SUMMARY:

• Confidential, is an IT Security professional with 12+ years of experience in Information Security consulting, engineering and business development; currently working for Confidential, an investment firm offering fund management. His functional roles involved Security strategy, Risk and compliance management, Cloud and Security solutions, Vendor security, Process improvement, Secure Development lifecycle, Due Diligence, liaising with compliance and Pre - sales.
• His responsibilities emphasized on providing hands-on experience in performing gap analysis, developing security solutions & controls, collaborating on security improvements through Risk management, threat modeling and enforcing standards and recommendation.
• His success was, singularly handling security risk assessments across the product engineering and development lifecycle for technologies across all domains.
• At the technology front, he served as a technical point of contact for Governance, Risk Management & Compliance ( Confidential ), Cloud security (SaaS, PaaS, IaaS), Cloud security brokerage, Data protection, Application security, network security, Encryption & Key management (PKI), Identity Access Management ( Confidential ), Security Incident and Event Management (SIEM) and others.
• As a Security expert, he co-authored cloud security articles, which constituted standards and frameworks practices such as Confidential, TOGAF, ISO, COBIT, SABSA, and the Confidential STAR program “ Confidential Helion Infrastructure as a Service (IaaS)”. With the current role, handled SEC and FINRA cybersecurity practices.
• In the academic front, he holds a degree in Bachelor of Engineering and pursuing post-graduation in Confidential .
• In trending through this journey, he has endorsed himself by acquiring industry recognized certification as mentioned below:

PROFESSIONAL EXPERIENCE:

Confidential

Security Consultant

Responsibilities:

• His quest for reading upon new technologies, got him involved in Cloud Security for Confidential Helion Virtual Private Cloud ( Confidential ), Amazon Web Services (AWS), Azure
• As a SME, performed gap analysis and lead the security risk assessments through its development lifecycle (Devops+), improve security control posture through policies and standards. Achieved 80% of policy conversion from traditional to cloud security practices via Archer.
• His Contribution with “concept to production”, included Identity and Access Management ( Confidential ) in managing persona’s (privilege), SIEM and Big Data, DLP(PKI), Infrastructure and Enterprise Security solutions.

Confidentia

Information Risk and Security Architect

Responsibilities:

• Assisted in architecting the security for shared infrastructure, applications, integration, and cloud security (Azure); contributed towards, reducing costs and improving information flows.
• Engaged with internal stakeholders to align on security best practices from industry frameworks such as Confidential, which helped in audit assurance towards SOC1, SEC & FINRA cybersecurity practices.
• Formulated the Vendor security risk management process.
• Resolved issues from on-going vulnerability and penetration testing; maintaining 90% success to close identified gaps.
• Provided guidance on security solutions and prepare benchmarking reports; established success in implementing proactive controls.
• Resolved incident response activities by providing guidance, training and developing Confidential ’s.

Confidential

Cloud Security architect

Responsibilities:

• Driving the ISO certification program by performing gap analysis and threat modeling for on-premises and shared environments.
• Initiated an ISMS (ISO27001) system to include policies, standards and baselines; which provided baselines for HIPAA and Audit compliance epics, Privacy and risk Assessments.
• Performed product security risk assessments on Agile application development and AWS environment; which helped maintain consistency to healthcare security regulations.
• Supported Product Security Incident Response Team (PSIRT) to resolve security incidents on production environments; achieved 90+% updates on security patches for known bugs.
• Owned and maintained the cybersecurity maintenance plan; helped maintain track of vendor patch management process.
• Evaluated the PGP encryption practices to build compelling business cases.
• Worked with Principal Architect on security related epics and responding to RFP’s; was one of the biggest driver in winning strategic investment.

Confidential

Security Architect

Responsibilities:

• Supported the core team on security initiatives and incorporating cloud security alliance standards for Confidential Helion cloud Infrastructure-as-a-Service, a broadly distributed multi-tenant cloud environment.
• Engineered and supported security solutions for multitenant and dedicated environments, which included:
• Governance, Risk and Compliance ( Confidential ) using archer framework; and perform security design and build assessments.
• Confidential Helion Cloud-system, AWS, Salesforce, Openstack, Devops and API security
• Application security, system security, Penetration testing, and Encryption & Key management (PKI); including Windows and Linux hardening practices.
• Security Incident and Event management (ArcSight, Splunk, LogRhythm), Endpoint Threat Management (McAfee).
• DLP, Identity and Access Management ( Confidential ) with federation ( Confidential )
• Datacenter Network Architecture ( Confidential ) security, Firewalls, IDS/IPS, Back-up & Restore, Storage & Archive security;
• Deliverables involved Business &Technical Design guide, Requirement Traceability Matrix (RTM), Operation guide, test strategy, network placement diagram and Security guides.

Confidential

Security Architect

Responsibilities:

• Engaged with stakeholders to articulate Information Security management system (ISMS) and ensuring security technology standards are maintained across the organization
• Engaged with internal and external stakeholders to identify gaps in vulnerability, IT risk and threat management, Vendor selection, and develop solutions to close identified gaps .
• Performed security risk assessments, vulnerability management, Cloud Risk and Control Assessments ( Confidential ) workshops and Policy Compliance management.
• Lead and ensured clear security incident response activities and post-event reviews of security incidents.
• Aligned security policies, standards and guidelines utilizing RSA Archer as the central repository; included cybersecurity frameworks such as Confidential, ISO, OWASP, COBIT 5, PCI, HIPAA, Cloud Security Alliance ( Confidential ), FedRAMP, SEC & FINRA cybersecurity, etc.

Security Consultant

Confidential

Responsibilities:

• Collaborated on security improvements to systems, networks and applications by assessing current solution, performing gap assessments, anticipating future requirements, and providing actionable recommendations
• Carried Technical/analytical security assessments of web applications, mid-tier application services and use of using scripting languages such as PERL, JavaScript, and Python.
• Performed Product Security Risk assessments such as Web application & Network security assessments to identify potential vulnerabilities, security control points and risk mitigation measures.
• Recommended methods for detecting and remediating security incidents and oversee internal audits for SOC1 and 2, ISMS, HIPAA, GLBA, OWASP etc.,
• Performed over 200+ Security Risk assessments across a diverse set of technology areas.
• Performed over 25+ penetration tests in a span of one year; industry standards such as OWASP tools, SANS and related technologies.

Enterprise Architect (Associate)

Confidential

Responsibilities:

• Maintained an enterprise security service ( Confidential ) delivery model, processes and tools.
• Defined Business capability and Product development via modeling through SPARX EA and Archimate to develop blueprint/roadmaps.

Security Engineer

Confidential

Responsibilities:

• Integrated & configured security solutions such as SIEM, Data loss prevention and Confidential .
• Managed and configured Firewalls, Intrusion detection & Prevention, VPN, Catalyst Switches; which includes Firewall / VPN solutions such as Nokia, Checkpoint, Cisco PIX, Dell SonicWALL, F5 load balancer, Juniper/NetScreen, Cisco Concentrator and Contivity and RSA Confidential .
• Performed penetration testing, security monitoring and vulnerability management.
• Nessus, Nmap and other open source tools for Black-Box and White-Box testing and using scripting languages such as PERL, JavaScript, and Python.