Summary
Overview
Work History
Education
Skills
Websites
Certification
Scholastics Portfolio
Father's Name
Personal Information
Timeline
Generic
Selvan Seluvappan

Selvan Seluvappan

Senior Network Security Engineer
Abu Dhabi

Summary

Highly experienced professional with 16 Years of expertise in network routing and switching, security, administration, load balancing, network virtualization, leadership, project management, and operations. 4 Years of hands-on experience with G42 Cloud, extensive knowledge and experience in Azure and AWS cloud terminology. Skilled in designing system architecture security by applying patterns and principles to meet user needs while managing risks and identifying security issues. Deep understanding of systems security architecture, particularly in switching-STP, PVST+, RSTP, VLAN, Trunking, HP switches, and D-Link Switches. Proficient in High Availability technologies such as VSS, vPC, VDC, HSRP, VRRP, and GLBP, as well as AAA Server technologies like Radius and TACACS+. Independently oversees a range of network security products by handling installation, configuration, management, and monitoring while ensuring adherence to SLA. Expertise in cloud architecture designing the LLD and HLD. Strong project management and leadership experience. Seasoned in configuring and testing routing protocols such as OSPF, RIP, EIGRP, and BGP. Familiarity with MPLS, VPLS, Baseband, broadband, and Leased line. In-depth knowledge of TCP/IP networking standards and protocols including DNS, DHCP, TCP/IP, SNMP, NetFlow, ICMP, NAT, and PAT. Proficient in assessing the high-risk impact of vulnerabilities on existing and future designs and systems. Excellent working experience in private cloud and public cloud technology along with troubleshooting network issues and optimizing network performance. Good understanding of SDLC process methodology (Agile DevOps DevSecOps), Maturity models (CMM SAMM), IPT. Possesses superior knowledge of evaluating and applying security governance principles to the organization based on policy standards and procedures towards the defined goal. Skilled [Job Title] bringing expertise in operations and project management. Helps achieve goals by coordinating resources, schedules, and team members to meet demands. Seeks every opportunity to improve operations and team performance.

Overview

15
15
years of professional experience
5
5
years of post-secondary education
16
16
Certifications
3
3
Languages

Work History

SR. SPECIALIST - NETWORK AND SECURITY

RABDAN ACADEMY
01.2024 - Current
  • Develop a strategic plan for the university's network security infrastructure, including forecasting future needs and aligning with emerging technologies
  • Conduct a gap analysis to identify potential vulnerabilities and recommend strategic changes to enhance security
  • Monitor and manage Cisco endpoint security and EDR solutions to ensure compliance with university policies and industry standards
  • Conduct regular security audits and assessments to identify vulnerabilities and suggest improvements
  • Oversee the deployment and configuration of all TrendMicro modules, including antivirus, DLP, and endpoint detection, across all networks, and update and patch TrendMicro products to mitigate security risks and vulnerabilities
  • Manage and maintain Cisco wireless controllers, switches, and access points across isolated networks to ensure seamless connectivity and security
  • Conduct periodic performance reviews of wireless networks to optimize throughput and minimize latency
  • Design and implement firewall policies and rules for multiple isolated networks, ensuring adherence to security best practices and university standards
  • Perform routine firewall audits for Fortinet, Palo Alto, Cisco, and other firewalls to identify misconfigurations or potential threats
  • Develop and implement network segmentation strategies to isolate sensitive data and critical systems from general access
  • Monitor network traffic patterns to detect and respond to potential security breaches or policy violations
  • Lead the incident response team in identifying, analysing, and mitigating network security incidents in a timely and effective manner
  • Initiated to develop and maintain an incident response plan, including roles, responsibilities, and communication protocols
  • Collaborate with management to create a detailed budget plan for network security enhancements, including hardware, software, and all other costs
  • Identify cost-saving opportunities by optimizing resource allocation and negotiating with vendors
  • Plan, initiate, and manage network security projects through all phases, including initiation, planning, execution, monitoring, and closure
  • Develop project timelines, resource plans, and risk management strategies to ensure successful project delivery
  • Work closely with cross-functional teams, including IT, management, and external vendors, to ensure alignment of network security objectives
  • Provide guidance and training to team members on security protocols and best practices
  • Develop and enforce network security policies and procedures to ensure compliance with regulatory requirements and university standards
  • Conduct regular policy reviews and updates to reflect changes in technology, threats, and organizational needs
  • Evaluate new security products and vendors to determine their suitability for the university's network infrastructure
  • Develop and present recommendations to management for the acquisition of new IT infrastructure equipment
  • Monitor the performance of network security systems and generate reports for management on the status, risks, and performance metrics
  • I am experienced in designing and implementing cloud architectures, as well as preparing the High-Level Design (HLD) and Low-Level Design (LLD) to meet organizational requirements
  • Develop and implement risk mitigation strategies to reduce the likelihood and impact of security incidents
  • Ensure all staff are aware of and comply with security policies, procedures, and best practices
  • Make informed decisions regarding network security strategy, policy, and investment to align with organizational goals, and regularly communicate with senior management to provide updates on network security posture, ongoing projects, and strategic initiatives
  • Prepare and present reports and presentations to executive leadership on network security performance, challenges, and future
  • Regularly review and update network security policies to ensure compliance with legal, regulatory, and industry standards
  • Manage and allocate resources effectively across network security projects and operational tasks to ensure optimal performance and efficiency

