profile-pic
Vetted Talent

Milan Soni

Vetted Talent

I am an accomplished cybersecurity professional with over seven years of practical experience in the implementation and management of enterprise network security solutions and IT security operations. I possess a bachelor's degree in computer engineering and a Master's in Cybersecurity, in addition to holding prestigious CCIE Security and CCNA Cyber Ops certifications. My reputation is founded on an unwavering dedication to work and a robust work ethic.

  • Role

    Technology Lead

  • Years of Experience

    7 years

Skillsets

  • DLP
  • NIST
  • Machine learning concepts
  • ISO 27001
  • IoT security
  • Information Security
  • IBM Qradar
  • GCP
  • Forensics
  • Operational technology security
  • CASB
  • Azure
  • AWS
  • AWS
  • network monitoring - 4 Years
  • Troubleshooting Skills - 5 Years
  • Splunk - 1 Years
  • Networking - 5 Years
  • syslog
  • IT operations - 7 Years
  • Infrastructure - 7 Years
  • CyberSecurity - 7 Years
  • Firewall as a service
  • Zero Trust
  • WireShark
  • vulnerability assessments
  • VPNs
  • Security - 7 Years
  • SolarWinds
  • SIEMs
  • Security Orchestration
  • security frameworks
  • SCADA security
  • SASE
  • Penetration Testing
  • automation
  • compliance standards
  • VPNs
  • Firewalls
  • Security operations
  • Information Security
  • DevSecOps
  • Scripting
  • Root Cause Analysis
  • Forensics
  • DevOps
  • Cloud Security
  • Network Security
  • SIEM - 3 Years
  • Load Balancing
  • Python - 2 Years
  • Python - 2 Years
  • Artificial Intelligence - 2 Years
  • Troubleshooting
  • incident response procedures
  • security assessments
  • Security Orchestration
  • network monitoring
  • Intrusion detection/prevention systems
  • Infrastructure security
  • SIEMs
  • Next-Gen Firewalls
  • Artificial Intelligence - 2 Years
  • Network Infrastructure - 7 Years
  • TCP/IP Protocols
  • Zero Trust
  • DLP
  • CASB
  • SWG
  • SASE

Vetted For

11Skills
  • Roles & Skills
  • Results
  • Details
  • icon-skill_image
    L3 Senior Network Engineer (Remote)AI Screening
  • 66%
    icon-arrow-down
  • Skills assessed :Disaster Recovery, Project Management, Scripting languages, VERSA SDWAN, Azure/AWS/GCP, Firewall, ITIL v3, Network Infrastructure, Network Performance, RedHat, SIEM
  • Score: 59/90

Professional Summary

7Years
  • Jan, 2024 - Present2 yr 6 months

    Consultant

    CYBERCORE TECHNOLOGIES
  • Jul, 2023 - Jan, 2024 6 months

    Technology Lead

    INFOSYS LIMITED U.S.
  • Nov, 2019 - Jan, 20222 yr 2 months

    Security Consultant

    IBM INDIA
  • Dec, 2015 - Sep, 2016 9 months

    IT Operations Associate

    ACCENTURE INDIA
  • Aug, 2017 - Dec, 20181 yr 4 months

    Security Engineer

    WPG CONSULTING INDIA

Applications & Tools Known

  • icon-tool

    Algosec

  • icon-tool

    Splunk

  • icon-tool

    ServiceNow

  • icon-tool

    Syslog

  • icon-tool

    Wireshark

  • icon-tool

    AWS

  • icon-tool

    Azure

  • icon-tool

    GCP

  • icon-tool

    AWS

  • icon-tool

    GCP

  • icon-tool

    Python

  • icon-tool

    Palo Alto

  • icon-tool

    Checkpoint

  • icon-tool

    Fortigate

  • icon-tool

    Palo Alto

  • icon-tool

    Zscaler

  • icon-tool

    Cisco ASA

  • icon-tool

    Segmentation

  • icon-tool

    DNS

  • icon-tool

    SSL

  • icon-tool

    VLAN

Work History

7Years

Consultant

CYBERCORE TECHNOLOGIES
Jan, 2024 - Present2 yr 6 months
    Provide IT consulting services, employee training, certification support, presales support, systems analysis, technology recommendations, process optimization.

