Security Manager
Resume:
PRIYAL KOTECHA
Cary, NC, **519
Tel: 919-***-****
Email: *************@*****.***
Resume Summary: I have fourteen years of experience working in the
information technology industry, with an emphasis on information security.
During this time I have had the opportunity to work with and lead several
different technical and non-technical teams. I have had the opportunity to
work with many different customers, lead projects to completion and
demonstrated commitment to customer service.
My expertise includes, but is not limited to, information security
governance and audit, information security risk management, information
security program development and management, and incident/disaster
management and response.
Education: University of New Brunswick
Completed Bachelor of Computer Science degree in 1996
Completed Bachelor of Business Administration degree in 1992
Certifications: Acquired Certified Information Systems Security
Professional designation in 2005
Acquired Cisco Certified Network Associate designation in 1999
Acquired Microsoft Certified Systems Engineer designation 1997
Work History: Full - time Employment
bioMerieux Company, Durham, NC (April 2008 - Present)
Title: North America Information Security Team Lead
- Responsible for the formation and communication of corporate information
security policies and procedures
- Led in the development and implementation of bioMerieux's global
information security risk management program
- Developed and implemented bioMerieux global information system change
management process
- Developed and implemented bioMerieux global information system
Vulnerability Assessment process and team
- Work with the bioMerieux executive management team to define appropriate
level of risk acceptance
- Led in the development and implementation of bioMerieux's global
information security audit program
- Perform vulnerability assessments and penetration testing, coordinating
mitigation efforts with information system owners
- Implementing bioMerieux global information security awareness program
- Leading project to implement a global web filtering solution
- Ensure bioMerieux's information security program meets HIPPA, FDA and ISO
27001 governance control framework requirements
- Monitors, evaluates, and maintains systems and procedures to safeguard
internal information systems
- Developed information security baselines for various different
technologies
- Work with a variety of information security tools such as Nessus, Nmap,
Foundstone Super Scan, GFI LAN Guard, Symantec Enterprise Security Manager,
Symantec SNS IPS/IDS, Microsoft Active Directory, BackTrack security CD,
DumpSec, Ethereal, Kismet, NetStubmbler, L0phtCrack, and PwDump
Froedtert and Community Health Hospital, Menomonee Falls, WI (June 2006
-December 2007)
Title: Senior Information Security Analyst
- Worked as a member of the information security team that monitors,
evaluates, and maintains systems and procedures to safeguard internal
information systems
- General duties include information security audits, policy documentation,
patch management, system monitoring and administration
- Responsible for the formation and communication of corporate security
policies, procedures and standards
- Managed various information security projects
- Worked with the executive management team to improve and implement
current and new security policies, procedures and standards in accordance
to HIPPA requirements
- Led in the development of the IT security risk management process
- Worked with different hospital units to determine appropriate levels of
information security risk acceptance
- Performed information security risk audits on existing and new
information technologies
- Participated on the Vulnerability Assessment and Security Awareness Teams
- Developed information security baselines for various different
technologies
- Worked with a variety of information security tools such as Nessus, Nmap,
Foundstone Super Scan, GFI LAN Guard, Symantec Enterprise Security Manager,
Symantec SNS IPS/IDS, Microsoft Active Directory, BackTrack security CD,
DumpSec, Ethereal, Kismet, NetStubmbler, L0phtCrack, and PwDump
Wells Fargo Bank /Strong Financial Corporation, Menomonee Falls, WI (Feb
2003 - June 2006)
Title: Information Security Analyst
- Responsible for communicating Wells Fargo corporate security policies,
procedures and standards to all employees at the Menomonee Falls, WI
location
- Worked with the executive management team to improve and implement
current and new security policies, procedures and standards
- Reviewed new business systems and productivity tools for adherence to
corporate security policy
- Developed security baselines for various different technologies
- Identified, researched, evaluated, and recommended service improvements,
tools and new services in support of the data and security infrastructure
- Worked with the different business units to determine appropriate levels
of risk acceptance
- Mentored the Wells Fargo Desktop team with regards to securing the
desktop environments
- Project lead in the implementation of Postini SPAM/virus blocking
solution for the email infrastructure
- Implemented St. Bernard's Update Expert patch management software, this
software reduced our patch implementation times drastically
- Led a project to secure all Windows based servers in the DMZ
Title: Senior Network Administrator
Worked as a member of a team to manage a Microsoft network consisting of
500 servers
-- Translated business needs into data or technology infrastructure
architectures, frameworks, and strategies
- Performed software and hardware technical analysis and support
- Worked with the procurement process for data and technology
infrastructure tools or products
- Identified, researched, evaluated, and recommended service improvements,
tools and new services, in support of the data infrastructure
- Worked on the server consolidation project, implemented technologies such
as VM Ware
- Implemented HP Systems Insight Manager for hardware based monitoring of
all Intel servers
IBM, Madison, WI, USA (January 2001 - August 2002)
Title: Storage Network Consultant
- Responsible for implementing Storage Area Networks (SAN) solutions for
IBM customers
- Translated business needs into data or technology infrastructure
architectures, frameworks, and strategies
- Worked with the procurement process for data and technology
infrastructure tools or products
- Identified, researched, evaluated, and recommended service improvements,
tools and new services, in support of the customer's data infrastructure
- Worked with potential new and existing customers throughout the sales
cycle
- Worked with the customer to create project plans for procuring,
implementing and installing new technologies
- Provided technical support with respect to storage and SAN technologies
- Provided future direction to IBM customers with respect to storage and
SAN technologies
Cisco Systems, Inc, San Jose, CA, USA (January 2000 -December 2000)
Title: Senior Network Administrator
- Worked as a member of a team to manage a Microsoft network consisting of
1000 servers
- Translated business needs into data or technology infrastructure
architectures, frameworks, and strategies
- Performed software and hardware technical analysis and support
- Worked with the procurement process for data and technology
infrastructure tools or products
- Identified, researched, evaluated, and recommended service improvements,
tools and new services, in support of the data infrastructure
- Had to develop and work with budgets for new technology implementations
Compuware Corporation, Madison, WI, USA (May 1998 - January 2000)
Title: Information Technology Consultant
- Worked for the Compuware's technology consulting practice
- Provide technology consulting services to Compuware's customer base in
Wisconsin
Maritime Information Technology Inc., Fredericton, NB, Canada (June 1996 -
April 1998)
Title: Information Technology Consultant
- Worked for the Maritime Information Technology's IT consultant practice
- Provided technology consulting services to Maritime Information
Technology's customer base in New Brunswick, Canada
Extra Curricular Activities:
- Enjoy participating in team sports, play hockey and soccer
- Regularly workout and jog
- Enjoy reading non-fiction books
- Enjoy travelling and meeting people of different cultures
Contact this candidate