Security Program Manager
Resume:
PRABHAKAR KASU (C EH)
(C) 609-***-**** * ac4g1o@r.postjobfree.com
Cybersecurity Architect and Program Manager Security Assessments, Security Architecture, Solution Delivery, Program Management
Experienced in cybersecurity risk assessments, cybersecurity architecture, threat and vulnerability management, improving security posture, planning and executing disaster recovery and business continuity plans, and solution delivery. Proven track record at Fortune 100 and growing start-up environments. Bring working proficiency in biometric systems, cryptographic systems, and IOT/ICS security. Certified in ethical hacking (C EH) and working on getting certified in information security management (CISSP in Q1, 2018).
TECHNOLOGY EXPERTISE
End-Point Detection and Remediation (EDR): Cynet, EndGame, OPSWAT, DeepInstinct
Network Security: Skybox Security (for Firewall and Network assurance), GuardiCore (workload security; micro-segmentation)
Security, Risk, Threat and Compliance Analytics: Skybox Security, CoreSecurity, AttackIQ, Picus Security, Digital Stakeout
Access Control: Vidder (Zero-Trust), DuoSecurity
Fraud and Industrial Security: BioCatch, Claroty, CyberBit
Cloud Access Security Brokers (CASB and DLP): Skyhigh Networks, Bitglass
Other Security Solutions: Behavioral Analytics, IdAM, Privileged Account Management
Frameworks: SABSA, NIST 800, ISO 27K, PCI-DSS, CIS/SANS
TECHNOLOGY IMPLEMENTATION ACHIEVEMENTS
Cybersecurity Architect & Project Manager Ortus Consulting, Cary, NC [Since JAN 2013]
Lead architecture, proof-of-concept implementations, and delivery of security solutions to mid-market and enterprise clients in USA and Asia. Solutions proposed and delivered and responsibilities focus on:
Assessing network security posture – vulnerability assessments, attack simulations
Assessing security needs and business context to design, implement, and integrate security solutions
oEnd-Point Detection and Remediation (EDR) solutions
oFirewall & network security assurance
oCloud Access Security (CASB)
oZero-Trust/ Software Defined Perimeters (SDP)
Work closely with vendors/partners and client stakeholders
Identify and communicate gaps, overlaps,
Skill Development University [Nov 2017]: India’s first skill development university (HVSU) is planning on bridging the skills gap in cybersecurity. To meet this objective, HVSU approached Ortus to design network security curriculum as well as a Network Security Lab to enable learners to configure, assess, simulate attacks, and monitor networks for security threats.
Solution: Designing network models to support red and blue security team activities, tools to monitor network and application activity in a hybrid environment.
Credit Card Division of a Large Bank [June 2017 – Nov 2017]: They had 18 months to design and implement an effective security posture once their strategic service provider pulls out their security infrastructure at end-of-contract.
Solution: Deployed Skybox Security platform
To improve security posture identified their crown jewels to be protected
Gained visibility to their entire network attack surface along with fingerprinting of assets
Assessed and optimized firewall rules/policies
Centralized vulnerability data from previous scan and configured for more frequent passive vulnerability scans
Identified and prioritized vulnerabilities through simulated attacks
Solution: Deployed GuardiCore platform
Gained visibility to all application data flows and helped in getting visibility to potentially exploitable pathways
Implemented minimal micro-segmentation policies to protect crown-jewels (critical assets)
Benefits to Client:
Full visibility to attack surface, application data flows, optimized perimeter policies
Continuous visibility to vulnerabilities, compliance, east-west traffic – improved security
A Credit Union Bank [May 2017 – July 2017]: This smaller bank, with several hundred branches, did not have the security infrastructure to defend against network attacks, ransomware and other malware based breaches.
Simulated cyber-attacks to assess risks from several attack vectors – email, web, and network.
Solution: Deployed EDR solution, to protect their endpoints, across their headquarters and several branches.