Technology Lead

INFOSYS LIMITED U.S.
Jul, 2023 - Jan, 2024 6 months
    Experience with firewalls, VPN solutions, designing, implementing, supporting firewall solutions, security assessments, managing change control, incident response procedures.

Security Consultant

IBM INDIA
Nov, 2019 - Jan, 20222 yr 2 months
    Network security infrastructure, next-gen firewalls, VPNs, automated policy changes, security checks, threat mitigation, SIEM for security log analytics.

Security Engineer

WPG CONSULTING INDIA
Aug, 2017 - Dec, 20181 yr 4 months
    Configured Cisco Virtual FMC, ASA Firepower, planned, designed, implemented network security solutions, managed NGFWs, ISE, Zero Trust, SD-WAN.

IT Operations Associate

ACCENTURE INDIA
Dec, 2015 - Sep, 2016 9 months
    Managed firewalls, VPNs, networking fundamentals, incident management, response, ITIL framework, SLA adherence, change advisory calls.

Achievements

  • Eminence in Delivery Award - IBM (2021)
  • Eminence in Delivery Award - IBM (2021) For outstanding performance and contributions to IBM Security

Major Projects

3Projects

Mercedes Benz/Diamler Truck

Infosys
Jul, 2023 - Jan, 2024 6 months

    IT Infrastructure Security/Cloud Security/ Cybersecurity/ Network Security

LAFARGE HOLCIM

Nov, 2019 - Jan, 20222 yr 2 months
    Spearheaded implementation/maintenance of solutions; ensured seamless deployments.

MARRIOT INTERNATIONAL (STARWOOD HOTELS AND RESORTS WORLDWIDE)

Dec, 2015 - Sep, 2016 9 months
    Collaborated with operations/engineering teams in 24x7 security operations within the ITIL framework.

Education

  • MS in Cybersecurity

    California State University, Dominguez Hills
  • B.E in Computer Engineering

    C. K. Pithawala College of Engineering and Technology

Certifications

  • CCNA)

  • Ccna cyber ops

  • Ccie security

  • Algosec security user

  • Cisco certified specialist - security core

  • Cisco certified specialist - network security firepower

  • Fortinet nse 1

  • Fortinet nse 2

  • Microsoft azure fundamentals

  • Zscaler zero trust architect certified

  • Palo alto certified network security engineer

  • Microsoft azure administrator

  • Ccna

  • Sncf

  • Scor

  • Az-104

  • Az-900

  • Fortinet nse 1&2

  • Pcnse

  • Zscaler zero trust architect

  • Fortinet (nse 1&2)

  • Cisco security architecture for system engineers sase

  • Zscaler zero trust architect(ztca)

AI-interview Questions & Answers

I'm a bachelor of computer engineering, and recently, I completed my master of science in cyber security from California State University. I'm an experienced professional with over 6 years of experience in the network security domain. I've worked for companies like Accenture, IBM, and Infosys as a network security engineer, IT operations associate, security engineer, and technology lead. I managed teams with more than 5 members when I was working with Infosys and also during my tenure in IBM. If you can see my LinkedIn profile, then I have a skill set, experience, education, and achievements that are completely aligned to these roles. I can say that a senior network security or a senior network engineer role is completely aligned to my profile and is the one that I'm looking for as an ideal role. This is my introduction, and let's get started.

So my approach to migrating an enterprise system to AWS cloud while ensuring high availability and security. I prefer to use connections from the on-premise devices, networking devices at the router or the firewall network security devices, the perimeter devices to the AWS VPC. With the help of the VPN and the inbuilt tools for migrations from on-premises to the cloud, irrespective of its vendor, such as Azure or AWS. I will follow the guidelines accordingly and maintain high availability and security. Security can be achieved in terms of the VPN kind of stuff or with the help of a 0-trust architecture. And also, we can ensure that with this approach, I can achieve high availability as well. So, these are a few steps of my approach to migrating an enterprise system to the cloud while ensuring high availability.

So, the process of managing and implementing SD-WAN technologies across a multidigital company, I suggest that with the help of the Cisco DNA Center Assurance, it's a network management technology. With the help of a single dashboard, we can manage the SD-WAN technologies, implement and deploy them across regions or different locations of a company, whether it's a site. So, with the help of SD-WAN and the Cisco DNA Center Assurance, we can easily manage networking technologies because these are the new technologies we are using. They are completely different from the traditional ones, where earlier we used to manage a lot of different devices, which was time-consuming and a tedious task for the administrator. But with the new software-defined based SD-WAN technologies, we can easily deploy things irrespective of the communication media, whether through MPLS, Wi-Fi-based access, or internet-based access through any media, including Wi-Fi or mobile internet. So, we can say that I can easily define the process of managing and implementing SD-WAN technologies by introducing Cisco DNA Center, which eases our task to deploy things, onboard devices, and manage devices across the globe or different regions.

So what strategy would you need to employ to ensure PCI DSS compliance for every network point of sale system in a retail company? Yeah. So, we can say that we can use a security orchestration tool, called AlgoSec. It's a huge tool that we can integrate with different devices, and we can onboard the devices from different vendors, irrespective of the vendor, like Juniper, Palo Alto, Cisco, and the Cisco Meraki, etcetera. We can onboard all the devices, including networking devices, as well as network security devices like firewalls, IDS, IPS, and routers and switches. And we can manage them from a single dashboard, regardless of the number of devices. Not only is it PCI DSS compliant, but there are other regulators and compliance reports available in AlgoSec through which we can manage and generate reports. Apart from compliance, we can do a lot of things, such as rule remediations, risk mitigations, and enhance the security of the devices.

the challenges of incorporating macfp ips into the existing security infrastructure yeah sure so the integration process and challenges depend on the type of infrastructure and the existing infrastructure we need to look into it properly and based on the existing infrastructure we need to check where it fits in and where we can fit this integration of a macfp ips and depend on the criteria and business requirements we can follow some simple procedures of steps in order to incorporate this ips and we cannot say that it's an impossible task but it's a challenging task and during integration if there are any issues for example in a multi-vendor environment how mcafee can work perfectly with the different vendors or how it is compatible that depends on the requirement and the things we need to achieve and we need to follow the basic guidelines and procedures available over the internet or through mcafee resources in order to integrate the things and if we face any issues then we can try to contact the mcafee support team and they can help us to resolve the issues related to hardware or software bugs apart from that if we are good with the software bugs and hardware issues then we can easily configure the things and based on the configuration we can achieve the integration of mcafee

Key steps of deploying and securing an IIS server in an enterprise network. My suggestion to deploy not only the IIS server, but any server in an enterprise network, is to make sure that we can disable the ports which are not required. Disabling the unused ports helps to avoid end mapping activity and make it easier to detect if something is open, allowing attackers to attack the server and leverage that particular port and service. To secure the server, we need to make sure that we can use certificates installed properly, from a third-party or a globally recognized entity, to access the server over a web browser. We also need to authenticate the channel of communication between the client and server with SSL communication. So, these are the some steps that we can use for deploying and securing an IIS server in the enterprise network.

