Krunal Dave
Cyber Security & Pci Engineer at Kering
Based in Rutherford, United States
7-day free trial · no credit card
Seniority
Staff
Department
Information Technology
Location
Rutherford
Industry
Retail Luxury Goods and Jewelry
Company size
39K
Contact information
Reveal Krunal's email and phone
Direct contact data is gated. Sign up and reveal. You only pay for verified records.
k•••••••@kering.com
Phone
5 credits+1 ••• •••• ••••
You only pay for valid records. Bounced emails and disconnected numbers cost nothing.
Background
About Krunal Dave
TECHNICAL SUMMARY • Infrastructure Security - Secure enterprise networks leveraging identity and access management solutions following the principle of least privilege. Provision user access with MFA and device/mobile access based on 802.1x certificates. Harden network perimeter with next-generation firewall and access control policies. Restrict web access to unknown, malicious, or nonproductive sites via proxies and web filtering. Secure connectivity to external vendor/partner networks by deploying site-to-site VPNs. Integrate mobile device management for secure BYOD and guest internet access. Segment critical infrastructure using access controls, filtering, routing, and VRFs. Limit network administration from a bastion host and configure devices to send logs to SIEM products for analysis and correlation. • Offensive Security - Identify and enumerate Linux and Windows devices, users, groups, and web applications for vulnerabilities. Perform vulnerability & network scans to identify unpatched systems, vulnerable versions of applications, and end-of-life software for exploits. Test for poor password policy/hygiene and password reuse, and test applications for default accounts/credentials, which could lead to unauthorized access. Identify unnecessary or overly permissive access rights on user accounts, groups, files, and folders that can be leveraged to gain elevated access in the environment. Enumerate active directory features and GPO policies that can be further exploited to compromise the network. • Defensive Security - Perform audits to identify operating systems, network devices, web applications, etc, that need to be secured/hardened to decrease the attack surface. Perform risk assessments to identify threats and weaknesses that may be exploited. Lockdown and segment critical systems/assets based on compliance requirements. Leverage EPP/EDR to secure operating systems, IDS/IPS to detect/prevent network attacks, proxies & web filtering solutions to secure internet activities. Utilize network monitoring software for information gathering and log system access to identify unusual activity. Utilize SIEM for log management, correlation, and compliance. • Cloud & Web Security - Perform authenticated/unauthenticated enumeration of IAM users, roles, Lambda functions, S3 buckets, API gateway, access keys, and cloud databases. Identify overly permissive IAM trust policies, API/Lambda resource policies, and misconfigured S3 bucket policies. Test for poorly implemented WAF and OWASP top 10 web application vulnerabilities.
Decision-makers
Other people at Kering
- EOOther
Eliana Ochoa
Director of Treasury, the Americas · Other
- LBStaff
Louis Brochot
Global Infrastructure Project Manager · Construction
- IGManager
Ilaria Guidi
Financial Controller · Finance & Accounting
- GMOther
Gaia Marmonti
Logistics O2c Accountant · Other
- KAStaff
Karim Arar
Datacenter Operations Coordinator · Other
Build a list of verified contacts at Kering
Free for 7 days · 50 credits · no card · only pay for verified records.
Reach more buyers like Krunal
250M+ professionals with verified email and phone. You only pay for records that actually verify.
7-day trial · no credit card · cancel anytime