www.opensecurityalliance.

org

CONSULTANT PROFILE
My NAME
DESIGNATION

Information security consultant

SUMMARY

Experience: 11.5 years

Worked on various set of tools / technologies.
Auditing applications (approx. 50) from Security Perspective
i.e., ensuring that no application is deployed in LIVE env. with
open vulnerabilities present.
Provided Authorization & Identity Management Solution to the
Organisation.
Streamlining / setting-up training group activities within the
organization

CERTIFICATIONS

Managerial
o People Management and Team Building
o Strong Communication (Verbal and written)
o Project Management
o Defining the functional requirements / deliverables of
the project
o Quality Standards adherence: SEI-CMM Level 5, ISO
9001:2002, ISO/TS 16949:2002, ISO 27001.
o

EDUCATIONAL
QUALIFICATION

Degree (s):
o Master of Computer Management
o
o

Master Of Business Administration

B.Sc. (Computer Science)

GNX (NIIT Graduate in Software

Exports)

Pune
University
IP University
Delhi
University
NIIT

o
SKILL SETS

Open Security Alliance

www.opensecurityalliance.org

Technical
o
o
o
o
o
o
o
o

Security Vulnerability Testing

Installshield / InstallAnywhere
Java
Enterprise Directory
Visual Basic
C / Tuxedoo
Oracle
C++

3 yrs.
2 yrs.
7+ yrs.
5+ yrs.
4 yrs.
4+ yrs.
6+ yrs.
2 yrs.

Page 1 of 4
Company Confidential

Any queries with respect to this document may please be addressed to the person who has shared the profile with you or you can
communicate with the us at info (AT) opensecurityalliance (dot) org

www.opensecurityalliance.org

Project Manager - Pitney Bowes MapInfo Ltd.

Pitney Bowes MapInfo is the only development centre of Pitney
Bowes Inc. (a 5 billion USD Company) outside US.
Team
Development & Designing: 14 Members
Testing: 10 Members
Job Responsibilities
Responsible for building the team for Business
Intelligence Location Intelligence Component project
and taking over the activities from the counterparts in US
office.
Delivered functionalities with complete ownership of
features from the Noida Centre in a short-time span of 6
months.
Co-ordinating with remote teams in Troy & Toronto
location.
Handled the role of ScrumMaster of Noida team.
Responsible for application security assessemnts
Heading site-level Training Steering Committee
Job Responsibilities
Creating policies / procedures for the training requirements
in various groups at Noida site
InfoSec Analyst - ST Microelectronics Ltd.
STMicroelectronics is a global, independent semiconductor
company that designs develops, manufactures and markets a
broad range of semiconductor integrated circuits (ICs) and
discrete devices used in a wide variety of microelectronic
applications, including telecommunications systems, computer
systems, consumer products, automotive products and industrial
automation and control systems.
ISMS Implementation (Mar 2007 September 2007)
Team - 20 Members across various business units
Perform Business Impact Analysis of various Business Units
in the site
Responsible for implementing ISMS guidelines and assist
the site to be ISO 27001 certified
Application Security Management (Nov 2004
September 2007)
Role Played - Program Manager
Tools/Technologies
Various Security Auditing tools
Job Responsibilities
Responsible for auditing all applications (approx. 50) from
Security Perspective i.e., ensuring that no application is
deployed in LIVE env. with open vulnerabilities present.
This involves high level of co-ordination with the
application team. Applications are being developed across
different sites namely Singapore, Catania, Crolles,
Imparting InfoSec Awareness & Business Application

Open Security Alliance

www.opensecurityalliance.org

Page 2 of 4
Company Confidential

Any queries with respect to this document may please be addressed to the person who has shared the profile with you or you can
communicate with the us at info (AT) opensecurityalliance (dot) org

www.opensecurityalliance.org

Security trainings across different sites.

Co-ordination with development team for designing /

developing Security Re-usable utilities which can be used
across the department, Preparation / Institutionalization of
Security Guidelines across different sites / Business
Solution Group(s), Auditing projects so that they meet the
corporate norms of InfoSec, Responsible for implementing
and maintaining security in applications as agreed by
senior-level management, Design, implementation,
management, and review of the organizations security
policy, standards, guidelines, and procedures.

ST Microelectronics Ltd.
Projects

Profiling System (Sep 2003 Aug 2006)

This is the Identity Management solution for ST. The RBAC is

implemented which is also synchronized with the authorization
needs of the existing legacy applications.
Role Played
Team Leader
Tools/Technologies
Java
Netscape Directory Server
Job Responsibilities
Effort & Schedule estimation, Defining functional
requirements of the project, Division of tasks between
team members based strictly on the Project schedule,
Timely technical & management review of the project
based on Project Management tools, Project testing based
on the deliverables defined in functional requirements,
Managing the delivery to the various application teams on
time

Integrating with the representatives in various teams for

the integration testing of the service component with
various applications, Strategizing system requirement in
order to meet business requirement of an Authorization /
Profiling solution, Giving support in pre-defined SLAs.

Organization Security (Jan 2000 Nov 2003)

This project is dealing with the security aspect of the applications,

i.e.; this application give a user access to the application
according to his profile defined in the system thus ensuring only
authorize access to the application.
Role Played\- Team Leader
Open Security Alliance
www.opensecurityalliance.org

Page 3 of 4
Company Confidential

Any queries with respect to this document may please be addressed to the person who has shared the profile with you or you can
communicate with the us at info (AT) opensecurityalliance (dot) org

www.opensecurityalliance.org

Team
2 Members
Tools/Technologies
VB, Tuxedo, Oracle
Job Responsibilities
Defining technical requirements of the project based on
the functional requirement given, Detail designing of the
system, Configuration of development environment
(Tuxedo), Project Coding / testing based on the deliverables
defined, Managing the delivery to the Functional Leader
on time by integrating with various applications,
Communicating with other application General Designers
in France for the integration of out services with their
respective applications, Taking feedback from the user
community, and implementing the changes in the
application wherever possible at the User site, St. Genis,
France.
BUSINESS SKILLS

Inter-group Co-ordination
o ISO Internal Quality Auditor
o Security Vulnerability Auditor
o ISMS implementation
Training Steering Committee owner

COMMENTS / ANY OTHER

INFORMATION
(RELEVANT TO THE
PROJECT)

Open Security Alliance

www.opensecurityalliance.org

Page 4 of 4
Company Confidential

Any queries with respect to this document may please be addressed to the person who has shared the profile with you or you can
communicate with the us at info (AT) opensecurityalliance (dot) org