How would you leverage a pulse scripting to automate a recurring networking configuration start? To be very precise, I haven't used the pulse scripting, but I used Python scripting to automate recurring configuration tasks, for example, using a PowerShell script to manage a large number of firewalls in the environment. To log into the firewalls and take the latest configurations, backups, and seal them into a particular drive is a tedious task that daily increases efficiency and performance. Apart from that, we already have tools available in the market. Also, if the company wants to use tools like AlcoSec, or different SolarWinds, or different kinds of tools to meet their business requirements, we can achieve that through automation. So, this kind of activity I already performed in my previous job tenure.

So, necessary steps that I take to configure the Palo Alto firewalls to meet specific security requirements. Yeah. Sure. So, by default, the firewall or the firewall in built is developed in such a way that everything is in block state, or we can say it's a too tight situation. So, we need to understand the business requirements and include the ITIL process or the change management process that helps to keep track of the entire changes that are going to be taken place or that are already taken place. In order to overcome or help in security auditing and compliance. So, we can use either a third-party tool called AlgoSec to configure things or push policies or rules to the security firewall, or we can use the firewall dashboard, like the Palo Alto Panorama dashboard, through which we can manage multiple firewalls and push configure things and push policies based on requirements. Before pushing our configuration onto the firewall, I suggest using the change management ticket process, which requires some kind of discussion with stakeholders, getting approvals from higher authorities, and justifications behind its implementation. And based on that, we can configure the firewall or firewalls or any other devices based on requirements. And after we configure the firewalls, we can use third-party tools or other techniques with the help of which we can know how secure the device is, based on that report. For example, consider the AlgoSec tool that helps us to fetch the report to have a minimum baseline configuration, how much secure our device is. We can increase the security of devices by hardening the device with the help of configurations. And we can mitigate this risk with the help of such kind of reports generated by third-party tools. And we can achieve and enhance the security of devices based on requirements.

Create a comprehensive project timeline for our clients network upgrade, which involves replacing all HSRP protocols with VRRP for device redundancy. So, comprehensive project timeline, we can say that it's not a huge project based on replacing all SSRP protocols with VRRP for device redundancy. we need to follow some vendor guidelines. for example, if we if we have a Cisco environment, then we need to consider, what are what all are the steps needs to be required. And after taking such steps what are going to be the outcome. And we can say that we need to create a lab kind of environment where we achieve this, where we achieve this replacing, HSRP, protocols with VRRP, and then we can put it into the test environment and make sure that if everything goes, if everything is working required, we need to also take help of tech support in case if we, if we encounter with the bug reports or kind of compatibility issues or any kind of such hardware specifications requirement.

Consider ITIL version 3 framework. How do they influence your approach to network operation and incidents? Yes. So, I'm familiar with the ITIL process, as I work for companies like Accenture, IBM, and Infosys. We use the ServiceNow tool for network operations and incident management, which helps us manage changes required on network devices, implement or deploy configurations on network devices and security devices, track records, and obtain business justifications before getting necessary approvals. We then attach approvals and present the requirement in front of the CAB business calls, explaining the need behind it after each phase is passed. This allows us to deploy things with defined configurations. If something goes wrong after configuration, we have a rollback plan as well. The incident management process or network operations, with the help of ITIL, enables us to manage a number of tickets from different teams using the ServiceNow ticketing tool. This helps us follow the ideal process required to meet security and compliance requirements.

The benefits of employing NEC within an organization's network in terms of security and access control. Obviously, if you consider an example of the Sys Wise, which is the most famous technology compared to all other vendors currently running in the market. It has been in the market for a long time and is continuously being evaluated and enhanced to improve its performance. So, there are a lot of benefits of employing NEC because network access control is a technology that allows us to control network devices in our environment. This is required in terms of security and access control because we need to ensure that only legitimate devices can access our network based on their identity and identifications. For example, if a device wants to enter the network, it needs to authenticate with the Cisco or network access control technology, with the help of the switch. The switch, on behalf of ISE, will check the authentication on the device and grant access to ISE or the network access control technology. With the help of network access control, we can also control access and enforce security policies to increase the security posture of devices on the network. We can achieve a lot with the help of network access control.