Solution: Deployed Skybox Security platform to
Assessed and optimized firewall rules and policies
Identified and prioritized vulnerabilities through simulated attacks
Solution: Deployed GuardiCore platform
Gained visibility to application data flows and helped in getting visibility to potentially exploitable pathways
Implemented minimal micro-segmentation policies to protect crown-jewels (critical assets)
Benefits to Client:
Full visibility to attack surface, application data flows, optimized perimeter policies
Continuous visibility to vulnerabilities, compliance (SWIFT, PCI, RBI), east-west traffic – improved security
A Large Natural Gas Company [Jan 2017 – May 2017]: This public sector entity supplies natural gas to nearly one million customers. Their key concerns were to protect customer data, PCI compliance, and
Conducted risk assessment based on their application and network architecture. Reviewed vulnerability previous vulnerability scan and audit reports.
Optimized firewall rules and provided continuous visibility to PCI compliance through Skybox implementation.
Worked with SAP team to identify, mask/encrypt sensitive customer PII data
Deployed and configured SDP solution to secure access to SAP system which was mission-critical
A Rapidly Growing Content Management Business [Jan 2017 – Apr 2017]: This company’s content management business rapidly acquired over 100K clients. Their entire IT infrastructure and applications run on Amazon AWS servers and leverage other SaaS platforms.
Assessed their security needs and risks and deployed an AI-powered endpoint protection solution
Implemented GuardiCore to monitor traffic across all AWS cloud workloads and improve security posture.
A Defense Manufacturer [Sept 2016 – Dec 2016]: This company manufacturers simulation products for the defense sector. To protect their IP and classified projects, their product teams work on an air-gapped network. Their concern was to secure Amazon AWS workloads, authenticate access to cloud, and fully secure their air-gapped network.
Assessed risks and gaps in their process flow to recommend and implement 2FA (two factor authentication) for cloud access
Deployed EDR solution on their internet connected network
Deployed a multi-malware detection engine to control all data flows into the secure, air-gapped network.
Deployed network DLP solution to protect their intellectual property (defense product designs).
For Law Enforcement and National Security Agencies [Aug 2015 – Aug 2016]
Worked with stakeholders to understand their unique needs to identify, evaluate, and select multiple Security solutions:
Lead project to implement OSINT (Open Source Intelligence) solution along with vendor resources. Harvested data from multiple sources to perform semantic text analysis and build social and threat graphs.
Evaluated and deployed solutions to track criminal activity in the deep and dark web
Lead network security design to protect Intelligence from network and endpoints used for normal operations.
Implemented EDR, network, IdM, and endpoint DLP solutions.
NTUC LINK (Singapore) [Sept 2015 – Dec 2016]: LINK manages a Loyalty Program for 1.8 million members and 1000+ merchants in Singapore. Scope included security and privacy of member, merchant, and transaction data from cyber breaches.
Helped client and vendor implementation team (Microsoft Dynamics CRM and Adobe Campaign Manager) assess application access controls.
Implemented CASB solution to control access, mask/encrypt data privacy in CRM.
Tempur Sealy International ($3 Billion mattress manufacturer) [Apr 2013 – Aug 2015]: Engaged by the CIO to guide and oversee implementation of Microsoft Dynamics ERP, CRM, Business Intelligence and IBM B2Bi (EDI) solutions across 6+ countries after acquiring Sealy. Orchestrated delivery of solutions with Client and a 150-person offshore delivery team. Setup offshore team to handle Security Operations (SOC) with 24x7 coverage.
Managed Services Manager ECS Biztech Pvt. Ltd., India [JAN 2010 – DEC 2012]
ECS BizTech provided managed hosting, disaster recovery (DR), cloud (Amazon AWS), and security services to clients across multiple industry verticals. My responsibilities included managing datacenter operations, security architecture, implementation, operations, and meet SLAs for managed services. Partnered with IBM, CA, SAP, Microsoft, Oracle, and others. Supported over 30 clients.
Client Workload Provisioning: Bare metal, virtualized, and cloud (AWS) workloads for hosting SAP, Microsoft Dynamics, and other enterprise applications. Multiple data center locations. Storage in datacenter was virtualized for clients.
Disaster Recovery: Data replication and application provisioning in geographically dispersed data centers to meet RPO/RTO SLAs.
Managed Endpoints: Deployed EndPoint protection (AV) for remote management
A leading Natural Gas Company in India (GAIL): Implemented a system to detect and prevent Cyber Attacks on their SCADA systems which control gas pipelines spanning 7000+ Miles. Security related and other events were fed from SCADA, Access Control, and other systems into a PSIM platform to monitor and automate SOPs (Standard Operating Procedures).
