
  • Installed and configured Microsoft SCCM 2012
  • Managed security patching with SCCM 2016
  • Oversaw and troubleshot two-way SFTP transfers across government agencies and banks, including CPF Board
  • Conducted daily system monitoring, ensuring the integrity and availability of all hardware, server resources, systems, and key processes
  • Reviewed system and application logs and verified the completion of scheduled jobs, including backups

Senior Engineer, Systems

NCS Pte. Ltd.
07.2014 - 09.2015
  • Built out two data centres and multiple sites to support McAfee infrastructure
  • Managed HIPS, DLP, Application Control, Change Control, and ENS policies
  • Built, configured, and deployed enterprise policy orchestrator and agent handler servers
  • Performed administrative tasks on McAfee ePO servers
  • Installed, configured, and maintained the McAfee framework and associated product suites
  • Conducted major version upgrades of McAfee servers and clients
  • Created custom policies for HIPS, DLP, and Change Control
  • Implemented, operated, and maintained network security devices
  • Maintained, configured, and troubleshot Linux-based appliances and servers, including McAfee IDS/IPS
  • Created programmatic documentation, standard operating procedures, and process checklists
  • Managed the functionality and efficiency of computers running on one or more operating systems
  • Maintained the integrity and security of servers and systems
  • Developed and monitored policies and standards for resource allocation
  • Reviewed policies and exceptions for various Endpoint Security modules and provided best practice recommendations

Senior Engineer, Systems

Executive Ship Management Pte Ltd
08.2006 - 07.2014
  • Provided third-level support for all server-related issues, ensuring resolution of complex technical problems and maintaining optimal system performance
  • Participated in comprehensive system builds, upgrades, migrations, and patch management, contributing to the successful deployment and enhancement of server environments
  • Implemented security policies and virus protection measures, safeguarding systems against potential threats and ensuring compliance with organizational security standards
  • Administered change management processes related to server upgrades and software installations, ensuring minimal disruption and adherence to best practices
  • Prepared and maintained detailed documentation of technologies, standards, and procedures, facilitating effective knowledge transfer and consistency across operations
  • Configured network infrastructure roles, file, and print services, optimizing network functionality and resource accessibility
  • Administered Microsoft Windows Servers (Active Directory), Microsoft Workstations, and network security devices, ensuring efficient management and security of IT assets
  • Supported BlackBerry Enterprise Server and provided administration for BlackBerry B9900 devices, delivering reliable user and administrative support
  • Performed data backup and restoration using Veritas Backup Exec 10.0, ensuring the integrity and recoverability of network data
  • Migrated to Windows 2003 Server/Exchange 2007 Server with BlackBerry Integration Services, enhancing system capabilities and user productivity
  • Maintained data backups through Veritas Backup Exec, traditional backup methods, and NetBackup utility, ensuring robust data protection strategies
  • Configured and administered Citrix Metaframe Presentation Server V 3.0, facilitating remote access and efficient application delivery

Asst. Engineer, Systems

The New Indian Express
12.2004 - 07.2006
  • Administered Windows Servers, systems, and network routers
  • Installed and maintained third-party software and tools
  • Configured and secured environments using Active Directory
  • Automated daily processes with scripts and policies to streamline efficiency
  • Configured and maintained virus protection with Symantec Enterprise Edition Antivirus
  • Administered printers and print queues on print servers
  • Implemented group policies and account policies through Active Directory
  • Troubleshot network and server performance issues
  • Supported end users with complex issues using Dameware remote tools and terminal services
  • Configured and maintained DNS, DHCP, and WINS
  • Managed data backups using Veritas Backup Exec and NetBackup utility

LAN Administrator

Technocrat Automations Pte Ltd
05.2004 - 09.2004
  • Configured and maintained Windows 2000 Server as a File & Print Server
  • Provided support for printers, scanners, and desktop end users over LAN
  • Designed and developed system integrations with existing infrastructure
  • Managed centralized data backups and restores
  • Configured interfaces for AB, ABB, and SAMSUNG PLCs
  • Configured SCADA software for system monitoring and control
  • Delivered training to users on PLC operations and SCADA system functionalities

Education

Bachelor of Engineering - Electronics & Communication

University of Madras
07.2000 - 04.2004

Skills

  • Cybersecurity

  • Information Security

  • DLP

  • SIEM

  • IPS

Certification

Trellix Certified Product Specialist

Personal Information

Visa Status: SPR

Timeline

Lead Cybersecurity Engineer

DACTA SG Pte Ltd
10.2021 - Current

Lead Cybersecurity Engineer

DACTA SG Pte Ltd
10.2021 - 11.2023

Senior Engineer, Security

CPF Board
09.2015 - 09.2021

Senior Engineer, Security

CPF Board
09.2015 - 09.2021

Senior Engineer, Systems

NCS Pte. Ltd.
07.2014 - 09.2015

Senior Engineer, Systems

Executive Ship Management Pte Ltd
08.2006 - 07.2014

Asst. Engineer, Systems

The New Indian Express
12.2004 - 07.2006

LAN Administrator

Technocrat Automations Pte Ltd
05.2004 - 09.2004

Bachelor of Engineering - Electronics & Communication

University of Madras
07.2000 - 04.2004

Similar Profiles

CREATE PROFILE
Sudhakar GovindarajLead Cybersecurity Engineer