• Managing Information Security Risks for rainbow secure and its clients.• Setting up incident response program for rainbow secure clients.• Give Vision and Leadership for Rainbow Secure API and Technology Solutions for highly secure Authentication (Rainbow Text, Picture Credentials), Password less logins and Smart Multi-factor.• Run internal cyber security program to provide best security for authentication service infrastructure that clients relies on. • Accountable for security and cloud strategy for Rainbow Secure and its business clients in financial service, healthcare, wellness, and IT SaaS domains.• Understand the business, its mission, working and help the board to plan and achieve strategic security objectives that helps business outcomes.• Design and Deploy Identity and Access Management (IAM, CIAM) strategy for clients.• Perform annual reviews and updates of security documentation and policies such as SSP, IR, RAR, and SOPs as required. • Interviews and follow-up meetings with stakeholders, product owners, developers, and system admins for development and upkeep of security control implementation statement and update statements in SSP (System security plan)• Ensure Data Integrity, Availability, and Confidentiality of information as well as create controls to make sure data is processed and shared while in compliance with company policies and related industry regulations. • Create, monitor compliance programs for clients - HIPAA, PCI, NIST, SOX, FTC, FERPA • Implement next-generation Rainbow Secure MFA and SSO solutions for Office Apps, Cloud tenants, and IAM Platforms to reduce business risks and liabilities.• Work on CSA Star Level 1, Level 2 and SOC2 certification efforts.• Represent the company in Cloud Security Alliance, IAM working group.• Participate in FBI InfraGard, CSA, IAMCP and NJ HIMMS stay on top with current threats and maximize opportunities for managing risks.

Promoting Cyber Security Awareness and helping the community and business stay secure from cyber threats.

Giving vision and guidance for Agile, Highly Secure Office Solutions powered by powerful Rainbow Secure and geoACL technologies.Crafting product compliance strategy and getting certified by third-party auditor.Securing customer data with highest possible standards to safe guards against cyber risks, site failures, accidental exposures and accidental deletions.

Director of Security, Product Security Adviser, Architect, Cyber Security Defense Analyst, Inventor: Doing research on emerging technologies

• Lead Work on creating policies and perform risk assessments for securing clinical data in cloud and on premise.• Regulate access to clinical and research data as per HIPAA and Meaningful Use program guidelines.• Threat modeling for newly proposed solutions and legacy vendor solutions installed across 11 hospitals and 6 long term care centers.• Create a secure COVID contact tracing workflow for New York City in coordination with internal teams, the Mayor's office, Dept of IT, and the NY Health Information Exchange.• Develop and implement Data Encryption at rest for all healthcare databases.• Conduct periodic phishing simulations and cyber hygiene training.• Develop a plan to mask parts of sensitive data elements to minimize data exposure.• Work on Disaster Recovery Planning and Business Continuity initiatives. Work with CIO Office, Data Quality and Safety Teams, and Program leaders to create, document and do test runs of the DR and BCP plans.• Work with System teams on creating secure VPN tunnels for secure exchange of data between H+H, vendors and partners.• Inventory of critical IT assets, sensitive data stores and business units generating and transmitting PHI data.• Vulnerability Management for Servers, Databases, and Medical devices.• Installation, Administration, and Maintenance of Database Servers (SQL 2016, 2019, MS SQL Azure)• Performance tuning of slow-running queries and BI reports.• Migration of data between oracle, SQL server and Snowflake data stores between on-premise and cloud environments.• Securing Virtual Machines and Databases in the cloud and regulating their access.• Implement SQL Server replication for high availability and reporting needs.• Design database architecture (logical and physical models).• Perform access management.• Set up data masking rules and compliance triggers for complying with security policies.• Work with Active Directory, VM, Windows, Network, and Security team for successful business outcomes.

• Administering and maintaining large SQL Server 2008, 2005 and 2000 databases with more than 100 million records in individual tables.• Table Partitioning for existing and new application databases.• Developing Reports using SQL Reporting Services.• Disaster Recovery planning and implementation – Database mirroring, Log shipping, Active Passive clustering• Documenting install guides, release notes, change control documents.• Creating SQL agent maintenance jobs for purging data, maintaining indexes, archival operations• Creating SSIS package based jobs for bulk data loading, updating and exporting.• Supporting production issues during work and after hours as required.• Migration from SQL 2000 and SQL 2005 databases to SQL Server 2008 64bit Enterprise Ed.• Monitoring SQL Services using MOM, SQL Sentry. • Backups and Restore using Litespeed for SQL Server• Using new features of SQL Server 2008 like Log compression, transparent data encryption TDE, Policies, Performance data collector, Auditing.• Performance tuning, trouble shooting and monitoring using Performance Dashboard reports, Database Tuning Advisor, SQL Profiler, Dynamic Management views (DMV)• Database Design and maintenance for trading data services and collaboration services for users of financial community (traders, bankers, hedge fund managers); • Creation of tables, views, triggers, stored procedures and functions using SQL (Structured Query Language) and T-SQL (Transact-SQL).• Using SQL Server Service Broker to create asynchronous message based database update services.• Maintaining database security and application security framework using security matrix, windows based group memberships and database roles.• Extensively using XML for input and export operations.• Using collabnet for version control of Database code.• Creating and managing Powershell scripts for automating database tasks like upgrades.

Lead SQL server migration project for JD Edward backend databases

• Administration and Maintenance of SQL Server 2008, SQL 2005 and 2000 databases in test, development, and production environments.• Setup, Installation and Configuration of SQL Server RDBMS. Evaluating and installing patches/Service Packs.• Provide and Monitor database "health" - availability, reliability, performance and capacity planning using SQL Profiler, Database Tuning Wizards.• Optimization, performance tuning of SQL Server Systems and databases.• Provide Reliability using transactional replication. Also deployed Double take for SQL for new server.• Setup Database Security and maintain accounts and access levels by creating suitable Logins, Roles and assigning object level permissions.• Troubleshooting blocking issues, deadlocks using blocker scripts, trace flags, activity monitor and DMVs (Dynamic Management Views for SQL 2005).• Documentation of SQL Server system and database operations, technical specifications, functional specifications, best practices, policies and procedures.• Perform after hours and weekend on-site or on-call support as needed.