Vamsi Krishna
United States
currently: Just looking around
|
Work history
Asst.Vice President - Information Security
tags:
p &cisa
• ciss cism. information security
How would you describe your time at Wall Street Investment Bank?
The firm's Information Security team initiated this project (ongoing) for meeting Sarbanes-Oxley regulatory requirements through the Identity and Access Management Solutions from Computer Associates (CA) for their UNIX infrastructure spread across US, Europe and Far East.
Responsibilities included:
High level design and implementation of eTrust Access Control (AC) on 10000+ Solaris and Linux hosts globally which includes master and secondary policy model database (PMDB) servers for fault- tolerance.
Working with all the business and infrastructure teams: Fixed Income, Equity, Trading, UNIX SA, Autosys, DBAs, etc., to define application specific policy model database based upon their access requirements.
Applying access restriction based upon initial access requirements set forth by app owners and the subsequent audit log reviews.
Working with the System-Management team to provision monitoring for critical AC daemons.
Working with the internal audit team to accomplish the Sarbanes-Oxley requirements for all critical business applications.
Environment:
Solaris 8, eTrust Access Control 5.1, Red Hat Linux 7.2, Intellitactics NSM, LMS from Sensage, Unix Shell and Perl scripts.... 
Infosec Security Consultant
tags:
vulnerability assessment
How would you describe your time at cognizant technology solutions?
Cognizant Technology Solutions Corporation, TEANECK, nj
1/03 - 12/03
JP Morgan, Newyork, NY
Vulnerability Assessment of critical Servers (Consultant)
9/03 - 11/03
To remotely assess and analyze the systems and/or resources of JP Morgan across wide spread locations, as seen from outside the system's local area network (LAN). This provides a "hacker's eye view" of the system to discover its potential vulnerabilities and weaknesses to possible hacker penetrations or attacks.
Responsibilities included:
Performed vulnerability assessments of distributed networks and critical enterprise servers using open source methodology from ISECOM and tools.
Developed strategies and processes for driving towards remediation of vulnerability issues discovered.
Environment:
Nessus, NMap, MBSA, Shavlik HfNetChk, Ethereal, Whisker, ISS Internet & Database Scanner; Windows NT 5.0, IIS 5.0 and MS SQL Server
Union bank of california, LOs ANGELES, CA
Security Audit "Banking Infrastructure" Project (Consultant)
7/03 - 9/03
The scope of the audit is targeted at banking technology areas and operational support functions throughout the enterprise.
Responsibilities included:
Performed security reviews of various trading platforms, Internet-based operations, communications infrastructure, emerging technologies, and disaster recovery.
Created effective security audit documentation, supporting work performed, including formal communication on audit results.
Delivered effective presentations to management on summary of work performed, findings and proposed solutions to mitigate risk.
Environment:
Solaris 2.7/8, F5 , Nokia & Check Point Firewall, Cisco Routers & Switches, HPOV, IBM DB2, IBM WebSphere Application Server and IBM MQ Series
Cognizant Technology Solutions Corporation
Identify & Remediate "Unmanaged Hosts" (Internal)
2/03 - 4/03
CTS Security Engineering initiated this project after the outbreak of the "Slammer" worm in the year 2003. After the outbreak, it was determined that the majority of infected machines were "rogue" PC's and Servers attached to the CTS wires that were not being effectively managed. I worked to identify these machines using CERT's advisory and the tools. We could then query for any machine that did not meet the proper installation criteria (out-of date NAV, security patches, etc). We then either contacted the owners, or remotely connected to the host to remediate. We initially identified over 400 hosts that were not managed and reduced that number to zero.
Responsibilities included:
Working with every major IT group at CTS, engineering, development, etc. to identify ownership and set remediation deadlines.
Coordinating remediation efforts with London and Asia branches.
Developing SQL queries to identify rogue machines.
Using remote management tools to connect and remediate hosts as needed.
Environment:
SQL Server 2000, Fsecure's F-Slammer, Symatec's W32.SQLExp.Worm removal tool, SQL queries and Windows NT...
Senior Security Consultant
tags:
identity and access management
• etrust
How would you describe your time at Computer Associate ( CA)?
Computer ASSOCIATE (CA), India
2/02 - 12/02
Assessment of the client's Enterprise and IT security requirements to design solutions as per the requirement and to map the products to the solution, to assess and audit security in client's IT environment, optimization of the client's available resource and the implementation of CA's eTrust Security solutions along with others.
Work with Clients to evaluate business needs and architect security policies and procedures.
Knowledge transfer to client personnel regarding security standards and recommendations.
An additional responsibility of involving myself in the business development activities including the client presentation, pre-sales visits and doing Proof-of-Concept (PoC).
UTI BANK, INDIA
Perimeter Defense "Project" (Consultant)
4/02 - 6/02
To assess and understand the IT security requirement of one of the leading banks in India and to design a detailed security solution which should cover up the whole enterprise spread across India. To map the CA's eTrust suites to the solution.
Responsible for architecting the Security Solution design for the bank and for its branches located within India. The design caters to both peripheral security as well as intranet security.
Responsible for scheduling training for internal staffs spread over two locations, which involved knowledge transfer of the products implemented, the working procedures, the troubleshooting techniques, and the vulnerabilities or the threats from the external and internal networks.
Environment:
eTrust (Firewall 3.1, Intrusion Detection System 1.4.5, Access Control 5.0, Content Inspection 2.5 and Anti-Virus)...
Education
Information Systems
tags:
information systems
Similar People
|
|
|
Country Head Info...
Fidelity Investme...
|
Security Engineer
f5 networks
|
Executive Vice Pr...
New York Metro In...
|
|
|
|
International Man...
Thunderbird, Garv...
|
|
|
|
