Kasiananthan Chinniah CISSP CRISC CISA CEH

Firewall rules / changes review Security architecture reviews Cyber security products evaluations 3rd party risk management Cloud solution security reviews

Responsible to review Technical Recovery Plans of 1200+ applications Review periodically application controls Review identified risk issues for accuracy, assess risk / impact (semi) quantitatively (if possible), or qualitatively and provide detailed documentation Support Internal and external audits Create information security awareness among the employees Risk metrics to the management Monitor the internal compliance requirements

Serve as Subject Matter Expert for your department/organization on IT Policy, Company control processes, and compliance. Assist with the identification of IT Control Gaps and assess associated risk. Analysis and assessment of IT controls risks, describe risk in business terms, support development of correct actions. Review controls documentations and guide Risk assessments, Serve as S-Ox Inspector

Implement and monitor compliance of the information security controls for a health care insurance client offshore development centers. HIPAA Compliance: Protect PHI - Information Technology system controls 260+ unique controls in different domains implemented in a span of 4 months. Create stringent processes in line with client requirements and publish Monitor the 260+ controls compliance every month and provide status/support required to the senior management team

Monitor Configure and Troubleshoot Network security tools such as Tripwire, IBM Tivoli Compliance Insight Manager, Net Boundary, and IBM Internet Security Services. Prepare and Manage security incident reports, Perform vulnerability assessments and manage reports Identity and access Management, Monitor the Sox, PCI-DSS compliance

Monitor, Troubleshoot, Configure Network devices (Layer 2/3 devices) Incident, Problem and Change Management activities,Exposure working with Verizon, Sprint, Cable and Wireless, AT&T Acted as Risk Manager for “Global IOS upgrade” programme, Providing Service Improvement Plan to remediate concurrent network issues. Syslog server, RSA SecurID, Cisco SDM, F5 Load balancer, NetQoS, CiscoWorks tools knowledge