Candidate Profile

Contact image_pdf image_print

Nur Krishna Sidharta

 Indonesia Category : Computer/Information Technology  Male Member from 1 month

Network Security Administrator
A Recognised Expert in Information Security, Experienced in All Aspects of Network Engineering and Security

Self-motivated and results-focused network security expert with over 14 years’ experience in networking, server administrations, cyber and operation security, wireless technology, penetrating testing, and McAfee network security product operation within banking and financial organisations.
Solid expertise in UNIX & Linux, technical troubleshooting, email system (exchange, horde, Zimbra), wireless LAN technologies, intrusion detection system, and internet technologies, such as firewall, router, switch, VPN, DNS, and proxy, as well as administrated WSUS, Windows Servers & LANDESK Patch Management.
Demonstrate experience with security incident handling using SIEM tools, very persistant to solve the incident problems, including investigating issues to determine if there is a real security incident or a false positive, notifying customers if there is a security incident, and sending customers standardised emails specifying the steps they need to take to fix problems

CAREER ACCOMPLISHMENTS
• Supervised Cisco Sourcefire and FireEye appliances, and penetration test and forensic investigation of internal and external network, furthermore integrated agile and scrum methodologies into software engineering processes.
• Made network security exist in Banking from nothing, supervised, design of security, (low and high level design) architecture, followed the project, selected security devices, placed in 2 Data Centers and finally get them online.
• Familiarity in general networking technologies, which including TCP/IP, Routing, VLAN, and Wireless, Web Application (Apache/IIS), and OS Hardening, and Wireless IPS.
• Skilled in McAfee network security product operation, including operated firewall sidewinder, intrusion prevention system (IPS), EPO antivirus, anti-Spyware, malware and endpoint security, data lost prevention (DLP), proxy web gateway, network access control (NAC), and email gateway (Antispam), and vulnerability scanner found stone.
• Secured Head Office Building and Data Center with very proctected Wireless Intrusion Prevention System within blocks
• Succeded in design make a special unit called Secuty Operation Center (SOC) from scratched (designed, implemented, segregation duties handling and security operation with Tier 1 and Tier 2

PROFESSIONAL EXPERIENCE
PT. BANK TABUNGAN NEGARA (BTN)  Jakarta, Indonesia 2002 – Current
Network and Security Operation Center
Delivered executive security summary, risk management, Virtual Private Network (VPN) Connection for specific applications. Involved in incident investigation, protection for infrastructure applications, and Involved in protection for virtualisation areas, such as VMware and Hyper Support, coordinated security implementation, advice design and implementation of security control in technical architecture. Conducted forensic investigation, application and web penetration testing and led penetration test for internal and external network, including wireless network two and three times in a year. Analysed forensic capabilities, vulnerability and security to identify trend and weakness with patching system.
Key Accomplishments:
• Effectively installed, and examined, deploy firewall configurations, and network security device intrusion prevention System (IPS), provided deep analysis on attack signatures.
• Prepared firewall switching operation, and migration among data centres as needed in twice and three times in years, also protected Network against cracker attacks.
• Administrated security device Network Access Control (NAC), email server protection using Antispam, and information security emergency response program including emergency response teams.
• Organised centralised antivirus environment, antispyware, malicious code and vulnerability management tools, including a network scanner to provide continuous monitoring of the state detection and vulnerabilities.
• Superintended operation and support of Data Lost Prevention (DLP), audit security’s issues, information security incidents, hardening Operating System (Windows and Linux), internal and external leased line connections and security web applications.
• Monitored clients using Proxy System, and security logs besides responding to security problems and intrusions, and analysed Security event and incident respond (SIEM) device to provide advice to Security team.

