Summary
Overview
Work History
Education
Skills
Websites
Accomplishments
Certifications & trainings
Personal Information
Timeline
Generic

Fazil Ahad

Braga

Summary

Seasoned professional with extensive expertise in Network Security and Cyber Security operations, specializing in incident response. Proficient across a diverse spectrum of technologies, including firewalls, automation, and security standards. Dedicated to continuous learning and remaining updated with the latest advancements, I excel in overseeing security operations, implementing robust security solutions, governance frameworks, and risk management strategies, ensuring adherence to industry best practices and standards in dynamic environments. I possess significant expertise in leveraging Python for automation tasks. I develop programs or tools to automate, retrieve, and validate information, primarily through API calls with Palo Alto firewalls. This automation proficiency significantly enhances efficiency in security operations, leading to streamlined processes and faster response times.

Overview

12
12
years of professional experience

Work History

Perimeter Security Architect

Haleon ( Contract Via MRP GLOBAL UK )
01.2024 - 07.2024
  • As a Security Architech at Haleon, I played a critical role in transitioning and enhancing the network security infrastructure during the company's separation from GSK
  • I led a short-term remediation project to address and resolve significant firewall security vulnerabilities, developing and implementing robust security policies and automated solutions to ensure a secure and compliant network environment.
  • Lead a team of security analysts and engineers in monitoring security events, investigating potential threats, and responding to security events.
  • Developed, implemented, and managed a comprehensive IT security program aligned with industry best practices and security frameworks.

Technology Specialist– Network Security

Accenture
09.2020 - 01.2024
  • Detect and analyze security threats, gather intelligence on networks, and identify vulnerabilities.
  • Provide IT consultation for B2B and B2C, implement network and security solutions, manage DMZ and firewall configurations, and troubleshoot vendor firewalls.
  • Lead new projects, maintain detailed logs, records, diagrams, and reports for all network systems.
  • Offer technical guidance to customers, document procedures, and prepare quotations.
  • Conduct risk assessments, offer design recommendations, and implement forward and reverse proxy technologies.
  • Troubleshoot and resolve incident tickets while mentoring L1 and L2 team members.
  • Configure HIP profiles on Palo Alto for Global protect - VPN and mitigate security vulnerabilities by creating custom profiles for legitimate traffic.

Senior Administrator– Network Security

Wipro Limited
05.2019 - 09.2020


  • Security Issue Resolution:** Address viruses, hardware malfunctions, and critical firewall issues. Assist L1 teams with escalated problems.
  • Infrastructure Management:** Manage and troubleshoot global security infrastructure, including VPNs, firewalls (Palo Alto, Checkpoint, Fortigate, Cisco ASA), and Zscaler.
  • Incident Response:** Monitor and respond to security breaches, perform threat containment, RCA, and eradication. Analyze traffic with tools like Wireshark.
  • Policy and Rule Management:** Create and maintain security policies, firewall rules, and Azure cloud subscriptions. Optimize configurations using ALGOSEC.
  • Authentication & Authorization:** Develop and troubleshoot RSA, MFA, and other security protocols.
  • Client Advisory:** Provide network security improvement guidance to clients.
  • Technical Expertise:** Proficient in Windows PowerShell, Linux, and network traffic analysis.

System Engineer – Network Security

Sun Technology Integrators Pvt. Ltd
10.2017 - 04.2019
  • Experience in exploiting web services security vulnerabilities, including cross-site scripting, SQL injection, DOS, and DDOS attacks.
  • Worked with international client Macy’s (U.S).
  • Managed Web Application Firewall, Palo Alto Firewall (PA-5K series), and Panorama (M-500).
  • Designed, configured, and implemented Palo Alto Firewalls, including policy configuration, NAT/PAT, high availability (A/P), IP-Sec, and GlobalProtect VPN.
  • Handled incidents, troubleshooting, and issue resolution within set timelines.
  • Implemented change requests following the change management process.
  • Participated in capacity management and load test meetings, analyzing performance data like memory, CPU, and throughput.
  • Identified configuration flaws and took corrective actions by creating SOPs.
  • Coordinated with users to clarify change requests and guide them in the right direction.
  • Generated FireMon reports for redundant rules and optimized the rule base to enhance firewall performance.
  • Managed firmware upgrades.

