Summary
Overview
Work History
Education
Certification
Technology Expertise
Personal Information
Awards
Timeline
Generic

Parasubramaniam Srithar

Technical Enablement Specialist - Security
Selangor, Malaysia

Summary

Driven, analytical, and committed to securing complex systems with deep understanding of network protocols and cybersecurity fundamentals. Familiar with threat detection and mitigation, and skilled in implementing robust security measures. Dedicated to protecting organizational assets and maintaining data integrity.

Overview

16
16
years of professional experience
10
10
Certifications

Work History

Ecosystem Technical Enablement Specialist

IBM Malaysia
04.2024 - Current
  • Responsible to help guide and support partners in embedding, sell-to, resell and influence scenarios with IBM’s strategic technologies.
  • Activities include deal support with partners selling to clients (i.e., PoX, RFX) and co-creating with partners (Joint Solutions, Assets, embedding of IBM technology).
  • Part of a cross-functional team that delivers a unique co-creation experience for partners to accelerate and scale the embedding and use of IBM’s strategic technologies to/in partner solutions.
  • Utilize contemporary technologies and approaches to design, develop, test, and co-deliver solutions across the IBM Security Product specializing in IBM Qradar, Guardium and Verify Saas and Access.
  • Work closely with the Ecosystem Engineering: Solution Architect(s) to determine the feasibility of the solution and collaborate with the partner’s and other Technology Engineers to implement a comprehensive solution.
  • Offered assistance in implementing and developing training programs.

Senior Manager IT Security & Safeguard

Bursa Malaysia Berhad
07.2020 - 04.2024
  • Develop and maintain a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers
  • Works with security operation center (SOC) to develop strategies and plans to enforce security requirements on execution of brand protection, advance malware analysis and threat hunting exercises based on the outcome of CTI analysis
  • Implement and monitor the cyber threat and risk library based on threat intelligence sources as well as to provide trend analysis of potential threats
  • Defines the security configuration baseline and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems
  • Develops and validates baseline security configurations for operating systems, applications, and networking and telecommunications equipment
  • Acts as a liaison between incident response leads and subject matter experts and to provide second-level support and analysis during and after a security incident
  • Performs control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls and recommends remedial action
  • Defines testing criteria for systems and applications
  • Execution of risk assessment activities, analyzing the results of audits to produce recommendations of acceptable risk and risk mitigation strategies
  • Lead critical vulnerability identification and response exercises
  • Perform detailed analysis on the vulnerability management reports for presentation to management and related parties
  • Track and ensure remediation of patches and fixes for open vulnerabilities within the agreed service level
  • Implement security architectures for cloud/hybrid systems and apply security hardening baseline and perform VAPT scanning’s and verifications
  • Responsible for configuring security controls on cloud environments
  • Implemented and developed operational standards, policies and procedures.

Senior Executive Security Operations

Maybank Shared Services Sdn. Bhd. (MSS)
04.2019 - 06.2020
  • Demonstrated hands on experience with leading security technologies: IPS, WIPS, APT, WAF, Endpoint Protection, PID, FIM, Logging tool
  • Manage and improve critical Network security infrastructure services such as IPS, WAF and Cloud Security Solutions
  • Periodic reviews of existing network and cloud based security solutions security and make changes, as needed, to the configurations
  • Perform system hardening review checking to support ORR process
  • Manage security vendor deliverable and plan for the yearly enhancement effort
  • Work together as a team for modification of tools and improvements
  • Provide assistance in security strategy, direction and implementation of security initiatives
  • Provide technical help to other processes such as Incident and Change Management

Security Consultant L3

DXC Technology
09.2018 - 04.2019
  • Received & validate the escalated events/incidents from the L2 Team
  • Valid incidents/tickets, L3 will perform deep dive analysis on reported tickets
  • Respond & perform technical security investigations on security incidents & any other operational tasks (security related), root cause analysis for all the escalated tickets
  • To review the tuning/process improvement recommendations received from L2, further validate the recommendations & prepare a drafted suggestion to the ASO/Client for their consent
  • Maintain Threat Intelligence documentations & procedures
  • Maintain documentations of all the security findings
  • Involved in new deals and infrastructure related projects
  • Provide market research on new level of threat or malware
  • Subject Matter Expert in Security technology

IP Security Engineer

Maxis Broadband
10.2015 - 09.2018
  • Lead the detailed security monitoring solution design and bill-of-quantity (BoQ) derivation
  • Manage deliverables against security policy and regulatory requirements
  • Key initiatives – IPS (Intrusion Prevention System) and SIEM (Security Information and Event Management)
  • Manage and ensure healthy capacity utilization to support growth for all lines of business
  • Timely capacity expansion to ensure no network congestion and no interruption to customers and services offered throughout the year
  • Lead the development and implementation of security incident monitoring and incident response processes and procedures
  • Collect, analyze, and correlate security events and use discovered data to notify system owners for potential security incidents and target of investigation
  • Provide accurate, consistence and reliable security event data in tickets and reports to system owners to help minimize service impact and implement effective risk remediation measures
  • Track incident investigation progress to ensure potential security incidents are properly resolved and reported within operations SLA
  • Provide weekly/monthly technical and management reports on cyber security incidents and network security
  • Support system security compliance review by performing vulnerability assessment, security policy compliance review, solution advisory and documentation

Senior Executive Cyber Incident Response Analyst

Zurich Shared Services
04.2015 - 10.2015
  • Actively monitor systems and networks for intrusions
  • Identify security flaws and vulnerabilities
  • Handle and investigate phishing and Spam emails
  • Produce detailed incident reports and technical briefs for management, administrators and end-users
  • Liaison with other cyber threat analysis entities

Security Consultant

CIMB Bank Berhad
05.2014 - 04.2015
  • Company Overview: dedicated Account (HP Enterprise Services)
  • Handles User ID Management (Creation, Deletion/Modification & Housekeeping) for Windows/Unix/VPN/RAS/FTP/Firewall Platforms
  • Manage and release Root/Administrator ID Management for all platforms
  • Store Root/Administrator ID in a safe box
  • Assign permission for UNIX /Linux file and folder
  • Prepare CLR monitoring reports on daily basis
  • Prepare NIPS/HIDS reports on weekly basis
  • Perform server hardening verification based on latest checklist
  • Perform VA scanning on quarterly basis
  • Provides 2nd level security incident investigation (analyze firewall/IDS/IPS/server event logs)
  • Run scripts on Unix/Linux servers and provide audit request items to auditors
  • Dedicated Account (HP Enterprise Services)

GSOC APJ Security Consultant & Shift Lead

HP Enterprise Services
04.2010 - 05.2014
  • Handle, Validate and Investigate Security Events (Intrusions/Malicious Activity/Security Events)
  • Working together with America & EMEA GSOC agents handling security alert of multiple clients
  • Perform hands on Security Investigation for Security Event alerts in GSOC dashboard
  • Liaising with System, Network & Firewall Administrator for investigations
  • Review and analyze logs files, system messages, event details, network packets for Investigations
  • Manage and follow up cases with Admin/Helpdesk, provide remediation for open cases (Security Event) and close cases accordingly
  • Assist in Alert handling process and documentations update
  • Assist in Alert Fine Tuning for specific IDS technology and accounts

Data Centre Technical Assistant

TMNET Sdn Bhd
11.2008 - 04.2010
  • Answered customer's inquiries regarding technical support to resolve problems over the phone or other electronic communication
  • Conducted computer diagnostics to be able to investigate and resolve technical issues that arose and provide appropriate technical assistance and support
  • Providing internal technical support and data center support
  • Monitor servers and applications (Internal), data Centre network infrastructure and Physical environment
  • Analyzed problems, performed tier 1 troubleshooting, communicated with datacenter officers
  • Conferred with customers to establish requirements for new systems and modification

Education

Secondary Education - Electric and Electronic Engineering Science Technical

Sek.Men Teknik Setapak
01-2006

Telecommunication Engineering

Telekom Multimedia College Kuala Lumpur
Malaysia
08-2008

Certification

Certified Professional Ethical Hacker (CPEH)

Technology Expertise

Tipping point, IBM Site Protector, McAfee Network Security Manager (NSM), McAfee ePolicy Orchestrator (ePO), Motorola Air Defense, Symantec Endpoint Protection Manager, Snort, Symantec MSS, Imperva, Websense Mail Gateway, Cisco IronPort, Netwitness Digital Investigator McAfee ePO, Symantec Endpoint Protection, Cisco MSE, ArcSight, Symantec Security Information Manager, NetIQ, QRadar, Splunk, Nmap, Nessus, Retina, Ethereal, Nexpose Rapid7, FireEye, CrowdStrike, CarbonBlack, Windows, UNIX (Solaris, AIX), Linux, Tripwire Enterprise, DCS, Symantec CCS, Imperva, Akamai, Cloudflare, CyberArk, Dual Control Password management, Safeguard, IBM Verify SaaS and Access, AWS, Microsoft Azure

Personal Information

  • Date of Birth: 07/21/88
  • Gender: Male
  • Nationality: Malaysian

Awards

  • HP GSOC APJ Star Performer 2004
  • HP All-star Award 2007
  • Maybank Security Dept Special Award 2019

Timeline

Ecosystem Technical Enablement Specialist

IBM Malaysia
04.2024 - Current

Senior Manager IT Security & Safeguard

Bursa Malaysia Berhad
07.2020 - 04.2024

Senior Executive Security Operations

Maybank Shared Services Sdn. Bhd. (MSS)
04.2019 - 06.2020

Security Consultant L3

DXC Technology
09.2018 - 04.2019

IP Security Engineer

Maxis Broadband
10.2015 - 09.2018

Senior Executive Cyber Incident Response Analyst

Zurich Shared Services
04.2015 - 10.2015

Security Consultant

CIMB Bank Berhad
05.2014 - 04.2015

GSOC APJ Security Consultant & Shift Lead

HP Enterprise Services
04.2010 - 05.2014

Data Centre Technical Assistant

TMNET Sdn Bhd
11.2008 - 04.2010

Secondary Education - Electric and Electronic Engineering Science Technical

Sek.Men Teknik Setapak

Telecommunication Engineering

Telekom Multimedia College Kuala Lumpur

Similar Profiles

CREATE PROFILE
Parasubramaniam SritharTechnical Enablement Specialist - Security