Abdul Kalam K.A

Feb 2014 - Till Now Paramount Computer Systems Security Consultant
• Deployed to an oil company for the following information security tasks.
o ISMS maintenance and security compliance.
o Identity & Access Management project.

Accenture is a Fortune 500 company providing consulting and IT services to its clients (Fortune 100 companies) . Reporting to Security Manager, lead a team involved in the following Information Security activities.

• Developed audit plan, work plan, artefacts list, kickoff and summary presentations, action plan and executive
reports, conducted kickoff and closing meetings, and clarified findings and recommendations with the stakeholders.
• Lead and conducted ISO 27001 internal audits for Accenture locations worldwide.
• Lead Supplier Security Assessment (SSA) - It includes a review of information security practices of the supplier/vendor across eleven security domains based on the ISO27001 framework.
• Lead Hosting Site Security Assessment (SAS 70/SSAE 16 requirements) - The assessment includes a review of the site IT infrastructure and vulnerability scan service using Retina, Nessus tools.
• Lead Merger and Acquisition Assessments - Review of information security profile, and security gaps of the acquired organization across eleven security domains based on the ISO 27001 framework.
• Client Data Protection (CDP) - Assessment to provide an independent assessment and verification of the effectiveness of project CDP processes and controls (ISO 27001 control domains)
• Lead vulnerability management program for Accenture locations (3500 servers, 7500 user locations annually)
• Lead and conducted gap assessments for ISMS implementation in Accenture locations.
• Lead and conducted information security risk assessments - IT Infrastructure and Applications.

Naico IT Services provide IT services to its clients in varied sectors including Financial and Health sectors. Lead a team of three, and reported to the Operations Manager.

• Lead the implementation of ISO 27001 and quality system (ISO 9001:2000) for the organization.
• Conducted regular ISO 27001 and ISO 9001 internal audits to ensure compliance and continual improvement.
• Developed and shared security and quality performance matrices with the management.
• Developed, implemented, and maintained security & quality policies, standards, processes and procedures for IT
operations.
• Developed security and quality awareness by providing orientation, educational programs and on-going
communication programs to organizational audience.
• Lead and conducted IT security operations like perimeter and end point security, security monitoring and log
analysis, incident management, access reconciliation, capacity planning, backup and restoration, secure media
usage and disposal, security risk assessments, vulnerability assessments, and compliance checks.
• Developed and implemented disaster recovery plans to ensure continued availability of IT Infrastructure.
• Lead the setup of organizational IT infrastructure, managed IT team and day to day IT/Security operations.

ETAG Solutions is the IT services division of GATE Holding Group. Implemented and supported IT infrastructure (systems,
network, security and processes) for the holding group companies.

• Successfully coordinated the setup of IT infrastructure, interconnectivity of locations, setup of data centre and the securing of network, systems, and information assets for GATE holding group (6 companies spread across
multiple locations in GCC region)
• Successfully maintained and operated the IT Infrastructure consisting of Data Centre, Windows Server OS,
Windows 2003 Active Directory, Exchange Server, Antispam devices, HP Severs, Symantec Antivirus, Firewalls,
SSL/IPSec VPN, 802.11 a/b/g, leased lines/frame relay, workstations/laptops etc.
• Lead and conducted IT security operations like perimeter and end point security, security monitoring (firewalls,
antivirus, antispam, IDS), analysis, incident management, access reconciliation, capacity planning, backup and restoration, security risk assessments, vulnerability assessments, and compliance checks.

-Administer and maintain IT infrastructure -Windows 2000/2003 servers, workstation, VLANs, telephones, applications, structured cabling, printers and other hardware.
-Handle server and antivirus incidents and other IT service requests.

• Administer Windows NT 4.0 PDC/BDC, and servers (application / database)
• Maintain internet links, network devices, telephones, structured cabling, workstation OS, printers and other
hardware.