Onkar Jog
Verified Expert in Engineering
Security Engineer and Developer
Mississauga, Canada
Toptal member since December 30, 2022
Onkar is a network, endpoint, information, and cybersecurity professional with over 13 years of industry experience. He's worked on Zero Trust Network Access (ZTNA), security service edge (SSE), security information and event management (SIEM), security orchestration, automation and response (SOAR), endpoint detection and response (EDR), and network detection and response (NDR). Onkar is an expert in SWG, CASB, and DLP administration.
Portfolio
Experience
Availability
Preferred Environment
SIEM, Incident Response, Threat Intelligence, Security Orchestration, Automation, and Response (SOAR), Cybersecurity, Zero Trust, Secure Access Service Edge (SASE), Cloud Access Security Broker (CASB), Data Loss Prevention (DLP), Network Security
The most amazing...
...project I've developed is a SOAR workflow to fully automate the analysis of reported phishing emails saving several hours of daily manual work.
Work Experience
Senior Security Specialist
Teranet
- Implemented a secure access service edge (SASE) solution to operationalize the idea of Zero Trust through user and entity behavior analytics (UEBA), posture assessments, and adaptive multi-factor authentication (MFA).
- Administrated other features of the SASE solution, such as a cloud access security broker (CASB), secure web gateway (SWG), and data loss prevention (DLP), which are the pillars of an effective Zero Trust strategy.
- Worked on implementing ZTNA to control the access to the company's in-house applications from users worldwide and centrally enforce access policies.
Senior Security Consultant
Sirius Computer Solutions
- Performed incident response and threat-hunting activities using SIEM, EDR, NDR, sandboxing tools, and available log sources.
- Investigated security incidents using cyber kill chain references, Open Web Application Security Project (OWASP) data, and NIST, SANS, and MITRE ATT&CK frameworks.
- Created new SOAR workflows and enhanced the existing ones.
- Gathered threat intelligence with open-source intelligence (OSINT) resources, using them with existing tools to detect and prevent security threats and collect information about recently disclosed vulnerabilities and exploits.
SOC Team Lead
NTT
- Configured vulnerability and threat prevention profiles. Tuned intrusion prevention system and intrusion detection system (IPS/IDS) signatures and IPsec site-to-site and SSL remote access VPNs.
- Supervised and troubleshot high-priority firewall issues and executed complex firewall, IPS, and IDS-related change requests.
- Administered the configuration and policies of Blue Coat proxy devices.
- Carried out the addition, deletion, and modification of security policies, security profiles, Network Address Translation, and routing changes on customer security devices.
Senior Consultant
Capgemini
- Managed firewalls, IPS/IDS devices, DNS/DHCP and Syslog servers, monitoring tools, NetFlow analyzers, and systems based on authentication, authorization, and accounting (AAA), such as Cisco TACACS+ and RADIUS servers.
- Designed and configured network routers, switches, wireless access points, and VoIP telephony devices for new office setups comprising 100 to 5,000 users in Capgemini's Benelux and Nordic regions.
- Participated in patching and upgrading network and security devices.
Experience
Deployment and Implementation of a SASE Solution for Zero Trust
Security Operations Center (SOC) Development
Education
Bachelor's Degree in Computer Engineering
University of Mumbai - Mumbai, India
Certifications
ExtraHop Administrator Certification
ExtraHop
The Secure Access Service Edge (SASE) Accreditation
Netskope
GIAC Certified Incident Handler (GCIH)
SANS Institute
IBM Certified Security Administrator – QRadar SIEM
IBM
Palo Alto Networks Certified Network Security Engineer
Palo Alto Networks
CrowdStrike Falcon Host Certified
CrowdStrike
Blue Coat ProxySG Administrator
Symantec
Certified Information Systems Security Professional (CISSP)
(ISC)²
CompTIA Security+
CompTIA
Certified Vulnerability Specialist
Qualys
Skills
Paradigms
Security Orchestration, Automation, and Response (SOAR), Automation, User Behavioral Analytics (UBA)
Languages
Python
Platforms
Azure
Industry Expertise
Network Security, Cybersecurity
Other
Zero Trust, Security Operations Centers (SOC), CISSP, IT Security, Security, SecOps, SIEM, NIST, MITRE, APIs, Vulnerability Management, Endpoint Security, Web Security, Certified Information Systems Security Professional, Incident Response, Threat Intelligence, Information Security, Firewalls, Threat Analytics, Unified Threat Management (UTM), Secure Access Service Edge (SASE), Cloud Access Security Broker (CASB), Data Loss Prevention (DLP), Splunk Enterprise Security, Cloud Security, Cloud, MITRE ATT&CK, Zero Trust Network Access (ZTNA)
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring