ARISMAN PUTRA MUNGGARAN
NETWORK AND SYSTEM SECURITY ENGINEER
TANGERANG
Summary
SECURITY ENGINEER WITH EXPERIENCE IN INTEGRATING, IMPLEMENTING, AND MANAGING IT SECURITY SYSTEMS. POSSESSES STRONG EXPERTISE IN NETWORK SECURITY, ENDPOINT PROTECTION, VULNERABILITY MANAGEMENT, AND SECURITY MONITORING. PROVEN ABILITY TO COLLABORATE ACROSS TEAMS TO ENHANCE ORGANIZATIONAL SECURITY POSTURE AND ENSURE COMPLIANCE WITH INFORMATION SECURITY STANDARDS AND POLICIES.
Overview
11
11
years of professional experience
4
4
Certifications
2
2
Languages
Work History
Team Leader Operation Manage Service Security
PT. KORELASI PERSADA INDONESIA
07.2025 - 12.2025
- Set performance expectations for the team, monitoring progress towards goals and providing constructive feedback as needed.
- Developed team members'' skills through targeted coaching sessions, resulting in improved individual performance.
- Create report monthly for security posture all security solutions and perform presentations to customers.
- Actively attending meeting managerial for discussion team conditions, workload, and improvement team members.
L2 Operational Manage Security Engineer
PT. KORELASI PERSADA INDONESIA, BINTARO
08.2022 - 06.2025
- Actively attending weekly meeting for discussion all changes on customer environment.
- Perform Preventive Maintenance quarterly for several security vendor such F5 products, Fortigate products, Cisco Ironport, Cisco ASA, Cisco ACS, Trendmicro Antivirus, Trendmicro DDI, Trendmicro DDAN, Checkpoint Firewall, Bluecoat Proxy, ArcSight SIEM, Rapid7, Algosec, TPAM, EfficientIP, WebInspect and SCA Fortify, CyberArk.
- Upgrade version Security devices F5 products, Fortigate products, Cisco Ironport, ArcSight SIEM, EfficientIP, WebInspect and SCA Fortify, NGINX+, and contact TAC support if theres something issues, like hardware failure and must be RMA, or need advice for configuration conditions that suitable for customer.
- Create customized iRule on F5 for load balance incoming traffic to website that use uncommon ports.
- Customize WAF rule on F5 such meta character on value or header requests, custom length, data guard.
- Create custom profile SSL based on customer service conditions, such disable or enable weak chiper or SSL of Load on F5.
- Configure Virtual Server F5 for management IP public that can contains multiple website service for 1 IP Public.
- Support migration F5 to other security solutions, for ISP and SNAT or DNAT migrated to Fortigate firewall, DNS and WAF migrated to Cloudflare for public services and NGINX+ for internally services.
- Create Arcsight Smart Connector on Linux or Windows and integrate each Smart Connector with specific port to other security solutions for centralize log, such Fortigate, FortiAnalyzer, Cloudflare, NGINX+, Efficient IP, Windows NPS, Windows Active Directory, PAM CyberArk, etc.
- Create custom parser for uncommon log format like WAF NGINX+.
- Create use case for security alert that can be monitored or alerted via email on ArcSight SIEM.
- Configure custom forwarder on ArcSight Logger utilize ArcSight ESM license usage.
- Implement ArcSight SIEM Product such as SmartConnector, Logger, and ArcMC.
- Configure Reporting based on user requests via ArcSight SIEM such MACD event on Active Directory or failed action on Antivirus for handling suspicious file.
- Contribute to Migration ArcSight SIEM Hardware appliance to software appliance.
- Manage DNS Internal customer via EfficientIP and Public DNS via Cloudflare.
- Manage DHCP Pool several customers site on EfficientIP.
- Create IPsec site-to-site link between cloud environments.
- Manage firewall rule including specific access for VPN and Proxy.
- Manage internal mailrelay (postfix) and specifiy outgoing email to multiple mail relay public such as sendgrid or trendmicro mail security to avoid detected as a spam email and bad reputation for advertising email from customers.
- Manage PAM Cyberark and configure integratin between Cyberark and server.
L1 Operational Manage Security Engineer
PT. KORELASI PERSADA INDONESIA, BINTARO
08.2019 - 07.2022
- Analyze event monitored on ArcSight SIEM (such : Bruteforce event, DDoS event, Malicious Activity used uncommon ports).
- Follow up security event form ArcSight SIEM to server or endpoint owner for mitigation by analyze malware event, scanning endpoint or sever using Antivirus, give recommendations for change password, delete or remove suspicious file.
- Generate monthly report via ArcSight SIEM for Changes Password and Disabled user on Windows Active Directory, top source user bandwidth on BlueCoat Proxy, top source and destination endpoint who hit unspecified firewall rule CheckPoint (rule of any source to any destination allowed).
- Analyze firewall event (blocked or allowed traffic) due to user requests, Windows login Activity, F5 WAF event, via ArcSight SIEM by creating custom filter on Active Channel.
- Analyze Phishing Email, Spam Email, BEC, Email Spoofing via Cisco IronPort by analyze email header, sender reputation, url reputation that contained on Email.
- Release or Block Email due to user request such as user email got blocked because rule size limitations or user did not want to receive any kind of email that comes from specific sender with good reputations domain like gmail.com.
- Create configuration ACL on Cisco ASA VPN specifically based on user needs such based on vendors or divisions.
- Renewal SSL certificate on periodically on ASA VPN for public gateway
- Create firewall rule on CheckPoint based on user request and based on generated report monthly that can be more specific.
- Manage Content Filtering or Website Categories on Bluecoat Proxy.
- Manage Load Balance F5 Local Traffic and GTM for various Services.
- Create WAF on F5 for each service that go through F5.
- Create Virtual Server and GTM configuration for services facing to public on F5.
- Manage AntiVirus Trendmicro for Hardware Endpoint and Server user or customer.
- Input Hash or SHA and URL from IoC on TrendMicro.
- Configure network device on Cisco ACS for radius authentication.
- Manage resources list on Rapid7 for monthly periodic scan vulnerabilities and patch management and also perform scanning and generate report of result scan.
- Generate report monthly from Algosec for security posture of Checkpoint Firewall and analyze unused overlap rule.
- Perform Vulnerability Assessment for all website on customer and source code using WebInspect and Static Code Analyzer Fortify.
L1 Implementation Manage Security Engineer
PT. KORELASI PERSADA INDONESIA, BINTARO
01.2019 - 07.2019
- Involved implementation F5 including staging hardware, mounting, cabling, migrate configuration from PaloAlto Firewall to F5 Load Balance, sanitiy test after implementation and documentation after project for UAT.
Internship Engineer
PT. TELKOM -STO LEMBONG, BANDUNG
06.2017 - 09.2017
- Involved migration of fiber optic by omzeting data management and migrate access maintenance configuration customer of copper cabel to fiber optic services.
Internship Field Technician
PT. TELKOM AKSES RAJAWALI, BANDUNG
05.2015 - 07.2016
- Mapping addresses of costumer who use PT. Telkom fiber optic services by creating site layout drawings that will be further developed in AutoCAD.
Education
Bachelor Degree - Telecommunication Engineering
TELKOM UNIVERSITY
Skills
SIEM
Certification
DEEP SECURITY 12 CERTIFIED PROFESSIONAL (2020 – 2022)
Timeline
Team Leader Operation Manage Service Security
PT. KORELASI PERSADA INDONESIA
07.2025 - 12.2025
L2 Operational Manage Security Engineer
PT. KORELASI PERSADA INDONESIA, BINTARO
08.2022 - 06.2025
L1 Operational Manage Security Engineer
PT. KORELASI PERSADA INDONESIA, BINTARO
08.2019 - 07.2022
L1 Implementation Manage Security Engineer
PT. KORELASI PERSADA INDONESIA, BINTARO
01.2019 - 07.2019
Internship Engineer
PT. TELKOM -STO LEMBONG, BANDUNG
06.2017 - 09.2017
Internship Field Technician
PT. TELKOM AKSES RAJAWALI, BANDUNG
05.2015 - 07.2016
Bachelor Degree - Telecommunication Engineering
TELKOM UNIVERSITY