Summary
Overview
Work History
Education
Skills
Timeline
Generic
Alireza Khodarezaei

Alireza Khodarezaei

Toronto,ON

Summary

Highly skilled and experienced Cyber Security professional with a proven track record of protecting sensitive information and mitigating security risks. Possesses in-depth knowledge of network security, threat intelligence, vulnerability management, and incident response. Adept at analyzing complex security systems, identifying vulnerabilities, and implementing effective solutions. Strong understanding of industry best practices and compliance regulations. Excellent communicator and team player, able to collaborate with cross-functional teams and educate employees on security awareness. Committed to staying updated with emerging threats and technologies to proactively safeguard organizational assets. Seeking a challenging role in Cyber Security to utilize my expertise and contribute to the protection of critical information and infrastructure.

Overview

14
14
years of professional experience

Work History

Security Engineer

TD
06.2022 - Current
  • Network Edge security Engineering]
  • Accomplished Migrating applications from Verizon CDN to Akamai CDN
  • Creating CDN configuration for application such as integration with Splunk, Azure sentinel onboarding the Properties into Security analytics
  • Performed Staging changes and consulting application team how to do perform spoof testing and resolving any issue as occurred
  • Plan changes and creating service now ticket and participate in change management control board
  • Analyzing traffic from Akamai security analytics and consulting team on security threats and false positives before moving the application properties into Deny Mode or mitigation mode
  • Experience working with Shape (Bot manager Solution from f5) for analyzing traffic
  • Familiar with framework such as PCI/DSS , NIST and ISO /IEC 27001

CYBER SECURITY Consultant

Scotiabank
01.2022 - 06.2022
  • Identity and access Governance]
  • Onboarding 20 critical information asset application in SailPoint (Logical Access Management) for provisioning and deprovisioning automation with ServiceNow
  • Developing Access Control Matrix for Role entitlements, segregation of duties and obtaining approval from enterprise governance access prior to onboarding
  • Assisting application team for developing feed files or leveraging connector such as active directory on Azure AD for automation
  • Perform testing in Pre-Prod and running Identity related reports and obtaining sign off on Passed exit criteria before release into Production

CYBER SECURITY Specialist

ROGERS COMMUNICATIONS
06.2018 - 12.2021
  • Security Arch Engine & Ops]
  • Designed, engineered, and implement ISE infrastructure for central Authentication, authorization and accounting for Rogers Enterprise network and Rogers corporate management network
  • Worked with security architect to implement Netscout PCAP solution for Rogers Management Network and enterprise network
  • Worked with Rogers business partner closely to protect application, properties, and APIs with Akamai WAF
  • Worked closely to different team across organization to understand application architectures and give them best solution for protecting their properties with Akamai
  • Participate in day-to-day operation of Key management solutions such as Oracle key vault for on premise and KMS AWS such as administration of keys creating the wallet, or IAM related issue
  • Helped SOC to automate some AWS workload to achieve better incident response and remediate incident as occurred
  • Hands on experience SIEM such as Qradar and Splunk regards to Rules and offense creation to achieve better incident response process
  • Participate in cloud security-monitoring project and worked closely with MSSP to hygiene existing rule of Qradar in regard to AWS
  • Responsible for TrendMicro SAAS solution from operation perspective and worked with cloud operation team to resolve some workload related to EC2 and endpoint security
  • Worked with TrendMicro to resolving some of agent issues
  • Familiar with threat intelligence platform such as threat connect
  • Experience worked with compliance SaaS solution such as cloud conformity integration to AWS infrastructure to achieve compliance based on some of Rogers standard base line policy
  • Experience working with Qualys Administration and helping vulnerability management team for some remediation workloads
  • Experience working with SailPoint Identity in regard to managing the application and IDs for corporate network
  • Familiar with devops tool such as Jenkin and Azure devops
  • Experience working with Rapid7 TVM solution (InsightVM) and EUBA Solution (Insight IDR)
  • Familiar working with Puppet Remediate to remediate vulnerabilities
  • Experience working with IAC tools such as CloudFormation and terraform
  • Experience working with CI/CD tools such as Jenkin
  • Experience working with configuration and automation tolls such as Ansible and puppet

Network Specialist

ROGERS COMMUNICATIONS
01.2016 - 06.2018
  • IP and Network configuration Management]
  • IP Provisioning cable modem termination system (CMTS) and (CCAP) for HSI high-speed internet for Rogers customer and Fido customer
  • Line card activation for CASA and Cisco broadband routers
  • Capacity augmentation based on congestion of Nodes and worked with engineering to plan for new nodes for splitting traffic
  • Designed and build template for massive configuration changes for Migrating existing DHCP Server to Azure cloud
  • Participate in day-to-day operation of renumbering IP subnet space to free up subnets for further uses for another project
  • Hands on experience with ticketing application to such as Remedy and SNOW to perform any changes and engage different team across organization
  • Worked with SOC to provide necessary logs from different source of network in time of active attack and provide suggestion and solution as SME to stop and remediate attack
  • Worked with Rogers business partner architects and integrators in Enterprise network to assign proper IP subnet space to their project and record in IPAM
  • Provide application SPOC during day to provide technician in field to support their fiber to building FTTB project.

Network security engineer

TTNET
05.2009 - 01.2015
  • Hands on experience working with Firewall orchestration tolls such as Tuffin and was responsible for implementing rules after compliancy checks
  • Engineered and implemented RSA second factor authentication for VPN connection into organization
  • Consolidated different Identity provider to Active directory and integrated with cisco ACS for administration of juniper and cisco firewalls
  • Monitoring system metric performance via Sevone and Netcool to avoid any disruption and potential security incident
  • Provided 24/7 on-call support for platforms on a periodic basis.

Education

Post graduate certificate - Cyber Security

Centennial College
Toronto, ON
03.2021

Diploma - Computer Network Electronics Technician

Centennial College of Applied Arts And Technology
Scarborough, ON
12.2018

Bachelor of Computer Science - computer science

Isfahan University
IRAN
06.2007

Skills

  • IBM Qradar SIEM
  • EDR
  • Azure
  • AWS
  • Identity and access management
  • Vulnerability Management
  • Automate incident response in AWS
  • Azure Sentinel
  • Splunk

Timeline

Security Engineer

TD
06.2022 - Current

CYBER SECURITY Consultant

Scotiabank
01.2022 - 06.2022

CYBER SECURITY Specialist

ROGERS COMMUNICATIONS
06.2018 - 12.2021

Network Specialist

ROGERS COMMUNICATIONS
01.2016 - 06.2018

Network security engineer

TTNET
05.2009 - 01.2015

Post graduate certificate - Cyber Security

Centennial College

Diploma - Computer Network Electronics Technician

Centennial College of Applied Arts And Technology

Bachelor of Computer Science - computer science

Isfahan University

Similar Profiles

CREATE PROFILE
Alireza Khodarezaei