● Chief Information Security and Data Protection Officer working with Virtual Asset Regulatory Authority.● Defining the overall strategy for the firm's Cybersecurity program using the ISO 27001 cybersecurity framework and the PII data security framework.● Responsible for regulatory security compliance and involved in regulatory licensing applications● Responsible for setting up custody solutions securely at BitOasis. I have extensive experience with Fireblocks, BitGo, and Coincover.● Rolled out the Security testing and vulnerability management program covering Applications, Infrastructure, and Network● Defined and currently implementing the product security features for the BitOasis platform● Program managed the rollout of the custody solution for managing digital assets.● Rolled out the customer awareness campaigns as well as the employee awareness program on Cybersecurity● Reviewed and implemented controls to secure the Application, Infrastructure, and Network controls in Cloud● Rolled out the Vendor security assessment program● Identified and rolled out security solutions, including end-point protection controls

● Artemis Product Lead. Envisioned and designed a pentest automation platform. Providing thought leadership for product roadmap and business.● Initiated Offensive Security services practice in Amiseq, delivering large engagements with a team of 5 highly motivated pentesters.● Align and collaborate with fellow Global Engineering, Infrastructure, Risk, and Information Technology team leaders on strategies to support their functions with technical solutions and expertise.● I managed and delivered pre- and post-sales for offensive security products and services.● Control owner for Cloud Security, DevSecOps, and Application Security● Develop, mentor, and lead a high-performing team of information security experts● Created growth and expansion strategy and a go-to-market plan with sales and marketing teams.

● Application security and pentest for a large payment processing company and a large healthcare organization in the United States.● Security Code Review for multiple internal projects and clients.● Quarterly external and internal pen tests for using the PwC Pentest environment.● Architecture review and threat modeling using STRIDE and DREAD methodology.● Reporting over multiple formats and modes of communication.● Won the Great Performance award for multiple projects.● Training team members on Penetration testing and Web application security.● Training developers on Fortify SCA and code review process.

● Perform Security Testing on all projects in the Web Platform. This includes web applications, API, payment SOA, backend processes, and thick clients.● Manage and perform HP Web Inspect scans before all production releases. Maintained security servers, deployed merged builds, and performed sanity tests. Run web inspect scans, analyze vulnerabilities, and report to all stakeholders.● Perform code reviews for security issues both manually and using Fortify SCA.● Automated passive security scans.● Secure design reviews, risk assessment, and threat mitigation using the Microsoft Threat Modeling Approach.● Train the QA Team to identify and acknowledge security issues in their projects.