Summary

CONFIDENTAIL. I have over 20 years of experience in IT industry. For the past 10 years I developed, implemented, and managed Enterprise IT and cyber security solutions, projects and teams. I currently work at Exelon Corporation as smart grid cyber security architect. My previous employers include IBM, HP and Unisys. I have developed special expertise in cyber security aspects of energy and utilities sector. I currently hold CISSP certificate. In the past, I held CISA, COBIT, ITIL, HIPPA and PMP certificates. I also hold numerous product certifications from IBM Tivoli and HP ArcSight. I recently certified in Industrial Control Systems security from US Department of Homeland Security. I provided leadership role in security projects that included identity and access management, threat and vulnerability management programs, application security, cyber security, and access role engineering. The verticals comprised of banking, insurance, energy, transportation and government. I have knowledge of cyber security needs for Smart Grid components SCADA, Distribution Management System, Outage Management System, Meter Data Management System, Geographic Information System and Advanced Metering Infrastructure. I am familiar with other standards such as NIST cyber security frameworks, US CERT, AMI-SEC, DOE cyber security capability maturity model and IBM Security Frameworks. I worked with national security professionals to develop NIST smart grid Cyber security standards using NIST Risk Management methodology. I assisted in their NISTR publication. Knowledgeable on Cyber security solutions related to NERC Critical Infrastructure Protection standards. Familiar with recently released NERC CIP V5 standards I developed numerous proposals and worked with pre-sales work in the security space. I delivered assessments of as-is and to-be security environments, and specified the security controls and the risks involved. I used NIST Risk Assessment Process: Identify threat resources and events, identify vulnerabilities and predisposed conditions, determine likelihood of occurrence, determine magnitude of impact, and determine risk. I also worked with products from various security vendors and provided the cost benefit analysis of deploying solutions from these vendors. I was part of the architecture governing and steering teams that developed security policies. I worked with architects of other domains of Enterprise Architecture such as data, application and infrastructure. I used standards such as FISMA, SOX, COBIT, NIST, PCI, NERC, and ISO 27001. I developed and managed practice business plans for security practices to meet targeted revenue goals through the service offerings. I have decades of experience working with sales, delivery and engagement management teams. I have entrepreneurial experience through founding two companies in the fields of IT services and smart grid security. I managed 2-year multi-million dollar contract in High Performance Computing from US DARPA Agency during this period. I communicated with C-level executives and executed projects using globally distributed teams and cross-functional groups. I am a polyglot with a wide exposure to European, Asian and Latin American languages and cultures. I have basic understanding of Spanish and Portuguese. I hold multiple graduate degrees including an MBA in High Technology Management.

Employment

CONFIDENTAIL

Cyber security Architect

Architected cyber security solutions for the smart grid deployments at Exelon. The solutions comprise of integrating AMI infrastructure, Silver Spring Network, HP ArcSight, SourceFire and Oracle Utilities technologies. Developed cyber security plans for the Exelon Smart Grid project. Performed smart grid cyber security risk assessments using NIST standards. Worked closely with Industrial Control Systems cyber security team which is deploying Industrial Defender product in the operations of the utility.

CONFIDENTAIL Sr Technology Architect Architected security solutions in the Enterprise Security and Risk management group Designed and developed Identity management systems for clients from energy, utilities, and finance sector clients Architected Role Engineering solutions to the customers based on the risk management process of identifying, assessing, prioritizing and mitigating the risks. Team member for Infosys's proposal and business development teams. CONFIDENTAIL Founder Member of CONFIDENTAIL standards development team for Smart Grids as part of Smart Grid Interoperability Panel. Nominated to be the lead for several NIST Cyber Security subgroups. Interacted with SGIP team who developed the Smart Grid Reference Architecture. Contributed to the NIST Cyber security work group in smart grid security controls using NIST Risk Management Frame Work. Developed a market research report on Cyber Security of Smart Grids to a client. During this process, interviewed the executives and managers at utility companies and their vendors. CONFIDENTAIL Management Consultant Project Manager and security architect at a large Federal agency. Managed a group of IBM consultants operating their security infrastructure. Supervised the tasks to secure their applications using Access Manager, WebSphere, Federated Identity Manager, and secure web services architecture. Member of Information Security Advisor team for the Ameriprise account. Worked with the IBM security delivery teams and client information security teams in the areas of security compliance management, threat monitoring, risk management and IBM security standards. Participated in Ameriprise's Threat and vulnerability management program performing asset inventory, threat and vulnerability analysis, and vulnerability management. Participated in IBM's proposal efforts to its clients. Leadership role in developing 1 Billion worth of proposal effort to the FEMA in the area application development and security. Developed security solutions related to North American Reliability Corp Critical Infrastructure Protection NERC-CIP and Advanced Metering Infrastructure AMI system security requirements. Developed Service-Oriented Architecture skills related to SOA life cycle, reference architecture and scenarios. Completed the IBM SOA certification requirements. Delivered a strategy and change project deliverable at a Japanese transportation and logistics firm. Performed a gap analysis and risk assessment in view of ITIL standards. European assignment experience with one of the largest national banks. It is a 2-year business transformation project at the bank and its goal is to move the bank's IT platform to web services environment with multiple work streams. Designed and evaluated the controls and remedial gaps related to IT domains and processes to verify the compliance with COBIT control objectives. Assessed the effectiveness of SOX controls. CONFIDENTAIL Managing Consultant Analyzed the security configuration of the FAA invoice comparison system and developed a plan to install the IBM TAM components. CONFIDENTAIL Process Specialist Architected the datacenter security process flow for a federal agency CONFIDENTAIL Technical consultant Consulted on infrastructure projects using IBM Tivoli and On Demand products. Worked with their technical teams to execute the IT projects at their customer sites. CONFIDENTAIL Founder projects engagement and delivery manager Founded and operated a Professional IT services firm, 10 years 1995-2004 that has operated in the horizontal markets of e-business, security, client server, legacy systems, databases, workflow, web services, business intelligence, and application integration and the vertical markets - Pharma, Dept of Defense, insurance, finance, government, and education. Delivered engagement proposals to key decision makers including CIOs, CTOs and Sr managers. Interacted with cross-functional teams including marketing, sales, eng, and finance. Managed the 2-year DARPA SBIR Phase 1 and Phase 2 contract. Developed and delivered a business process flow and performance modeling system. Marketed the system to various Federal agencies and firms. CONFIDENTAIL Project Supervisor and systems architect Developed CAD software strategies for the design of Alpha machines. Designed the SMP Machines using Alpha chips. Comparison designs with HP PA-Risc technology. Managed the HP Product Life Cycle of Vax models. Supervised teams of software engineers to develop VAX system configuration tools Architected the data center configurations for the company's clustering and operating systems. CONFIDENTAIL Software engineer Worked in the corporate research and development department. Interacted with the development and production teams. Participated in developing marketing plans and proposals. Designed VLSI chips by using CAD software related to the design tasks layout, placement, routing, logic design, simulation and testing. Worked with the architects who designed Unisys mainframe systems to promote the developed software. Developed scripts to automate the software development tasks.