profile-pic
Vetted Talent

Surendra Purohit

Vetted Talent
Excelled in IT Infrastructure services and security for years. Actively pursuing dynamic position in the cyber security field, specializing in cloud security, network security, and identity and access management.
  • Role

    Security Architect / Consultant

  • Years of Experience

    8 years

Skillsets

  • Strategic Planning
  • AWS - 1 Years
  • HIDS
  • NIDS
  • C, c++
  • Incident Management
  • Threat Analysis
  • Information Security
  • IT Infrastructure
  • Identity Management
  • Disaster Recovery
  • Project Management
  • Risk Assessment
  • Vulnerability Assessment
  • Penetration Testing
  • CyberSecurity
  • Cloud Security
  • Network Security
  • Debugging
  • Shell Scripting
  • Python
  • Java

Vetted For

11Skills
  • Roles & Skills
  • Results
  • Details
  • icon-skill_image
    Infrastructure Engineer (Remote)AI Screening
  • 41%
    icon-arrow-down
  • Skills assessed :Ansible, AWS Cloud Formation, ISO 27001 Standards, Application Security, Cloud Infrastructure, HIPAA, SOC2, Terraform, AWS, Git, 組込みLinux
  • Score: 37/90

Professional Summary

8Years
  • Oct, 2022 - Present3 yr 7 months

    Cyber Security Consultant

    WSP India
  • Mar, 2020 - May, 20222 yr 2 months

    Senior Associate IT

    Eurofins IT Solutions India Pvt. Ltd.
  • Feb, 2020 - Mar, 2020 1 month

    IT Service Desk Analyst

    British Telecom
  • Jan, 2019 - Dec, 2019 11 months

    Staff

    Hinduja Global Solutions (HGS)
  • Dec, 2019 - Jan, 2020 1 month

    Technical Coordinator

    Deluxe Entertainment India Pvt. Ltd.

Applications & Tools Known

  • icon-tool

    O365

  • icon-tool

    Active Directory

  • icon-tool

    Azure Active Directory

  • icon-tool

    MDM

  • icon-tool

    SCCM

  • icon-tool

    VMware

  • icon-tool

    Linux

Work History

8Years

Cyber Security Consultant

WSP India
Oct, 2022 - Present3 yr 7 months
    Performed comprehensive risk assessments, validated security compliance, conduct log audits, and generate detailed security status reports.

Senior Associate IT

Eurofins IT Solutions India Pvt. Ltd.
Mar, 2020 - May, 20222 yr 2 months
    Conducted the information security risk assessment program; reviewed compliance with the information security policy and associated procedures.

IT Service Desk Analyst

British Telecom
Feb, 2020 - Mar, 2020 1 month
    Resolved LAN, network, SharePoint, O365, printer, VPN, TPM, Bitlocker, and SCCM issues.

Technical Coordinator

Deluxe Entertainment India Pvt. Ltd.
Dec, 2019 - Jan, 2020 1 month
    Troubleshot software and server issues for translators, ensuring uninterrupted workflow.

Staff

Hinduja Global Solutions (HGS)
Jan, 2019 - Dec, 2019 11 months

Major Projects

3Projects

Safer Faster and Isolations

    Worked over security risk assessments and compliance regulations for UK Rail network.

WECA TDH

    Worked on Risk assessment, involved in the cloud security infrastructure design.

Vulcan project

    Create security strategic documents, created security policies also made it implemented falls under ISO 27001 SVD Ground truthing.

Education

  • Bachelor of Engineering, Electronics and Communication Engineering

    Lakshmi Narain College of Technology, Jabalpur (2014)

Certifications

  • Ceh

  • Ccsp

  • Ccna

AI-interview Questions & Answers

The protocol that operates at layer 4 of the OSI model and provides connection-oriented data transmission is TCP. And at layer 4, we have TCP and UDP. TCP is the one that provides connection-oriented data transmission, whereas UDP is connectionless.

We secure the virtualized environment to prevent the VMs scale vulnerabilities by following the CIS benchmarking and applying the VM Hardening. We can ensure the

security of virtualized environment. Explain how will you configure multi factor

To migrate on-prem pipeline to a cloud-based solution without significant downtime, we would take the following step: First, we can check the critical systems. We have to ensure the critical business machines are identified. Based on those business accounts, business machines, we have to segregate, and then we do it while the operations are not active or the machines are not under operations. And then we can do it in batches by segregating it based on business criticality.

Implementing a new network security policy across an organization's layered infrastructure involves a structured process. It's like a new network security policy if we have to implement. First, we need to understand the scope and reason for implementing these policies. Once we have a clear scope and higher management approvals in place, we must identify the critical assets that need to be protected under the layered infrastructure. Based on this, we will design and implement the policy.

Yes. Based on 5 different steps, first thing is planning. I mean, this is basically working on the PDCA plan due to check and act framework in which the first step which we have to do is plan, and then we have to get the approvals from the senior leadership. And then we have to check the current controls, and then we have to implement the gaps that we have discovered. Once this is highlighted, then we can go ahead and do the continuous monitoring. Once I'm sorry, before continuous monitoring, we have to review the current architecture after the implementation of the weaknesses. And afterwards, once this is all complete, then we have to implement continuous monitoring.

If a Linux system is low on memory, the potential first step to managing this issue without adding more RAM is to check the services by using the command 'top', which will list all the services that are running on the system and consuming memory. We can then try to stop those unused services, which will reduce memory consumption.

Do you design default alternate network infrastructure for a financial institution that requires 1991 compliance? Simple. The best way is to comply. And when we're talking about a financial institution, we have to follow the compliance standards, which is like PCI DSS or the NIST framework, which is one of the major stakeholders in point of compliance and governance. So, for the specific financial compliance, we can use the PCI DSS, and that will be the best way to secure or create default tolerant network infrastructure.

The context of AWS, what options do you have for ensuring the high availability of an application serving a global audience? Just like load balancing. 1st, we can do scalability, which is the best option. Then, you see in S3, the storage service, which is already enabled with scalability. Secure, scalable storage, which is self-named, shows that. Also, if you're deploying VMs, we can do clustering. And by following this load balancing and clustering module, we can achieve higher application availability.

Is your experience with HIPAA and SOC compliance? So I have not directly worked on it, but I have an understanding of both. HIPAA is mainly involved when there's health insurance or health-related data to be disclosed or deemed. The full form is the Health Insurance Portability and Accountability Act. And SOC is a compliance involved when there are financial transactions or financial measures to be considered. Then we have to involve this SOC compliance. So, yeah, these ensure that we adhere to the sub-clauses and compliance policies created by considering both the compliance framework. This is how we'll ensure there are certain ways to do internal audits, external audits, and continuous auditing. This is how we can do this infrastructure. We can make sure that the compliance is added to the infrastructure.