Insightful Information Technology Manager with 20 years of IT leadership experience including oversight of infrastructure, application support and security services. Dedicated to customer satisfaction with focused delivery of technical solutions. Proven leader in directing operations, maintenance and support of complex systems. Develops creative business solutions, leveraging diverse methodologies and delivering engineering solutions for leading organizations. Highly adept in request for proposal development, technology needs assessments and staff training.
Hi, I’m
Hitesh Lodhi
AbuDhabi
Summary
Overview
20
years of professional experience
1
Certification
Work History
AbuDhabi Global Market
IT Security Manager
12.2021 - Current
Job overview
- Boosted cloud security, reducing incidents by 40%
- Led Oracle Cloud PaaS deployment with Palo Alto integration
- Halved app resource load, optimizing 16 new applications
- Cut network downtime 41% via Azure monitoring enhancements
- Ensured network reliability through proficient management of 13 Azure VNET services
- Implemented Azure Load Balancer solutions, including Layer 7 Application Gateway and Layer 4 Load Balancer
- Demonstrated expertise in managing Virtual Networks and subnet configurations
- Advocated for a cloud-first strategy, guiding clients to leverage Oracle cloud architecture benefits
- Deployed Akamai Cloud WAF to defend against web attacks while maintaining application performance
- Proficient in network security technologies, including encryption, IPSec, VLANs, VPNs, routing, firewalls, LAN/WAN, and proxy services
- Increased security efficiency by automating CSOC blacklisting processes
- Spearheaded the implementation of CASB Security with Palo Alto Prisma Access
- Integrated SAML VPN 2FA solutions utilizing Microsoft technologies
- Successfully migrated on-premises Email Gateway to Cloud-based Exchange Online Protection (EOP)
- Applied industry best practices to ensure optimal system and network performance.
Gulf Business Machine
Consultant Networks and Security
07.2015 - 12.2021
Job overview
- Crafted LLD, UAT, MP & As-Built docs for advanced security solutions
- Led multi-vendor firewall & VPN deployments with Layer-7 focus
- Implemented PAM & Cisco proxies, enhancing network integrity
- Drove SD-WAN & Azure cloud network architecture implementations
- Specialized in the deployment and management of next-gen network security solutions, including Palo Alto, FortiGate, and Cisco FTD firewalls, emphasizing Layer-7 security and VPN configurations
- Implemented Cisco IronPort Web Security and Cisco Email Security Appliance for Forward and Reverse Proxy services, respectively
- Executed Beyond Trust Privileged Access Management (PAM) solutions, integrating multi-factor authentication and managing user privileges with and without Active Directory (AD)
- Gained extensive experience with FortiGate infrastructure, including switches, sandboxing, and a comprehensive range of firewalls
- Led technical discussions with clients to tailor network designs to business needs, focusing on high availability, scalability, and performance
- Defined and implemented cloud network architectures in Azure, including virtual networks, VPNs, and ExpressRoute for enhanced on-premises to cloud connectivity
- Designed Azure VMs and architectures for IaaS and PaaS, understanding the intricacies of availability sets, fault domains, and update domains
- Executed NAC implementations for Layer 2 port security, ensuring controlled network access
- Expertise in configuring and troubleshooting BGP and OSPF routing protocols for efficient network routing
- Designed and configured complex network infrastructures, delivering end-to-end solutions from concept to post-installation
- Analyzed network performance, traffic, and utilization statistics for continuous operational improvement.
Fab Bank Via (HCL)
Lead Consultant-Networks and Security
08.2011 - 07.2015
Job overview
- Executed GETVPN for MPLS, optimized BGP/OSPF routing, and L2/L3 switch configuration.
- Designed complex networks, ensured stability, and provided expert tech consultancy
- Skilled in configuring and troubleshooting BGP and OSPF routing protocols, ensuring optimal network routing and efficiency
- Configured Cisco Nexus and Catalyst Switches, load balancers, and security appliances, crucial for maintaining seamless data center operations
- Proactively maintained network stability by monitoring trends, recommending corrective actions, and documenting resolutions
- Monitored network traffic and performance, utilizing statistics to optimize usage and minimize errors
- Provided expert consultancy in network problem-solving and emergency situations, aiding in swift resolution of technical issues.
- Optimized team performance through effective communication, training, and leadership techniques.
- Spearheaded the successful completion of complex projects through effective risk management and mitigation strategies.
- Educated staff on organizational mission and goals to help employees achieve success.
- Developed effective improvement plans in alignment with goals and specifications.
Tata Consultancy Services (Electronic Arts)
Lead Networks and Security
03.2010 - 07.2011
Job overview
- Enhanced network security by implementing advanced firewall configurations and intrusion detection systems.
- Reduced downtime with proactive monitoring of network performance and addressing issues before escalation.
- Resolved complex technical issues swiftly through diligent troubleshooting methodologies and root cause analysis.
- Collaborated with cross-functional teams for successful infrastructure upgrades, minimizing business disruptions.
- Maintained strict adherence to regulations such as payment card industry (PCI) data security standard.
- Coordinated with third-party security information and event management (SIEM) providers to maintain protections and predict threats.
- Applied Center for Internet Security (CIS) benchmarks to verify performance of ongoing security measures.
- Managed company Bring Your Own Device program, onboarding employee devices and verifying absence of inherent security threats.
- Designed and evaluated WAN and LAN connectivity technologies.
- Led server infrastructure development, quality assurance, staging and production systems.
HCL Technology Ltd
Principle Consultant
05.2007 - 03.2010
Job overview
- Managed FortiGate firewalls & policies, Checkpoint & Cisco ASA.
