Pooja Malik

• Perform cloud infrastructure security assessments on production content related services, applications, platforms, and workflows
• Provide support for AWS, Azure and GCP cloud’s native Security tools
• Dashboard, Visibility Compliance and Governance, AWP, CIEM, Vulnerability Scan, Network Logs analysis, Account Activity Analysis
• Review Cloud Security Policies and implementing as per Cloud Security Frameworks and CSPM PortalCloud Security Expert in the creation and improvement of strategies, foundations, frameworks, policies to secure the environment
• Cloud Security Posture Management review, Vulnerability Scan- On boarding Environment onto portal and integrate, manage
• Managing Application Security and Cloud Security through Web Application Firewall, Checkpoint and other security tools
• Architect effective and efficient fit for purpose solutions that meet the needs and requirements
• Conducts threat modeling and Cloud security gap assessment exercises in concert with other teams
• Contributes to the creation of policy, standards, Minimum Security Baselines (MSBs), procedures and guidelines
• Brings visibility to and escalates security risks, as well as technical, execution, deployment or other risks as applicable
• Identify areas of risk on projects where security requirements cannot be fully addressed in the required time frame of the project. Document and present those risks to senior business
• Help find areas of security the firm might want to invest in to improve IT security
• Set up and ran monthly meetings between senior leadership and third-party stakeholders to conduct joint operations and cement partnerships.Look below for security practices and functions for cloud
• Attack protection and mitigation technologies – DDoS, WAF, Bot, etc
• Training Team members and nominating them for necessary trainings

• leading Active Directory Project for Multiple clients at HPE as Active Directory Architect.
• Implement RBAC to enable access management for Azure/Active directory resources
• Provide expert guidance on Azure security controls and best practices. Created and managed Active Directory security and health assessment Reports and automated through Azure.
• Establish and maintain communication resources, including disaster recovery , system security and backup operations
• Working on Security and Privacy regulatory/legislativecompliance
• DNSSEC Implementation, ADDS, ADCS, AD Replication, Authentication, GPO, SBSL, Account
• Lockout, User Profiles, Secure Channel, LDAP, Schannel, LDAP Singing,
• Experience with AD architecture, configuration and delivering technology-based controls
• PKI and GPO: Implementation, configuration, troubleshooting at escalation level.
• Managing Azure Security policies, AD Security Recommendations and implementations.

• Working on Directory services and all components within the scope of the active directory
• ADDS, ADCS, AD Replication, Authentication, GPO, SBSL, Account
• Lockout, User Profiles, Secure Channel, LDAP, Schannel, LDAP Singing, FRS and DFSR
• PKI and GPO: Implementation, configuration, troubleshooting as Support
• Engineer
• AD Replication, KDC errors, Replication, DFS replication amongst domain controllers.

Led Okta to Microsoft Entra ID migrations, including custom attribute mapping and user onboarding workflows

Implemented and troubleshot Windows Server environments, Active Directory configurations, and secure domain joins

Engineered and enforced Group Policy Objects (GPOs) for secure and scalable infrastructure

Resolved complex issues involving Kerberos, NTLM, LDAP, and domain controller replication (FRS/DFSR)

Supported enterprise PKI/CA infrastructure, SSL/TLS integration, and identity trust models

Used tools like Procmon, Perfmon, and Netmon to investigate and remediate AD/LSASS performance bottlenecks

Developed Entra ID-based identity governance rules aligned with enterprise security posture

• Managing Infrastructure and Global, for Data Management Project and Data Migration SPOC for all the entities
• Responsible for handling Resource Management, Leave Management andscheduled shifts for the team
• Domain Controller Promotion And demotion and migration
• Quota Management of Shared Drives and their security and access management
• Auditing of events through Quest change auditor tool
• Supported multi-tier architectures, including application of tier isolation best practices
• Handled all Data Management Automation Project and was honored as
• Global SPOC for Data Management
• Worked on Moving FSMO Roles and FRS to DFSR Movement (using a script)

• Activated accounts for clients interested in new services
• Creation of new Directory Structures, granting/revoking directory access by creating trustees of required access rights using Novell Console One
• Account provisioning of accounts including e-mail, access to various applications
• Managed Mailbox Provisioning of the users using Forefront Identity
• Manager
• Transitioned activities/Project from Gurugram to Bangalore independently
• Lead team of 4 while working in Bangalore on Data Management Project as project lead.