Security Architect
Resume:
Jitendra brings over ** years of experience delivering solutions to help organizations address their most pressing cyber security challenges including cyber risk strategy & roadmap, security information and event management (SIEM), identity and access management (IAM), privacy and data protection, SAP and PeopleSoft security, vulnerability assessment & penetration testing, source code review, security and compliance framework with Fortune 100 companies. Have extensive experience leading the most complex and strategic cyber risk projects in the Public Sector, Life Sciences, Technology, Media, and Telecommunication (TMT), Oil & Gas industries. Have designed and implemented security strategy and controls for On-Premise, Co-located and Cloud solutions. Have solid 10+ years with big4 (Deloitte and PricewaterhouseCoopers).
Summary of Experience & Achievements:
Deloitte & Touche LLP – Manager, May 2011 till date:
Currently, serving as the Security Lead for multiple agencies across the United States. Responsible for architecture, direction and overseeing the day-to-day delivery of multi-year and multi-million dollar security program that meet various federal and state regulations. This includes SIEM solution, IAM solution, and end-to-end security for the entire Software Development Life Cycle (SDLC).
Successfully managed, designed, and implemented security programs for large enterprises and applications that included collaborating with various business executives, key stakeholders, IT teams, Vendor teams, Compliance teams, and Regulators.
Successfully brokered decisions across various functions, organization and borders including external third parties, business partners and regulators.
Successfully led cyber incident response including executive communication and coordination with various subject matter advisors.
Excellent and a proven ability to communicate complex issues and solutions to senior executives and key business leaders.
Excellent in identifying and evaluating complex business risks, technical risks and the related opportunities for business and cybersecurity transformations.
Successfully led and managed security architecture for large enterprises
including custom developed applications, ERPs and cloud applications.
Effective leadership and management skills with a proven ability to build and lead high performing global teams (2 to 12 resources) and develop future managers.
Developed and presented project and program dashboards/ metrics to the executive sponsors and key stakeholders.
Sales:
Successfully built a State Government account from less than 500K to $14M plus from 2014 to 2017.
Successfully sold over $5Million cybersecurity projects in 2016-2017. For the previous year sold over $3Million for Deloitte.
Successfully managed revenue of $3.4Million in 2016-2017.
Successfully led & participated in several orals that were positive wins for Deloitte.
Successfully led more than 15 Request for Proposal (RFP) responses in the 2015- 2016 year for Deloitte. Many of these resulted in positive wins for Deloitte.
Eminence & Strategic Growth:
Member of State of California’s Cyber Security Taskforce that reports to the State Governor.
Served as a subject matter advisor to develop maturity model using National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) for Deloitte’s global firm.
Successfully developed Deloitte’s framework for assessing Medical Devices Security for the Providers.
Led several aspects of the Deloitte’s eminence at the State of California Cyber Security Symposium & IT Security Symposium, over past four years.
Client & Project Performance:
Successfully led several multi-million dollar projects end-to-end.
Developed strong client relationships that provided very favorable references.
Clients have asked for Jitendra to lead, manage, and advice, on several occasions.
Successfully delivered RBAC for one of the largest SAP implementation in world that improved the access provisioning and governance process by over 90%.
Pace Plc (2Wire Inc.) - Senior Program Manager – IT Risk & Compliance, June 2010 to May 2011:
Reported to the CIO and responsible for the security and IT compliance of Pace Inc.
My role was expanded to include Pace’s global IT security programs and initiatives.
Millennium Software Solutions - Information Systems Auditor, March 2009 to June 2010:
Client (2Wire) was very happy with my performance and offered me a full time position with the company, which I accepted.
Successfully led projects for software license compliance audits for more than 30 customers. These reviews led to potential recovery/ revenue generation of close to USD $9.2Million.
Deloitte & Touche LLP – Manager, January 2006 to March 2009:
Promoted to Manager in 2008.
Key member of PMO (Project Management Office) liaison for more than 30,000 hours outsourced between Deloitte US and India offices
Led team for creating detailed test procedures for SAP & PeopleSoft Security & SOD.
Led team to create unified controls mapping to ISO 27002, HIPAA, PCI, and GLBA.
Led team for Internal Control Optimization and Rationalization, which reduced the number of controls from 400 to 120 and testing process by 70%. This also helped improve management of controls by as much as 50%.
Sony Electronics Asia Pacific – Security Specialist, Singapore July 05 to Jan 06:
I was responsible for the IT SOX readiness and Security for the Pan-Asia region.
Significantly improved the Management’s self-assessment process for ISO 27000.
PricewaterhouseCoopers IPL – Assistant Manager, India from Nov 03 to July 05:
Led more than 15 ISO 2700x assessments and implementation projects.
Developed ISO 2700x templates for Information Asset Register, Statement of Applicability & Security Awareness Material.
MIEL IPL – Security Consultant, India from Feb 03 – July 03.
Led the ISO 2700x assessment for MIEL customers.
3D Networks (Bangalore Labs IPL) –Security Consultant, India from Jan 01 to 03:
Led several network and security assessments, design and implementations projects.
Received outstanding performance award in 2002.
Technical Summary:
Projects
Frameworks/ Regulations
Technology
Cybersecurity Strategy & Roadmap
Developed IAM Strategy & Roadmap
Managed IAM & SIEM Implementations
Access governance design and implementation
ERP Role Design and SOD Resolution
Mapping Sensitive Data
ISO 2700x
Implementation & Management
IT Risk Assessment & Management
NIST CSF
NIST 800-53
& 53A
FedRAMP
IRS 1075
HIPAA
21 CFR
EU GDPR
Data Privacy
ISO 2700x
PCI
ITIL
SOX/ J-SOX
COBIT
IAM: Oracle Identity Management Suite, OKTA, SailPoint and Aveksa
SIEM: Splunk and QRadar
Tools: Kali Linux, Nessus Tenable, IBM AppScan, HP Fortify, IPS/IDS and Firewalls
ERPs: SAP ECC, PeopleSoft and Salesforce
Cloud Platform: Amazon Web Services (AWS) and Salesforce
Big Data: Hadoop, Cloudera
Databases: Oracle & MS SQL
OS: Windows, Linux & Mainframes
Certifications:
Project Management Professional (PMP).
Certified Information Security Professional (CISSP).
Certification in Cloud Security Knowledge (CCSK).
Certified Information Systems Auditor (CISA).
Okta Certified Implementation Partner.
Certified in Aveksa Access Governance Administration.
Certified APPROVA Professional: BizRights Enterprise Control Software Certified.
Passed BCP exam conducted by DRI (Disaster Recovery Institute) USA.
Passed Lead Auditors exam for BS7799 (ISO 270001).
Education:
Bachelor of Science (BSc) in Physics & Computer Science from University of Mumbai – India.
References and additional details will be provided, once the hiring decision has been made.
Contact this candidate