Application Security Leader Resume
Sunnyvale, CA
EXECUTIVE PROFILE:
- Experience in leading Security organization during various company phases - run, transform, growth
- Experience in Governance, Risk and Compliance
- Over 10 years of leading / liaising / auditing and managing ISO 27001, SSAE-16, NIST 800-171
- 3+ years of managing risks arising from external suppliers and response to customer inquiries
- Experience in Technology, Security Operations, Security Compliance, Risk Management and Advisory at large High-tech companies and Consulting Practices
- Experience developing effective security policies
- Savvy in Enterprise Business Functions, transactional challenges and risks
- Ability to communicate at all levels and manage teams at global locations
- Managed staff of over 30 people and budget of over $2M
- Bootstrapped two startup companies and sold one
TECHNOLOGY EXPERIENCE:
Compliance areas: SSAE 16, HIPAA, Sarbanes Oxley(SOx), PCI DSS, ISO 27001/2, FISMA/NIST, COBIT 5, ITIL Change, Release
Cloud Security: CASB, Source code on the Cloud, AWS Security, Cloud Vendor Assessments, Customer Inquiries and Cloud Security Technologies (CloudPassage, Digital Guardian etc. OWASP top 10, NIST 800 (53 and 171), FARS and DFARS
SIEM: QRadar, Arcsight, Data loss protection/prevention ( Confidential )
Other tools: OWASP project tools) Mutillidae, Zap, Burp Suite, Firebug
Familiar with: Data privacy provisions - EU Safe-harbor
Network gears: Cisco/Checkpoint firewalls, IDS/IPS, DMZ
Programming: Unix/Linux, PHP, Python, Perl scripting, CVS, C, C++, Assembly language
PROFESSIONAL EXPERIENCE:
Confidential, Sunnyvale, CA
Application Security Leader
Responsibilities:
- Responsible for Application Security, Risk, Compliance and Disaster Recovery areas
- GRC (Governance Risk and Compliance)
- Go to person for end-to-end Information Security Risk Management strategy to support Confidential ’s assets
- Successfully completed ISO 27001 testing, DR testing and SOX continuous testing consistently for the last 6 years
- Influenced management for ISO 27001 certification. Because of certification, customer conversions increased by over 5%
- Initiated and co-chairing cross-functional council
- Security Strategy, Architecture and Operations
- Currently working on technical-strategies including Source-code-on-the-cloud, Engineering Zone, Risk based Access Provision, Security Automation for DevSecOps
- Hands-on Leader for architects, blue teams and governance teams to develop and accomplish information security maturity through data classification
- Led incidence response - reduced incident intake by 18% through prioritization and sequencing
- Conducted technical reviews of over 200 internal project
- Improved Authentication and Vulnerability areas for over 40% of Web-based assets
- Reviewing Security requirements for OpenStack and Hadoop deployments
- Influenced IT groups to implement strong Change Management methodologies
- Application Security
- Managed a development team and as a developer myself, implemented OWASP top-10 security features for an internal web portal
Confidential, Mountain View, CA
Senior Manager
Responsibilities:
- Responsible for managing IT Regulatory Compliance, Identity Management and Privacy.
- Took on role during challenging times after the merger of two companies with conflicting cultures and diverse priorities
- Led Compliance (SOX and PCI) and Identity Management teams. Led and participated in strengthening of PCI controls
- Influenced Management and led pilot deployment of Identity Management Solution
- Won best-employee award from CIO
Confidential, San Jose, CA
Senior Manager
Responsibilities:
- Managed, trained & mentored team members
- Helped establish Information Security Management Systems for a few dozen clients
- Supported Sales team with pre-sales requests for proposals (RFPs) for over few dozens
Confidential, San Jose, CA
Director of Information Security and Compliance
Responsibilities:
- Helped over dozen customers establish Information Security Management Programs
- Grew team from 2 to a dozen, led teams to complete customer engagements and accomplished customer satisfaction
Confidential, San Jose, CA
Founder, CEO
Responsibilities:
- Bootstrapped this media company consisting of Web radio network targeting East-Indians
- Profitable within the first 8 months,
- Hired right team members, created a growth culture, managed sales, marketing and business operations; Dressed the company for sale and successfully sold the company
Confidential, San Jose, CA
Founder, Director of IT
Responsibilities:
- Bootstrapped this ‘Email based survey and consolidated dashboard’ company and led IT organization
- Besides IT responsibilities, built datacenter infrastructure from scratch, secured the company’s assets by implementing separate zones for internal employees, external content generators and critical databases
- Installed, managed and maintained Checkpoint firewalls at security zone borders
- Developed core ‘email SMTP’ engine and managed software developers
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