- Proficient in the deployment, configuration, and maintenance of Cisco Routers and Switches
- Led L2 support teams in root cause analysis and vendor coordination for timely issue resolution.
- Managed multiple projects simultaneously while maintaining attention to detail, organization, and adherence to deadlines.
- Evaluated client needs and expectations, establishing clear goals for each consulting engagement.
- Delivered outstanding service to clients to maintain and extend relationship for future business opportunities.
- Liaised with customers, management, and sales team to better understand customer needs and recommend appropriate solutions.
- Collaborated with cross-functional teams to successfully deliver comprehensive solutions for clients.
- Mentored junior consultants, fostering professional growth and building strong team dynamics.
- Implemented best practices to optimize clients'' organizational performance, leading to improved operational efficiency.
VSNL Service Provider (CMS)
Network Engineer
03.2006 - 07.2007
Job overview
- Firewall technologies including Cisco Pix Firewalls (515/525), Cisco ASA (5510/5520/5580), FWSM, and Checkpoint NGX (R55, R65)
- Proficient in IPSEC VPN configurations and management across platforms such as VPN-1/Fw-1, Cisco PIX, and Cisco ASA, complemented by load balancer proficiency (CSM/Citrix/Foundry)
- Adept at configuring and troubleshooting multi-vendor firewall systems, including PIX/ASA and Checkpoint Splat/Nokia, as well as managing Site-to-site and Remote Access VPNs
- Engages in direct customer interactions to tailor configurations to client specifications and meticulously maintains process documentation in line with standards
- Applied tier-isolation best practices to support multi-tier architectures.
- Maintained compliance with industry regulations by regularly auditing network security measures and addressing vulnerabilities as they were discovered.
DM Systems
Network Engineer
06.2004 - 07.2006
Job overview
- Managed security with Cisco & Checkpoint FW
- Expertise in advanced network protocols such as BGP, OSPF, ISIS, and IP/MPLS, emphasizing QoS and MPLS Traffic Engineering
- Effective in prompt resolution of end-user issues with meticulous documentation in incident management systems
- Well-versed in network security measures, implementing Cisco PIX Firewall, NAT, and Checkpoint firewall solutions.
- Provided complete end-to-end engineering and installation of route-based IP network solutions.
- Performed troubleshooting for Juniper, Cisco, and packet analysis.
- Provided network support services for devices such as hubs, bridges, routers, and other hardware.
Education
Kalinga University
Ph.D. from Cyber Security
09.2024
University Overview
Sikkim Manipal
MBA from Information Technology
01.2009
University Overview
Skills
- Forecast future IT capacity requirements based on business growth projections and historical performance data
- Performance Reporting, Process Improvement, Capacity Planning, Resource Management
- External Partnership Development Cybersecurity Strategy, Threat Intelligence
- Develop and implement strategic planning for IT services to align with the business goals and mission
- Make recommendations for hardware, software, and infrastructure upgrades to accommodate growth and maintain optimal performance levels
- Forecast future IT capacity requirements based on business growth projections and historical performance data
- Collaborate with vendors, designing and implementation of IT infrastructure Technology - SASE, CASB, WAF, IPS, VPN, Routers, Switches, Firewalls
- Terraform, Python, DevOps - CI/CD, API, Postman, Kubernetes, Docker
Accomplishments
Accomplishments
- Migrate Citrix file share to OneDrive to optimize cost worth of Half Million AED.
- Review Core/DC IPS logs to decommission and optimize the DC firewall IPS to save 3 million AED Cost.
- Review Security Infrastructure for licensing and save the 100K AED to decommission the un-used license.
- Decommission McAfee endpoint and replaced with Microsoft defender.
- Decommission EZELINK Gust solution with FortiGate firewall (SDWAN).
- Architecture Solution, System Design and integration, DevOps (CI/CD Pipeline formation).
Integrating & Managing SaaS Solutions like Oracle Fusion, Salesforce, M365, Audit/Compliance business applications. - Hosting and Managing Business Workload on Public Cloud (MS-Azure). (Handling Migration of applications from on- Premises to Public cloud).
Certification
- CCIE in DC - CCIE#46505
- CCIE in Security - CCIE#46505
- Certified Information System Auditor (CISA)
- CCIE DevNet (written)
- Network Virtualization (VCIXNSX)
- Azure Cloud Designing and Implementing (AZ-700)
- Certified Information Security Manager (CISM)
Languages
ENGLISH
HINDI
Personal Information
Personal Information
- Date of Birth: 06/13/84
- Nationality: Indian
- Marital Status: Married (Two Kids)
- Visa Status: UAE Golden Visa
Timeline
IT Security Manager
AbuDhabi Global Market
12.2021 - Current
Consultant Networks and Security
Gulf Business Machine
07.2015 - 12.2021
Lead Consultant-Networks and Security
Fab Bank Via (HCL)
08.2011 - 07.2015
Lead Networks and Security
Tata Consultancy Services (Electronic Arts)
03.2010 - 07.2011
Principle Consultant
HCL Technology Ltd
05.2007 - 03.2010
Network Engineer
VSNL Service Provider (CMS)
03.2006 - 07.2007
Network Engineer
DM Systems
06.2004 - 07.2006
Kalinga University
Ph.D. from Cyber Security
Sikkim Manipal
MBA from Information Technology
Similar Profiles
Aditya SinghAditya Singh
Research Analyst at S&P Global Market IntelligenceResearch Analyst at S&P Global Market Intelligence
Robert SackaRobert Sacka
Senior Account Manager at S&P Global Market IntelligenceSenior Account Manager at S&P Global Market Intelligence
Kya EndresonKya Endreson
Client Services Associate at S&P Global Market IntelligenceClient Services Associate at S&P Global Market Intelligence