Datacenter Operations Leader CtrlS Datacenters Ltd., India [OCT 2008 – SEPT 2010]
CtrlS is Asia’s first Tier4 datacenter. Lead this business into Managed Services model. Defined and built a team to deliver Managed Services (IaaS Cloud, Managed Security, Disaster Recovery, Business Continuity Planning, Data Backups, and others) capability to mid-market and enterprise clients in India and Middle East.
Defined, designed, built, and offered several managed services capabilities (listed above)
Worked with HP team to design an automated provision cloud (IaaS) using HP BladeMatrix servers and HP Systems Management software.
Lead network operations, customer support, datacenter operations, and pre-sales teams.
Enabled sales teams and built service team which yielded $5 million revenue in 18 months (built from the ground-up)
Defined and instituted ITIL based processes and guided the ISO 9001 and Tier 4 data center certifications.
Represented this client at various industry conferences and enterprise financial services clients
Manager Microsoft, Redmond/ India [JAN 2006 – AUG 2008]
Recruited by Microsoft’s global CIO to lead global program delivery and application portfolio to deliver tangible value to the business from $2.1 billion annual IT budget.
Played a key role in collaborating with CIO leadership team in defining initiatives to save $450 million over 3 years
Planned $10+ million annual savings from $60 million annual spend on software delivery through agile practices
Lead portfolio rationalization initiative to take costs out from managing 1900+ global applications
Took out costs from $50M-$60M annual spend on outsourcing to Indian IT partners.
Lead a team to implement, manage, and support a large portfolio of regional applications (over 1200 applications).
Center of Excellence Leader GE Consumer & Industrial, India [APR 2003 – JAN 2006]
Led Business Intelligence/Datawarehouse and IT Infrastructure/Security Centers of Excellence with over 200 resources.
Responsible for architecture, development, and operations.
Rolled out ITIL-driven processes. Implemented solutions for Change Management, Asset Management, and others.
Set up a Security Operations Center in India to provide 24x7x365 support (multiple data centers + global offices)
Lead data center consolidation (twice) and application rationalization to save $ millions in annual costs
Product Manager/ Architect Thomson Reuters, USA [MAR 2001 – NOV 2002]
Rehired by CTO (earlier stint was focused on building a new product platform on new internet technologies) to lead Data Analytics Product Platform Architecture, software development, infrastructure operations, team building, and client engagements.
Designed and built a new product platform to integrate 12 structured and unstructured content sources to serve research needs of Investment Bankers with an addressable market of $500 million annually.
Directed product architecture, engineering and support for this $50 million business unit.
Saved over $1M in costs on Siebel CRM implementation and contributed to shared IT services initiatives.
Led day-to-day technology operations to ensure high availability, performance, and security
Manager Accenture, New York [APR 1998 – MAR 2001]
Consulted for Accenture’s Financial Services clients – Goldman Sachs, US Bank, OCBC Bank, Anthem Blue Cross Blue Shield and few others. Guided Enterprise Architecture, technology operations, lead teams, and executed large transformational programs.
Developed growth strategy for a financial services client to grow revenues 10 times in 3 years.
For OCBC bank (3rd largest in Singapore), as part of the core CIO team, lead redesign of enterprise multi-channel architecture and reengineered processes to achieve 360 degree of the customer and provide differentiating capabilities.
At US Bank PMO with a $150M budget, led 4 large programs focused on leading US Bank into the digital era
PRIOR EXPERIENCES: Worked for Merrill Lynch, AIG, and JJ Kenny in various technology roles.
EDUCATION:
Pursued MBA (Finance) at Rutgers, State University of New Jersey until 1996
MS (Computer Science), New York Institute of Technology, 1990
BE (Electronics & Communication Engineering), Osmania University, 1985
CERTIFICATIONS:
Certified Ethical Hacker (C EH), EC-Council, October 2017; Working towards CISSP certification.
COURSES DEVELOPED (for a Skill Development University, India):
Sept 2017: Network Security Analyst
Nov 2017: Security Architect
Contact this candidate