Senior Analyst

HCL Technologies
03.2015 - 12.2016
  • Managed customer infrastructure security devices, including Firewalls, Proxy, and Email Gateway. Configured and troubleshot various VPNs (IPsec Site-to-Site, Remote Access, AnyConnect/Clientless SSL, DMVPN) and different firewall types (context, transparent, failover). Handled Cisco ASA Firewall configuration for NAT/PAT, access control lists, and policy NAT. Configured Reflexive, CBAC, Zone-based firewalls, and AAA Authentication (TACACS+, RADIUS).
  • Managed and troubleshot Catalyst Switches (2900, 3500) for STP, VLANs, VTP, Trunking, and security features (DHCP Spoofing, IP Source Guard, ARP Spoofing). Configured and troubleshot Cisco Routers (2800, 2900) for routing (Static, EIGRP, RIP, OSPF). Performed IOS upgrades and backups.
  • Addressed all network-related issues in routing, switching, and security. Installed and configured Checkpoint Firewall, implemented policies, and troubleshot source/destination issues. Worked with Active Directory, RSA Secure ID, and monitored network alerts via ITSM and Envision. Completed tasks per SLA.

Technical Analyst

Webtech Technologies PVT. LTD
06.2012 - 09.2014
  • Role: Level I Network Engineer
  • Providing hardware / software / network problem diagnosis resolution via telephone
  • Installation, Configuration, and troubleshooting Elastix VOIP server
  • Adding SIP accounts
  • Installation of Windows Vista and windows 7/8.1, Configuration, Troubleshooting
  • Handling No Internet Connection of Home US Based Users
  • Using Service now tools and handling tickets on it
  • Analyse, acknowledge & record each & every alert in the monitoring tools & handle the alerts as per their impact
  • Participate in on-going training and departmental development
  • Escalate complex problem to appropriate support specialists.

Education

Bachelors in Computer Science -

Caset College of Computer Science & Engineering, University of Kashmir

12th -

Govt. Boys Higher secondary school
01.2007

10th -

Sun Shine Science School
01.2005

Skills

  • Network Security Design and Implementation
  • Project Transaction Management
  • Risk Assessment and Compliance
  • Incident Response Planning
  • Technical Documentation
  • Skilled in Python for automation, focused on Palo Alto firewall API calls
  • Experience with engineering, using Ansible & Python
  • Firewall Configuration and Management
  • Firewall Scripting, Cleanup, Remediation, and Migration across various platforms such as Palo Alto, Panorama & Strata cloud, Checkpoint, Fortigate, Cisco ASA, Cisco Firepower and Vyatta
  • Expert in Strata Logging Server (formerly known as Cortex Data Lake /CDL ): Configuration, Troubleshooting, and Management
  • Experience using Jira, Archer & Confluence
  • Layer 7 Firewall and WAF deployment, including F5 and Panorama/Checkpoint Management server administration
  • Cloud security expertise in Azure and AWS environments
  • Familiarity with DevOps practices and tools (GitLab CI/CD)
  • VPN technologies: IPsec, Client-to-Site (C2S), Site-to-Site (S2S), and SSL
  • SIEM platforms: SolarWinds, Splunk, LogRhythm, HPNNM, Forti-Analyser
  • Firewall analysis with Tufin, Algosec & Skybox
  • F5 expertise covering LTM, ASM, and WAF functionalities
  • Proxy solutions administration with Zscaler and Bluecoat
  • Proficiency in Networking with a focus on Routing and Switching
  • IP Management using Infoblox
  • Experience of working in ITIL ITSM tool like Service Now
  • Knowledge of VXLAN EVPN
  • Authentication solutions including Cisco ISE, Multi-Factor Authentication (MFA), and RSA Security

Accomplishments

  • Received multiple appreciations from various critical customers for resolving complex issues, for completing planned activities, for identifying multiple risk factors at configuration level and for providing mitigation plans
  • Promoted by management to the Role of Level 3 (L3) from the Security Operations side in recognition of excellent performance at Wipro

Certifications & trainings

  • CCNA & CCNP (Cisco id: CSCO13187788)
  • ZCCA-IA Security Specialist - Zscaler
  • ZCA 2021 - Zscaler Certified Associate - Zscaler
  • Manage Security Risks - Google
  • Firewall Modules: Cisco ASA
  • VPN Concepts: (IPSec, SSL)
  • RHCE (Linux – RHEL7)

Personal Information

  • Father's Name: Abdul Ahad Malik
  • Date of Birth: 07/26/1989
  • Marital Status: Single

Timeline

Perimeter Security Architect

Haleon ( Contract Via MRP GLOBAL UK )
01.2024 - 07.2024

Technology Specialist– Network Security

Accenture
09.2020 - 01.2024

Senior Administrator– Network Security

Wipro Limited
05.2019 - 09.2020

System Engineer – Network Security

Sun Technology Integrators Pvt. Ltd
10.2017 - 04.2019

Senior Analyst

HCL Technologies
03.2015 - 12.2016

Technical Analyst

Webtech Technologies PVT. LTD
06.2012 - 09.2014

Bachelors in Computer Science -

Caset College of Computer Science & Engineering, University of Kashmir

12th -

Govt. Boys Higher secondary school

10th -

Sun Shine Science School

Similar Profiles

CREATE PROFILE
Fazil Ahad