Build and operate Cyber Security Program with a holistic view of the business and external partnerships. Empower senior leaders and the Board of directors to enable effective business decisions that will ultimately improve the cyber security maturity and clients' security health on the Yext platform and its associated applications and infrastructure

Assist in building the most advanced and seamless Application Security platform

Advise on the process of operationalizing AI governance around the Cyber security discipline

Enable the company leadership with the product, marketing, cyber, and other vertical strategies on service and product design with the intent of ultimately being able to drive secure outcomes across the industry with the help of Kintent's offerings

Honored and excited to be a part of this esteemed fraternity. Looking forward to learning, assisting and being a critical part of the company success.

The Team8 CISO Village is a global community of cyber security senior executives, CISOsand thought leaders from leading enterprises. The Village is an avenue for exchanging ideas,collaborating as an industry, and promoting innovation in cyber security.

I am honored and thrilled to be joining the advisory board of Eclipz, a cybersecurity disruptor that is transforming how data-in-transit security solutions are built and operated. Eclipz is on a mission to revolutionize encryption technologies while being fully seamless and transparent to the end-user. I strongly feel we are in a dire need of such solutions now more than ever given the rise in the adoption of cloud and digital technologies.

As a builder, defender, and a leader in a variety of challenging situations at Collective Health, I have had the unique opportunity to build and maintain the Security program at scale, while managing culture variables that eventually contributed to the organizational success from a security context. Among other responsibilities, the following are a few most notable duties in my current roleBuilt and led a team of Security architects to help manage the Product Security SDL program across Agile and DevSecOps disciplines within the product development teams while helping design Security disciplines in CI/CD/CA pipeline and other development workflows. Enabled security-as-code across the product lifecycle to perform automated security scanning, testing, and auditing. Responsible for building security into AWS and GCP distributed cloud compute services to stay in compliance with Enterprise Security Risk (specifically, HIPAA and SOC2 controls) and defined processes and tools within the Kubernetes environment for threat hunting, attack detection, and prevention. Built and operated vulnerability management program that consisted of vulnerability scanning, benchmark assessments, intrusion detection & prevention across the cloud and corporate systems. Responsible for architecting and deploying open source security program and respective tools to evaluate security risk across the open-source framework at Collective Health, while being able to assess the License violations and implementing corrective processes to help remediate both security vulnerabilities and license risk.Published BSIMM program to help build product Security maturity within the company and also support Compliance and regulatory initiatives; SOC2 Type 2 and in preparation for SOC1 and HITRUST. Drafted Breach determination and Incident response process within Security Incident workflow; that included elements such as Attack containment & eradication, gap analysis, attack surface analysis & remediation.

Strategize, build & manage Security in SDLC lifecycle within the company across 600 product and operations teams. Led the DevSecOps effort across the company with a successful outcome by introducing Security Championship program and testing tool program to help developers build secure products within the DevOps lifecycle without compromising the pace of innovation and delivery.Built and managed Security controls and remediation frameworks on ServiceNow development platform that eventually led to security best practice enforcement within the organization. Served in Architecture and design review board to help guide and approve new product additions to the platform. Consolidated and integrated Security tools and processes within the CI/CD pipeline. Curate Role-based security training and deploy across the development organization to help educate developers on security mandates and practices to build within the product offerings. Built and managed Security policy and practices for over 600 products generating approx. 2 billion in revenue. Acted in an advisory role in auditing cloud services and vendors that accounted for more than 250 systems and applications. AppStore certification and approval workflow were under my team’s purview which accounted for more 3000 apps across different technology stacks.Honed skills in the current role:- Secure SDL and DevSecOps practices and enforcement into day-to-day ops- Threat modeling, Design review, Testing and Code review in SDLC- Built Security Championship program across 65 development teams- Penetration Testing, Tool automation, and Build Integration within CI/CD pipeline- Designed and built platform security features for seamless security adoption

Provided support and guidance on application security practices for customers, partners and solution architects. Helped build and maintain Customer penetration testing platform, automation and operations. Support Compliance and audit reviews; acted as an SME for application and platform related controls and frameworks. Helped investigate systemic bugs and design flaws which in turn helped with the proactive security feature design for new products.Architected a continuous security automation pipeline consisting of static analysis (SAST), dynamic analysis (DAST), component analysis, and attack surface analysis

Hands-on implementation and configuration of Network and Application centric security devices and applications to identify, manage and track Security vulnerabilities. Proactive remediation of potential security threats pertaining to confidentiality, integrity and availability. Honed skills include:- Installation, development and deployment of security infrastructure and applications- Manage and maintain security devices, systems and applications to ensure compliance- Monitor security services and drive security awareness and best practices- Configurations, deployment and maintenance of Security testing tools. Ex: DAST- Perform source code reviews, threat modeling exercises and Penetration testing- Perform Security assessments as a part of Secure SDLC lifecycle- Educate and support development teams in writing secure code- Validate and verify mitigations, and respective remediations- Compliance support for company and customer security policy alignment- Review firewall rules and host configurations, ensure timely patch management- Reduce overall operational risk, security exposure and vulnerabilities- Evaluate and adopt technologies that enable heuristic behavior with proactive measures- Maintain clear communications, documentation, and timely support for compliance- Provides Level 3 support for critical security events and issues.- Security incident management, Post-mortem analysis

Configuration and maintenance of Network devices and appliances that include firewalls, load balancers, switches and routers. Perform deployment of Cisco CSS content switches and Webmux load balancers. Build and troubleshoot client-site and site-to-site VPNs. Enable and configure Security certificates on Firewalls. Serve as an escalation for time sensitive projects and customer issues. Honed skills:- Cisco ASA and PIX firewalls configuration and troubleshooting- Cisco CSS Load balancer configuration and troubleshooting- WebMux Load balancers- Brocade Load balancers- Create, curate and manage IDS alerts

- Configuring the multicast for network systems, and providing a secure access environment. - Deploying the White-boards through the network, by which the class recordings take place.- Performing effective, efficient and thorough maintenance in COL teaching facilities.- Ensure high quality OL recordings.