Bhuvanesh Jani
Details
Bill.com
Enterprise Information Security Architect
# Organized global Security Operations group
# Recruited, mentored, and assembled a global team of cybersecurity and DevOps engineers to deliver private CA, threat response, and large-scale vulnerability remediation initiatives
# Responded and remediated to Security Incidents
# Delivered critical security capabilities on time and budget
# Advised and informed senior management to build and support encryption
2020 : 2022
SAP SuccessFactors
Director Information Security
# Cloud Security Initiative
% Lead design of public and private cloud security initiative
% Designed and deployed virtual DMZs in cloud
# ATO and BOT Management Program
% Successfully influenced proposed solution to business, product, engineering, infrastructure, and information security
% Addressed account checkers and BOT problem for all critical pages (login, password reset, registration) reducing fraud and negative customer impact by 99%
% Architected and help deployed the solution with ZERO friction and impact to customers
% Successfully negotiated and delivered aggressive implementation timelines with product and engineering groups
# Bug Bounty Program
% Successfully made a business case to implement bug bounty program to senior management
% Partnered with external vendor for a successful quick deployment
# Created and executed Information Security Strategic Roadmap for Walmart eCommerce
2015 : 2020
Walmart
Sr. Information Security Architect
2012 : 2015
Western Union
Info Sec
# Managed Information Security Compliance, Risk, and Governance program
# Created a successful ISO 27001 program and certified three multinational cloud service products
# Built, managed, and expanded Governance, Risk, and Compliance team
# Created ISMS, policies, and control documentation to measure effectiveness of controls
# Conducted risk assessment of services, vendors, and DR/BCP capabilities
# Successfully lead ISO 27001 audits and all internal and external audits
# Communicated application and infrastructure penetration tests results to managers and created a remediation plan to meet policy documentation
# Provided regular updates to senior management
2010 : 2012
Iron Mountain / Autonomy / HP
Information Security Manager
About
# Over 7 years of successfully leading and building security organizations focused on Operations, Compliance, and Risk
# Over 21 years practicing technical security expertise in infrastructure, network, and security domains
# Use business and customers at a guiding principal for building, managing, and leading Information Security teams and technologies
# Strategically move organization culture to processes and standard-based approach in addressing security challenges
# People Management
--> Recruited and coached a global team of security engineers and analysts to deliver security operations capability that included deployment of threat response, incident response, PKI infrastructure, ATP/BOT protection, and Bug Bounty programs
--> Recruited an Information Security Risk and Compliance team to lead ISO27001, PCI, and SOX audits
--> Managed 24/7 Security Operations for a large financial organization to support incidents, firewalls, IDS, email protection, vulnerability management, application and database assessment programs
# Technical Management
--> Implemented ATO/BOT protection for a major eCommerce site reducing password checks by 99% (2015)
--> Evangelized adoption of Bug Bounty program and successfully deployed it for all internet facing properties (2016)
--> Designed and deployed DMZ architecture for eCommerce on-premise and in cloud
--> Managed firewalls, load balancers, and network infrastructure
--> Managed Solaris, FreeBSD, and Linux infrastructure
--> Conducted security assessments and penetration tests for clients
Profile Photo
