Sr. Director, Privacy And Security Resume
San Ramon, CA
SUMMARY:
- Strategic and technically focused IT leader supporting IT Risk Management, Identity and Access Management core technologies, and the development and implementation of other state of the art software capabilities — combined with an entrepreneurial mind - set with enterprise business & technical acumen across business, application, and infrastructure tierRecognized for demonstrated expertise building high-performing, mission critical security solutions and internet-scale application services across multiple business domains (Retail, Travel, Healthcare, Banking and Finances) leveraging high-caliber teams deployed using a hybrid onshore/offshore model for execution of multi-million-dollar initiatives.
- Established Confidential ’s Cybersecurity - Identity and access management business enablement and product management functions for the core software and technology behind identity administration and governance, access enforcement and privileged access management.
- Collaborated with engineering, architecture, operations, and business application teams across Kaiser and external partners to define and build the next generation catalog of common services to facilitate application onboarding, provisioning/de-provisioning, multi-factor authentication, directory services, access certification and reviews, etc.
- Instrumental in establishing functional requirements for a common enterprise security solution that provides a single consumer UI and presentation layer across KP for access management, integrates inconsistent access management processes, enables faster implementation with lower integration and training costs, and improved operations from consolidation of disparate solutions.
- Proven record of successfully working with executives and senior leaders to support firm-wide strategic vision through strategic partnerships, roadmap definitions, and other decision making and direction setting activities.
- Demonstrated ability to manage projects of various financial (Fixed-bid, T&M) and operational models (global delivery centers including customer teams). Have extensive experience in managing projects in most methodologies. Thorough knowledge and practitioner experience in end to end Project SDLC with proven track record in delivering successful large complex project engagements.
EXPERTISE AREA:
- Product Management
- Project Management
- Business Enablement
- Portfolio Management
- Onshore/Offshore Operations
- Software Development Lifecycle
- Operations Support and Planning
- Software Architecture & Integration
- IT Risk Management
- IAM Governance and Operations
- Risk Analytics & Reporting
- Conversational UX and AI
PROFESSIONAL EXPERIENCE:
Confidential, SAN RAMON, CA
Sr. DIRECTOR, PRIVACY AND SECURITY
Responsibilities:
- Product management Chatbot Privacy and Security; Overall responsible for project delivery in US region
Technology Stacks: Node.JS, API.ai, Machine Learning, Messaging, API Connectors
Confidential, PLEASANTON, CA
DIRECTOR, CYBERSECURITY
Responsibilities:
- Managed business engagement, engineering and architecture functions including evangelizing and adoption of IAM services and solutions. Responsibility included achieving the business goals of several multi-million-dollar IAM projects designed to centralize, standardize, and automate identity management services, and for improving the usability, reliability, performance, and high availability of all Kaiser’s mission critical identity platforms and customer applications.
- Key Security Services included - Access Review, Access Request and Provisioning (manual / automated), Role Management, Transfer and Termination Notifications, Single Sign On, Elevated Access Management and Data Analytics
- Key Programs Managed:
- Development and Adoption of risk based multi factor authentication
- Elevated Access remediation using CyberArk password vault and session management; Integration with Splunk
- Consolidation of Identity sources
- Implementation of Soft / Hard tokens
- Migration of access review process from Aveksa to Oracle Identity Governance
Technology Stacks: Oracle Identity Governance, Aveksa Access Review, CyberArk, Oracle Adaptive Access Manager, RSA SecureID, Splunk
Confidential, TAMPA, FLORIDA
VICE PRESIDENT
Responsibilities:
- Product manager for access management suites of products such as Cert, Termination and Transfer Engine, Role and Profile Management, Ownership Management, Entitlement Management, etc.
- Key responsibility included defining product strategic direction and delivery timeframe, collaborate with Business partners / stakeholders on product capabilities and value propositions, drive product quality, effectiveness and adoption, etc.
- Key Programs Managed -
- Hardening of transfer controls
- Setting up Entitlement Data warehouse
- Build Role and Profile Mining Capabilities
Technology Stack: Custom applications using .NET, ASP.NET, Oracle, SailPoint IIQ
Confidential, TAMPA, FLORIDA
RISK AND ACCESS MANAGEMENT, DEVELOPMENT MANAGER / ARCHITECT
Responsibilities:
- Develop and present solutions / capabilities to C level executives and various IT managers. Adept at clearly demonstrating ROI of solutions at various circumstances.
- Development of a tool to Identify uncorrelated accounts and match / assign to correct identity.
- Custom tool development to achieve periodic review of access with endpoints designed to remove unwanted access automatically. Gap analysis with Sailpoint IIQ.
- Tool to cluster users access into profile and help organization create business roles.
- Provisioning / de provisioning automation; Contingent Workforce Management
- Toxic Combinations, Segregation of Duties, Privileged Access, etc.
- Removal of admin rights from local workstation as part of zero tolerance program.
- A scorecard methodology to prioritize risk based on 4 data elements - issue severity, threat, business impact and control strength.
Confidential, PARSIPANNY, NJ
GLOBAL PROJECT MANAGER / PROGRAM MANAGER - RESERVATION SYSTEMS
Responsibilities:
- Responsible for program and portfolio management activities for different applications of Hotel Group that was serviced by Cognizant.
- Executed and maintained program management processes and disciplines in the areas of:
- Program Schedule, Cost and Quality Management
- People and Communication Management
- Project Tracking and Risk / Issue Management
- Change Management
- Managed and perform the process of Statement of Work and contract creation to secure new and follow-on work.
- As program manager, continuously maintained alignment of program scope with strategic business objectives. Made recommendations to modify the program to enhance effectiveness toward the business result or strategic intent.
- Provided business consulting, knowledge expertise in application of technologies to business especially in alignment towards service oriented architecture.
- Ensured periodic dashboard reports on the current program, future opportunities and client issues to senior management.
- Fostered customer loyalty by ensuring quality assurance of deliverables and continuous value adds in terms of thought leadership and innovations.
- Played role of coach, mentor and lead personnel within a technical team of more than 100 people.
Confidential, DALLAS, TEXAS
SECURITY ANALYST - Client Engagement and RISK ASSESSMENT
Responsibilities:
- Define use case diagram for requirements after consulting business stakeholders and understand objectives.
- Coordinated development work for offshore team during build an testing phase,
- Responsible for monitoring progress on work managed by offshore and resolving day to day issues.
- Design modeling using UML - Class Diagram, Sequence Diagram and State Diagram
- Developed utility to help developers generate DAL code, Encrypt/Decrypt query strings and string literals translation using C#.
- Designed a customizable framework, which could be used for raid web application development using C#, ASP.NET and SQL Server.
Confidential
.NET WEB DEVELOPER
Responsibilities:
- Played module lead for various projects responsible for end to end delivery of the module.
- Work effort estimation using use case and function point estimation methodology.
- Prepare low level project plan and track the same.
- Code and design review - fxCop and Manual.
- Define Test plan and strategy.