SR. NETWORK SECURITY ENGINEER

ABU DHABI ACCOUNTABILITY AUTHORITY
12.2018 - 12.2023
  • Designing the network security of system architecture through the application of patterns and principles to meet user needs while managing risks and identifying security issues in the system architectures
  • Managing alone for the different variety of network security products, such as Fortinet (Firewalls, Email firewall, Web Firewall, authenticator, FortiClient EMS, Forti Analyzer), Palo Alto (Firewalls), F5 (LTM), Cisco Switches
  • Oversee the implementation of cloud projects, ensuring they are delivered on time, within budget, and according to defined specifications
  • Develop project plans, monitor progress, and address any issues or risks that may arise during project execution
  • Working experience in all the Fortinet products (FortiGate Firewalls, Forti Mail Security, Forti Web Security, Forti Authenticator, FortiClient EMS, Forti Analyzer and Forti Manager) to Install, configure, and manage
  • Identifying and mitigating the risks associated with cloud computing, such as data breaches, service interruptions, or vendor lock-in
  • Implement robust security measures, disaster recovery plans, and backup strategies to safeguard data and ensure business continuity and develop a strategic roadmap for cloud adoption and integration within the organization
  • Align the cloud strategy with business objectives, identify key milestones, and define clear implementation plans
  • Participate actively in the project management of the entire team and/or cross-teams, tracking of network and security incidents, bug fixes
  • Carry out planning, design, installation, configuration, testing, upgrade, monitoring and maintenance, implementation, and administration of security measures for IT cloud, network, and system infrastructure to support IT operations
  • Plan, design and managing the organization's wireless network architecture and network Voice infrastructure and ensure to provide the secure wireless network and Implement IT infrastructure initiatives, identify automation opportunities, and cut costs
  • Savings, and service quality improvement
  • Create a secure network infrastructure and ensure that it is constantly updated in accordance with IT requirements as per policies, procedures, and standards
  • Administer cloud system through patches, permissions and service deployments including monitoring and analysing network performance to match on-demand requests and communicate with IT and non-IT professionals to ensure effective use of all services
  • Carry out the design, implementation, operation, and maintenance of the Information Security Management System based on the ISO/IEC 27000 series standards, including certification against ISO/IEC 27001, where applicable
  • Prepare and submit project status reports to the management, using clear and transparent indicators and analysis such as KPIs, dashboards, and so on, to monitor project status and resolve any problems or issues
  • Configuring, managing, and troubleshooting the variety of network security appliances that help to ensure the confidentiality, integrity, and availability of the data in all its states (data at rest, data in use, and data in transit)

TECHNICAL SUPPORT ENGINEER - NETWORKING

INTERTEC SYSTEMS LLC
07.2017 - 12.2018
  • Engage in planning, scheduling, and implementing network upgrades, implementations, and migrations for clients in a timely manner and during times that will have the least impact on the users of the affected systems
  • Comprehensive knowledge of developing and implementing the architecture and design of networks and network drawings
  • Configuring and managing the spin-leaf, three-tier network architecture, which includes core switches, distribution switches, and access switches, leased lines, and MPLS links with high availability
  • Palo Alto Firewall with active and passive modes and configuring security policies, QOS, NAT, sub interfaces, aggregated interfaces, and virtual routers and zones
  • FortiGate perimeter firewall with master/slave configuration, VDOM, IPsec VPN, SSL VPN with vendor-specific IP subnet, user integration with AD via LDAP, NAT configuration, and traffic shaping
  • Deployment and management of Cisco Wireless Controllers 5520 with Active/Standby, all SSID integrated with ISE for 802.1X, and vendor-specific access
  • Proficient in LogRhythm SIEM for real-time threat detection, incident response, log management, and security policy configuration
  • IronPort: Configuring and managing the Email Service Gateway, Web Service Gateway for email security and web security on the internet (ESA and WSA) is managed by SMA
  • Assume primary responsibility for connecting to the other government entity via MPLS or an IPsec tunnel, depending on client management requirements
  • F5 LTM: Configuration, Solution Designing, and Managing the F5 BIG IP LTM Load Balancer Creating VIPs, creating pools, and associating pools with VIPs the creation of Persistence Profile, SSL Profile, SSL Offloading, and iRules is intended to be a high availability solution with network failover
  • F5 GTM: configuring and managing the F5 GTM devices for the DNS solution for the external and internal websites, which is syncing between DC and DR
  • F5 ASM: Creating the security policy in ASM to detect and prevent the various application-based attacks based on anomalies and applying those security policies in the HTTP/HTTPS VIP in LTM
  • Prepare and maintain disaster recovery plans for IT operations and participate in the organizational and customer level disaster recovery testing

