Bindu Sundaresan
Details
Telecommunications
SUNY Polytechnic Institute
2001 : 2002
Bachelor's degree
Electrical and Electronics Engineering
SVCE
1996 : 2000
2019 : Present
AT&T Cybersecurity
Director, AT&T Cybersecurity
• Strategic IS expert, trusted C-level advisor, and skilled cross-functional expert ¬who has guided top global retailers, pharmacies, and financial institutions to industry leading IS programs.
• IS leader with multi-vertical experience and unusually broad enterprise competencies : IS (CISSP, CEH and CISM) and CCISO (results pending), and IT (operations, service delivery, software development, quality assurance).
• The Senior Security Professional of choice for the most complex enterprise IS challenges, including recovery from non-compliance and/or information breaches and IS integration from M&A activity.
• Collaborative leader, consensus builder and business/technology communicator able to work with both C-level business executives and technical staff and gain buy-in for change initiatives.
• Highly respected SME (subject matter expert) with the judgment and experience to right-size and customize information security solutions that both accommodate and enable business growth.
Expertise in numerous areas of the marketing mix including strategic planning, positioning/messaging, value propositions, technical subject matter content production, market requirements, go-to-market (launch), integrated campaigns, thought leadership, success marketing
Created and directed marketing and business development programs, services and tools for the security consulting practice including whitepapers, blogging, webcasts, infographics.
Led programs and established procedures for all aspects of business development, including prospect identification, lead generation, client presentations, cross selling and follow up
Consistently recognized by the firm leadership for excellence in strategic thinking and superior tactical execution.
Proven track record in creating business value from focused discovery, key insights, strategic implications, organizational alignment, and execution excellence.
2009 : 2019
AT&T Cybersecurity
Practice Lead
Performed and managed large scale HIPAA compliance assessment and HITECH readiness assessment efforts for a major retail organization with pharmacy and health plan operations.
Led level 1 merchant PCI Compliance assessments and remediation efforts for major retailers and travel companies
Conducted system audits to comply with privacy and GLBA acts. Evaluated the security of systems that hold the personal and customer information. Identified the gaps in the policies and procedures and recommended effective solutions to safeguard the customer and personal information.
Created a unified compliance audit programs that made the IT Compliance audit process more efficient and effective, which resulted in a significant cost reduction. The key compliance requirements /regulations of PCI, SOX and FTC privacy regulations.
Experienced in development and implementation of ISMS to achieve ISO 27001/27002 certification and performance of information systems auditing and compliance
Conducted regulatory risk assessment for various federal, state and industry specific legislations and standards including HIPAA, GLBA, ISO 27001, FTC Red Flag Rule, and BITS/FISAP SIG and AUP
Prepared and delivered security awareness and training programs for large scale clients
2006 : 2009
Verisign
Consulting Manager
Infrastructure and Security Analyst for the NYC Criminal Justice Agency DataShare project.
Responsible for all security, infrastructure, design, implementation, and documentation for the UNIX, Windows, and Linux systems; Application Security, Middleware Security, and Host system security.
Responsible for the overall Application Security initiative for the enterprise-wide application being developed for data sharing between Criminal Justice Agencies. Worked on performing security assessments using Qualys and AppScan.
Coordinated LDAP integration efforts with the city-wide directory system for data share portal application.
Led the project from the infrastructure/security design to operations.
Project Management Responsibilities :
Performed project management duties, created, managed, and updated project plans, risk mitigation plans, communication plans, resource requirements, project costs, and all other project management related documentation for infrastructure
Performed day-to-day management of the infrastructure-related phases of projects including gathering requirements, designing, developing, testing, and deploying the solutions;
Managed the completion of deliverables as required by the SDLC;
Coordinated all project activities with the DataShare team, Business Owners/Stakeholders, and other support, technical infrastructure, and application teams;
Communicated frequently with executive leadership to provide project risk analysis, status, and requirements that may impact strategic direction;
Involved actively in managing and gathering requirements and. Authored design document of technical and functional solutions for the client.
Involved actively in change management of requirements by identifying the cascading effect(s) of the proposed change.
2002 : 2006
BearingPoint
Senior Security Consultant
Skills
CISA, CISSP, Cloud Computing, Crisis Communications, Crisis Management, Cybersecurity, Data Security, Disaster Recovery, Enterprise Architecture, Enterprise Risk Management, Financial Services, Governance, Healthcare, Incident Management, Information Security, Information Security Management, Information Technology, Integration, ISO 27001, IT Audit, IT Management, IT Strategy, LinkedIn, Network Security, Payment Card Industry Data Security Standard (PCI DSS), PCI DSS, Penetration Testing, Personal Branding, PKI, Program Management, Project Management, Public Relations, Retail, Risk Management, SDLC, Security, Security Awareness, Security Operations, Strategy, Vulnerability Assessment, Vulnerability Management, Written Communication
About
Bindu provides strategic and tactical cybersecurity consulting services to customers and specializes in collaborating with clients on cybersecurity, technology transformation, cyber-risk, compliance, and data governance initiatives. She leads a team of security professionals responsible for providing consultative services specific to Trusted Advisor engagement, Incident Response, Forensics, Threat/Vulnerability Management services, & compliance assessments. Bindu leverages her extensive technical skills as she advises customers through workshops, speaking engagements, and industry forums. She counsels customers on how best to optimize their business benefits and drive organizational improvements by sustaining security programs, managing compliance, and mitigating risk. In addition to providing subject matter expert support, she is responsible for defining services across Cybersecurity Consulting based on client-specific security challenges.
Highly-motivated and resourceful Security Professional with an engineering background and 20 years of experience with a record of developing and supporting successful initiatives and solutions incorporating a wide range of technologies and industry best practices. Consistently recognized as able to improve organizational effectiveness and efficiency through a leadership style that aligns the business processes, information technology, and corporate security function to realize cost savings, accelerated performance, and to sustain strategic flexibility for the organization. Widely recognized for keen insight into the current security posture for today's business environment provides the ability to effectively manage a variety of security functions that provide exceptional value to the bottom line. Proven experience in directing multiple projects across the enterprise. An expert in the formulation, execution, and oversight of risk, security and audit controls, consistently on time and on budget.
Opinions are mine!
Profile Photo
