IT Security Executive

Shibu Cherian

Phone: 914-***-****

********@*****.***

OBJECTIVE

To obtain a challenging and responsible senior management position with a progressive organization in which leadership, strategic planning, business and technical acumen, program management and governance, organizational management, technical experience, project management, people and process improvement skills and commitment to excellence will be utilized to build business value, innovation and partnership.

EXPERIENCE

7/2014 – Present

KPMG

Houston, TX

REGIONAL IT SECURITY MANAGER

Lead the Strategy, Planning and Execution of Enterprise Information Technology and Security program in the Americas region

Provide guidance and support for the Organizational, Technology, Environmental and Personnel Security efforts in the region

Orchestrate and drive the successful and timely completion of IT initiatives to ensure their alignment to transformation goals in the region

Implement and align the compliance of the Americas region in conjunction with the Global Information Technology Program

Advice and partner with business stakeholders in the region to ensure the efficacy of the IT program

Providing strategic and tactical guidance for projects delivering or changing IT systems

Liaise with Business leaders, Global CIO, CISO to drive adoption of the IT and security program

Contribute to and delivery of continuous improvement initiatives

Extensive support of a formal / structured IT security risk assessment methodology, Risk Management and mitigation planning

Provide strategic and tactical security consultancy for projects and security engineering

Design and delivery of Network and Application Security Architecture & Engineering, Risk Assessment, Governance and Compliance, Security Awareness and Security Incident Monitoring in the region

Interface with Governance and Compliance team for regulatory changes in their region that could impact business and/or IT operations

Provide reporting and maintain a balanced scorecard on the status of the Information program to regional and global stakeholders

Lead global team and consultants, Development, Coaching, Mentoring, Evaluations, Hiring

Manage budget for the region, cost control, contract and vendor negotiations and management

Implement Information security management frameworks, such as ISO 27001, ITIL, COBIT, NIST, OWASP, HIPPA, SOX, PCI, SSAE16, SOC 1 & 2

Drive innovation management and IT- Business transformation, thought leadership initiatives

Protection of intellectual properties, privacy, information assets, IT auditing and governance

Lead the digital security agenda and support to Social, Mobile, Analytics, Cloud initiatives

ITSM & Service Delivery, SLA/SLM, KPI, KRI, Metrics, Balanced Scorecard, Executive briefing

7/2005 – 6/2014

ROTHSTEIN KASS (acquired by KPMG)

DALLAS, TX

MANAGER – IT & SECURITY (CISO)

* Lead enterprise wide Information Security and risk management program across all IT function including thought leadership, strategy and initiatives, business cases/due diligence process, business risk management, leadership in program /project and team management, executive reporting, client relations, vendor management, budgeting, negotiation, contract management and compliance reporting. Advocacy and act as the ambassador for information security awareness, business continuity/disaster recovery planning, user experience initiatives, IT and business alignment, program development and delivery management.

* Lead IT Security Program Management, strategic decision making process of security initiatives, DR/BCP, Security roadmap planning, software security, mobile strategy, user experience, process improvement, Incident Response handling, vulnerability and threat management, compliance reporting, SSAE16 audits, SOC 1&2, OWASP/COBIT/NIST/ISO/ITIL framework, Risk assessment and management, Security awareness program, implementation and support of all aspects in Information Technology Projects including DLP, data governance, cloud computing, BYOD and virtualization security.

* Lead, delegate, mentor and coach IT security and network engineering staff.

* Lead all aspects of the IT infrastructure solutions and security solutions including network and server architecture, Cisco VoIP systems, Cisco Nexus 7K, 6500 switches, QoS, IP Multicast, Cisco UCS, Cisco IPS, ISE/NAC, ACS, Cisco ISR routers, Cisco ASA next generation firewalls/Palo Alto Firewalls, APT and Malware controls, Imperva application firewalls, SIP/PRI's, MPLS, Cisco ACE and Citrix NetScaler load balancers, WLAN, AAA/RADIUS/TACACS, RSA, VMware and Storage.

* Led the design, implementation and management of secure network, change controls, BGP, EIGRP, ACL's, DMZ, VPN, Q1 SIEM, Qualys Vulnerability management, Riverbed & Cisco WAN acceleration technologies, IronPort Secure Gateway, Reverse Proxy, technology research and troubleshooting using Netflow, Opnet ACE+ application and network performance monitoring, documentation, implement procedures and service delivery as part of the ITIL initiative.

1/2004 – 7/2005

CAP GEMINI

NEW YORK, NY

SENIOR NETWORK MANAGER

Responsible for the routine testing and analysis of all elements in a multi-site healthcare environment (including Cisco 3800 routers and 6500 switches, Nortel BayRS Routers, Passport 8600, Accelar 1200, BPS 2000 & BayStack 450 switches (L2-L7), 3Com & Airespace Wireless communications switches and routers, network applications, cable plant and Siemens HiPath 3800 VoIP Phone System). Utilizes software and hardware tools, identifies and diagnoses problems and factors affecting network performance. Responsible for the Network expansion planning, implementation and maintenance of network equipment. Provide first/second/third level testing and/or troubleshooting of network and network related problems. Experience in TCP/IP, Layer 2-7 switching, IPX and routing technology (RIP, OSPF, BGP, IGRP, STP) & wireless technology, implementing firewall security, VLAN, WLAN, WAN technologies (ATM, T3, Frame Relay, DWDM). "Hands-on" knowledge of "Sniffer" application. Experienced in Visio application for network diagramming & documentation, remote access technologies (IPSec, VPN, RAS & SNMP management. Also responsible to recommend modifications to network components to optimize network efficiency. Work with Windows 2003 server, Novell Netware, distributed applications, Groupwise & Novell application launcher and Z.E.Nworks.

6/2002 – 12/2003

BYRAM HEALTHCARE, INC.

WHITE PLAINS, NY

SYSTEMS MANAGER

Primary responsibility includes, providing hardware and software application support for users on a multi- platform environment. Troubleshoot and maintain network technologies such as VPN, LAN/WAN, IOLAN Servers, Cisco firewall, routers and switches, TCP/IP, DNS, DHCP & OS applications such as AIX, UNIX, Linux, Windows 2000 Server, LDAP server, G30 Fax Server, SSH, Telnet, Nortel Symposium/CallPilot, Win 95, 98, 2000, XP, MAC OS9, OSX Jaguar, MS office, COGNOS, ACT, ADP, HRIS, PeopleTrak & also perform VERITAS Net backup (Data Center). Perform system analysis; deploy new systems, debug, and support the end user application with Informix, SQL, ACE, 4GL, and EDI reports on the production system. Design and document the application software to support the complete business process and the Information Systems. Develop & Enhance Intranet web-based forms and site maintenance using HTML, Java Scripting, ASP and Perl. Also conduct user training on hardware and software installed.

2/1998 - 3/2002

WORLDCOM, INC

NEW YORK, NY

NETWORK DESIGN/SYSTEMS MANAGER

Primary responsibility includes to provide design and engineering support, understand the customer business and design customized solutions with highly sophisticated data & voice communication technology like T1, T3, Frame Relay, ATM, VPN, dedicated internet, IPL, VoIP, Broadband, SONET, SDH, Web hosting, Voice services and applications to improve efficiency. Hands-on experience with TCP/IP, Ethernet switching, Spanning Tree, LAN/WAN technologies, OSI, routing protocols such as BGP, EIGRP, RIP and OSPF, designing network with Cisco routers and CSU/DSU’s. Work closely with the install engineers and provisioning to ensure that implementation of the services is completed in a timely manner.

EDUCATION

5/2004

PACE UNIVERSITY

WHITE PLAINS, NY

Master's Degree GPA 3.75

Master’s in IT and E-commerce Management.

Mastered advanced Information Technology strategies in the Digital economy, Innovation management, eCommerce development and Integrated Marketing Communication plan.

4/2001

DOMINICAN COLLEGE

ORANGEBURG, NY

Bachelor's Degree GPA 3.5

BBA in Management Information Systems.

Have mastered techniques of Strategic Management/Planning, LOB/SBU Strategies, and Financial, BCG models, GE matrix, SWOT Analysis, Competitive analysis and Industry standards.

CERTIFICATIONS

CISM, CRISC, CCDE Written,, CCNP-SECURITY/CCSP, CCNA, CS-CISecS, CS-CIPSS, CS-CASAS, 4013 & 4011 RECOGNITION CERTIFICATES.

TECHNICAL SKILLS AND ADDITIONAL QUALIFICATIONS

SAS70/SSAE16 audits, OWASP/COBIT/NIST/GLBA/FACTA/SANs Framework, SOX, PCI, GLBA, ISO 27001, Privacy laws, Confidentiality, Integrity and Availability management, data governance, cloud computing and virtualization.

Lead, delegate, mentor, coach team members, performance management, hiring, evaluations

Cisco Switching, Routing, IP Multicast, Security, Unified Communications, VMware virtualization, Microsoft Share Point and CRM application, Citrix, CMDB, Airtight WLAN IPS, DLP, RSA/Microsoft Identity Management, Rights management, AAA/Radius/Tacacs, PKI, SSO, Web 2.0, Antimalware, SaaS, Web 2.0, MPLS/VPLS/Fiber ring, Rightfax, ArcSight/Q1 SIEM, Qualys Vulnerability management, Penetration testing, Secure Software assurance and coding, Riverbed & Bluecoat WAN acceleration, IronPort/Websense Web/Email Firewalls, Netflow/Wireshark, Opnet ACE Live/Network Physics application and network performance monitoring, documentation, implement procedures and service delivery as part of the ITIL initiative.

Mastered techniques of Strategic Management/Planning, LOB/SBU Strategies, Financial Management, BCG Model, GE Matrix, MBTI, SWOT Analysis, Porter’s Competitive Analysis and Industry Standards.

Learning Desire, Organizational, Analytical, Technical, Interpersonal, Oral, Written and Communication Skills

Contact this candidate