ENGINEER-GLOBAL NETWORKING

VWR INTERNATIONAL LLC
01.2016 - 06.2017
  • Worked on the network design and implementation team for VWR global infrastructure, as well as being involved in network engineering to work on multiple projects and implement them as planned
  • Configuring, troubleshooting, monitoring, and maintenance for a large complex LAN/WAN environment for Cisco routers, switches, and datacenter devices
  • CISCO routers, layer 2 switches, and layer 3 switches with strong analytical skills to identify the problems
  • Working closely with the global engineering team and stakeholders to work on Level 3 incident tickets and P1 and P2 priority tickets escalated from the global network operation center and service desk
  • The design, proposal, and implementation of a traditional MPLS WAN alternative using Meraki appliances will bring reliable and fiscally responsible WAN connectivity to a global organization
  • Worked on the Nexus 7k, 5k, and FEX (upgrade, downgrade, ISSU, SSO, and NSF) and configuration and troubleshooting of switches with VLAN, STP, VTP, HSRP, GLBP, etc
  • (6500, 4500, 3500, 2900, and 3700)
  • Worked on SolarWinds monitoring tools (IPAM, NetFlow) and had hands-on experience handling an Identity Service Engine integration to provide AAA services
  • Worked on the configuration and testing of layer 3 protocols: OSPF, RIP, EIGRP, and BGP
  • Hands-on experience in configuring VSS, HSRP, vPC, ECMP, OSPF, BGP, IP SLA, Redistribution
  • Worked on the configuration of site-to-site VPN between branch offices of the organizations and gave support to clients regarding the installation of VPN clients
  • Cisco Meraki switches, firewalls, and access point configurations, managing and providing the root cause for the reported issues
  • Cisco IP telephony, Jabber video teleconferencing system configuration, and troubleshooting, and perform all the activities as defined by the IT service management to meet the SLA

TECHNICAL LEAD

COGNIZANT TECHNOLOGY SOLUTIONS
04.2015 - 01.2016
  • Troubleshooting network problems in a cloud virtual private data center
  • Comprehensive knowledge of designing, implementing, and providing operational support in complex network environments
  • Involved in the processing of incident tickets and service requests while ensuring timely resolutions and escalation to comply with the SLA
  • Handled primary level troubleshooting for an incident involving network connectivity issues
  • Creating the VPC and DNS on the cloud platform and configuring SNMP for all managed devices to monitor the performance
  • Worked on projects such as private cloud migration to the VMware NSX platform and implementation of the NSX Manager, NSX Controller, Edge Gateway, and VXLAN with the VMware NSX migration team
  • Worked on AWS cloud computing and network services (EC2, VPC, S3, Route 53, elastic load balancer, and Direct Connect)
  • VRF configuration on the router to update a logical routing table as per customer request in the virtual cloud datacenter perimeter firewalls
  • Wan optimization Technology: configuration and troubleshooting for our customers in five geographical locations
  • Worked on multiple models of WAN optimization products in different physical and virtual in-path deployment and on configuring, managing, and monitoring the WAN visibility mode and peering rules on the device
  • Troubleshoot frequent issues and create a lesson learned document for the L1 network team

