Senior Director - Information Security, APAC
Carlson Wagonlit Travel
مجموع سنوات الخبرة :23 years, 5 أشهر
Executive management responsibility for information security, compliance, privacy & physical security across Asia Pacific covering key markets such as Singapore, HK, Australia, NZ, Thailand, China, Japan, Malaysia, Indonesia and India.
• Established an information security organization for the region with three functional teams of Threat & Vulnerability Management, Governance, Risk & Compliance and Identity & Access Management
• Successfully managed regulatory requirements, customer audits & country specific privacy requirements demonstrating customer data assurance
• Implemented a multi faceted PCI DSS compliance program for the region, re-engineered several key business practices to meet compliance requirements
• As part of the core Business Continuity Management (BCM) steering committee for the region delivered several key business continuity improvement initiatives
• Role extended to build and manage a global security service center based in Manila
• Globally responsible for driving physical security strategy & implementation
Managed a globally distributed team to deliver full spectrum of information security and compliance services covering infrastructure, applications and data.
• Designed and implemented information security controls within established information security frameworks and guidelines to ensure confidentiality, integrity, and availability of intellectual property (based on ISO 27002 & COBIT 4.1)
• Strategized and established a global Center of Excellence (CoE) for application & product code testing services resulting in secure products and increased customer satisfaction
• Successfully managed SOX compliance testing to achieve SOX accreditation for the organization year on year
• Partnered with cross functional business teams to deliver full spectrum of risk management services including third party assurance, risk assessment, security incident response, forensic, security penetration testing & vulnerability management services
Hired within the Group Service Delivery (GSD) shared service organization to design, implement and run IT security services for more than 200 markets across the globe.
• Set up a global Managed Security Services (MSS) center in a 24 * 7 operating model covering global markets across APAC, EMEA & LACAR.
• Implemented an ITIL aligned change management process to govern all changes across the enterprise resulting in minimal business disruptions during technology move, add and changes
• Established stretched contractual Service Level Agreements with outsourced partners which balanced both business requirements and service improvement resulting in reduced delivery costs
• Significantly improved service delivery KPIs for provisioning new service offerings across various markets primarily in the African continent
Managed a large offshore delivery team to provide comprehensive IT infrastructure services to the bank following a successful project assignment onsite.
• Successfully lead an onsite project physically based in CA, USA to implement a firewall refresh project migrating from Cisco PIX to Checkpoint appliances resulting in high availability and increased capabilities
• Functioned effectively as the technology account manager for the account during later part of the tenure delivering SLA compliant IT infrastructure services in an offshore model
• Initiated Six Sigma projects to continuously drive service improvement
• Developed contract winning RFI & RFQ responses in demand to customer requirements
Transformed the organizations’ legacy network and security technology environment to a robust and high secure environment with innovative solutions and centralization of operations.
• Migrated several legacy network and security technology environments such as connectivity, remote access, end point protection and firewalls to a high availability and secure environment to meet business needs
• Centralized network and security operational resources and assets across 30+ sites to a centralized operating model delivering substantial operational expenditure savings in excess of 25 %
• As a key member of the organization’s quality team, worked to achieve CMMi Level 5 for the company
Security Specialist, Largest US Insurance Company
• As part of the customer’s vulnerability remediation team physically based in Illinois, USA completed several key vulnerability management projects resulting in reduced residual risk to the business