PROJECTS ACHIEVEMENTS
2017
• Lead proof of concept (POC) on TrendMicro Antimalware and Bitdefender, on order to choose the best product to use on a daily basis.
• Effectively designed and installed Tenable SecurityCenter and Imperva Database Firewall both Dual Data Center in Banking Environment for strengthen Defense perimeter and Security Monitoring and Operation Center SOC
2016
• Resourcefully made data centre for high redundancy data centre, and executed New Wireless IPS technology in the headquarters office, moreover built security operation centre (SOC), and supervised services, and late project end of years.
• Effectively designed and installed advanced persistent threat (APT) for Complex Network, and Secure Dual and High Availability FTPS, managed file transfer for the DUAL data centre.
• Expertly installed Mail Anti-Spam Fortinet, Web Gateway Proxy Fortinet, and beyond trust patching server and vulnerability manager on the complex Farm Server.
2015
• Adeptly instigated Aruba Network Access Control on complex Network, specific Firewall for the database, including oracle database firewall.
• Design and implement Advanced Persistent Threat (APT) for Banking Network Security, IPS on Building (using Cisco WIPS, and virtualisation security using trend micro deep security.
• Involved deeply in multi complex farm servers hardening/patching using WSUS, and security compliance, and directed Proof of Concept (POC) on Advanced Persistent Threat FIREEYE, McAfee, and Advanced Threat Defense (ATD) and Cisco Sourcefire.
2014
• Led penetration tests on reputable wireless security devices like Aruba Network, Motorola Air Defence. Cisco WLAN Controller Wireless, Fluke Networks and also Airtight Wireless Network.
• Executed CyberArk Password Management System on Farm Servers, and controlled test and proof of concept Cisco Sourcefire Next Generation IPS on our own complex network.
2013
• Shepherded Proof of Concept (POC) on some Web Application Firewalls.
2012
• Accomplished Security Information and Event Management (SIEM).
2011
• Recognised Security (Multi-tier Firewall, PS – Juniper -Checkpoint) for Internet Banking, and managed Token System for payment System in Internet Banking.
• Actively delivered security assessment and penetration tester for the whole system and Security Assessment.
• Structured phase II Total Solution Security for Dual Data Centre and All Branches, High Availability (HA) Firewall, Firewall Profiler, IPS, Antispam, Proxy Web Gateway, Network Data Lost Prevention, Network Access Control, Endpoint Security Antivirus, Host IPS, and Encryption also Security fingerprint and CCTV System.
2010
• Planned f5 load balancer, such as link controller and global traffic manager, local DNS, https encryption and digital certificate for dual data centre.
• Designed Phase I Total solution security for dual data centre and all branches, Firewall, firewall profiles, IPS, antispam, proxy web gateway, host IPS, encryption, network data lost prevention, network access control, endpoint security antivirus.
2009
• Implemented cisco wireless and its security device for backbone, and LANDesk for patch management, Inventory and Asset, Transferred all System from Windows NT PDC to Windows 2008 Active Directory.
2008
• Achieved security assessment for all branches, implemented WSUS patch management, and designed IPS tipping point at head office.

EDUCATION, CERTIFICATIONS AND TRAININGS
University of North Sumatera, Medan, Indonesia
Bachelor in Electrical Engineering, Major Computer System
Certifications
Certified Ethical Hacker (CEH) from EC Council
Certified Cisco Network Associate from (CCNA) CISCO SYSTEM
Computer Hacking and Forensic Investigator (CHFI) from EC Council
Mcafee Firewall Sidewinder from Mcafee University Singapore
Mcafee EPO Anti virus from Mcafee University Singapore
TRAININGS
Trained Certified Information System Security Professional (CISSP).
Trained Computer Hacking and Forensic Investigator (CHFI) EC Council
Trained Certified Ethical Hacker (CEH). From EC Council
Trained McAfee Firewall Sidewinder at McAfee University Singapore.
Trained Mcafee EPO Antivirus at McAfee University Singapore
Trained Project Management Professional (PMP)
Trained Administrating Windows 2008 Server at Microsoft Indonesia
Trained Load Balancer F5
Trained Administrating Windows 2003 Server at Microsoft Indonesia
Trained Administrating Windows 2000 Server at Microsoft Indonesia
Trained Symantec Antivirus Enterprise
Trained Administrating Windows 2012 Server at Microsoft Indonesia

Views All Time
1
Views Today
1
Personal Details

Professional Title

:

Network Security Engineer and Operation Center (SOC)

Nationality

:

Indonesia

Date of Birth

:

1972-03-05

Gender

:

Male

Professional Details

Years of Experience

:

14

Career Level

:

Middle-Level Management

Expected monthly Salary (In QAR)

:

15000

Skills

Network Security WIPS Firewall IPS DLP Security Operation Center Malware Analysis Antivirus Advanced Persistant Threat (APT) Domain Controller LDAP Linux Email Server windows hardening

Education

  • University of North Sumatera, Medan, Indonesia
     2002 :  computer system
      Grade / GPA  : 2.75
      Qualification  : electrical engineering

Experience

  • Bank BTN
     2002 - Present :  Network Engineer
      Job Duties  : 
    PT. BANK TABUNGAN NEGARA (BTN)  Jakarta, Indonesia 2002 - Current Network and Security Operation Center Delivered executive security summary, risk management, Virtual Private Network (VPN) Connection for specific applications. Involved in incident investigation, protection for infrastructure applications, and Involved in protection for virtualisation areas, such as VMware and Hyper Support, coordinated security implementation, advice design and implementation of security control in technical architecture. Conducted forensic investigation, application and web penetration testing and led penetration test for internal and external network, including wireless network two and three times in a year. Analysed forensic capabilities, vulnerability and security to identify trend and weakness with patching system. Key Accomplishments: • Effectively installed, and examined, deploy firewall configurations, and network security device intrusion prevention System (IPS), provided deep analysis on attack signatures. • Prepared firewall switching operation, and migration among data centres as needed in twice and three times in years, also protected Network against cracker attacks. • Administrated security device Network Access Control (NAC), email server protection using Antispam, and information security emergency response program including emergency response teams. • Organised centralised antivirus environment, antispyware, malicious code and vulnerability management tools, including a network scanner to provide continuous monitoring of the state detection and vulnerabilities. • Superintended operation and support of Data Lost Prevention (DLP), audit security’s issues, information security incidents, hardening Operating System (Windows and Linux), internal and external leased line connections and security web applications. • Monitored clients using Proxy System, and security logs besides responding to security problems and intrusions, and analysed Security event and incident respond (SIEM) device to provide advice to Security team.