NETWORK ADMINISTRATOR

SOFTCELL TECHNOLOGIES LIMITED
10.2010 - 04.2015
  • Build and maintain a computer network with capacities of sharing information or keeping it confidential for all employees' throughput the datacenter and branch office
  • Responsible for the installation, configuration, and management of a broad range of network equipment: Cisco routers, Catalyst switches, Cisco access servers, Local Directors, PIX Firewalls and Windows 2000 servers
  • Prepare the network routers and switches log reports as daily, weekly, and monthly basis and share it to the management for their review
  • Maintain a back-up of all critical resources including Cisco router, Cisco Switch IOS and server data
  • Hardware and Software support, designing and implementing data connectivity for LAN and WAN
  • Provided a first level of support for IT infrastructure hosted in colocation rack space with internet service provider
  • Server installation (2003 and 2008) and Symantec backup exec maintenance and problem solving
  • Received a client request for a new installation, migration, or upgrade and designed a solution to meet that request in a timely fashion
  • Hardware and Software support, designing and implementing data connectivity for LAN and WAN
  • Perform network changes and optimizations across a multi-vendor and multi-protocol environments
  • Upgrade Cisco Switches and Routers, Configuration and troubleshooting if required
  • Checking the connectivity and reporting the status
  • Build and maintain Visio documentation database of network topology for clients and create a design if customer required using Visio 2007

TECHNICAL SUPPORT ENGINEER

ORIGIN ITFS
10.2009 - 10.2010

Education

Bachelor of Science - Information Technology

Annamalai University
Chennai
04.2010 - 01.2012

Diploma - Computer Science Engineering

Government Polytechnic College
Krishnagiri, Tamil Nadu
04.2003 - 05.2006

Skills

  • IT Network Security

  • Network Infrastructure Architecture

  • Routing Protocols

  • Security Standards Compliance

  • Security Architecture

  • Wireless Network Design

  • Security Protocols

  • Network Troubleshooting

  • IT Policies Development

  • Risk Management

  • Data Security

  • Digital Rights Management (DRM)

  • Data Loss Prevention (DLP)

  • Cloud Access Security Broker (CASB)

  • Identity Access Management (IAM)

  • Secure Design Principles

  • Threat Modeling

  • Zero Trust

  • Defense in Depth

  • Privacy by Design

  • Cryptography

  • Routing & Switching

  • Next-Generation Firewalls

  • Network Hardening

  • Identity and Access Management

  • Incident Management

  • Change Management

  • Configuration Management

  • Software Development Life Cycle

  • System Architecture Security

  • Business Continuity Management

  • Business Continuity Planning (BCP)

  • Disaster Recovery Planning (DRP)

  • Business Impact Analysis (BIA)

  • Security Controls

  • Hardware Support

  • Software Support

  • Team Leadership

  • Collaboration

  • Project Management

Certification

CCSP - Certified Cloud Security Professional (ISC2)

Scholastics Portfolio

  • Bachelor of Science, Information Technology, Annamalai University, 2012
  • Diploma, Computer Science, Government Polytechnic College, 2006

Father's Name

Seluvappan

Personal Information

  • Passport Number: V2881501
  • Date of Birth: 03/06/86
  • Gender: Male
  • Nationality: Indian
  • Marital Status: Married

Timeline

SR. SPECIALIST - NETWORK AND SECURITY

RABDAN ACADEMY
01.2024 - Current

SR. NETWORK SECURITY ENGINEER

ABU DHABI ACCOUNTABILITY AUTHORITY
12.2018 - 12.2023

TECHNICAL SUPPORT ENGINEER - NETWORKING

INTERTEC SYSTEMS LLC
07.2017 - 12.2018

ENGINEER-GLOBAL NETWORKING

VWR INTERNATIONAL LLC
01.2016 - 06.2017

TECHNICAL LEAD

COGNIZANT TECHNOLOGY SOLUTIONS
04.2015 - 01.2016

NETWORK ADMINISTRATOR

SOFTCELL TECHNOLOGIES LIMITED
10.2010 - 04.2015

Bachelor of Science - Information Technology

Annamalai University
04.2010 - 01.2012

TECHNICAL SUPPORT ENGINEER

ORIGIN ITFS
10.2009 - 10.2010

Diploma - Computer Science Engineering

Government Polytechnic College
04.2003 - 05.2006

Similar Profiles

  • Louiza Boddey

    Louiza BoddeyLouiza Boddey

    Head of Wellbeing at Rabdan Charter School for Girls, Aldar EducationHead of Wellbeing at Rabdan Charter School for Girls, Aldar Education

    View Profile
  • Tiffini Oporto

    Tiffini OportoTiffini Oporto

    Student Advisor / Learning Network at Astravo Online Academy, Colorado Digital Academy, and Colorado Virtual AcademyStudent Advisor / Learning Network at Astravo Online Academy, Colorado Digital Academy, and Colorado Virtual Academy

    View Profile
  • Bryan Dixon

    Bryan DixonBryan Dixon

    Executive Staff Member at LCD Academy - Learning, Caring, And Development AcademyExecutive Staff Member at LCD Academy - Learning, Caring, And Development Academy

    View Profile
Selvan SeluvappanSenior Network Security Engineer