Dalpat Lad

• Identified and utilized the most appropriate tools and software for the performance of compliance testing. • Provided support and security testing services for both security and business projects. • Monitored compliance with security policies, standards and procedures • Defined, owned and maintained the strategy for compliance and vulnerability / security risk assessments. • Ensured intrusion / penetration testing and security audits are periodically performed to uncover and resolve weaknesses in securi

• Identified security controls along with the ability to design and / or co-ordinate security testing, security risk assessments and supporting documentation. • Conducted thorough investigations of security incidents and non-compliance with security policies, standards and procedures. • Demonstrated understanding of IT security technology and / or audit practices (Key controls, testing, documentation of procedures, etc.) • Identified and allocated appropriate skills and personnel for the performance of comp

• Documented Systems Builds and Verification • Defined and agreed to compliance testing schedules. • Documented security test plans and processes. • \Pro-actively pursued security risk mitigation uncovered from testing or any other credible source and ensured that remedial plans are in-place and appropriate actions are undertaken. • Supported company Security and Risk Management in areas of security policy and security risk mitigation plans.

• Investigated & documented non-compliance with security policies, standards and procedures. • Investigated & documented security incidents and managed / implemented appropriate remedial measures. • Owned and ensured appropriate escalation, resolution and reporting in the area of IT security violations are carried out. • Managed third-party suppliers of security products & services • Documented Security Best Practices for adherence to BS: 17799-1

• Carried out Systems Audit for Security Compliance to BS: 17799-2 • Carried out hardening of Operating Environment & Application Software • Managed third-party suppliers of security products & services. • Worked to Change Management & ITIL requirements standards • Documented Security Best Practices for adherence to BS 17799-2

• Carried out Systems & Network Administration • Carried out SUN Systems Audit for Security Compliance • Carried out hardening of Operating Environments to comply with Design requirements

• Carried out Systems & Network Administration • Carried out Systems builds and configuration of application software • Carried out hardening of Operating Environment to comply with Design requirements • Documented Unix Best Practices

• Enterprise Systems & and Monitoring Tools Configuration and Verification to Company Standards • Managed third-party suppliers of Enterprise & Monitoring products & services. • Worked to Change Management & ITIL requirements standards

Project & Policy Experience: Risk Assessment & Management Projects, Functional Policy Design/Deployment, Client Relationship, and Security Policy Governance to BS: 17799-1/ISO: 27001 standards, Accreditation Document Management & Sign off. Security Vulnerability Tool Kits: IDS & IPS Toolkits, eg Juniper Networks IDP, Verisign’s Enterprise Security Portal Security Technologies: Firewalls (Software & Hardware - CheckPoint, PIX & Lucent), Anti-Virus, IDS, SSH, SSL, IPSec, PKI, ACl & DMZ’s

Computer Hardware & Software architectures