Profiles search

Gagan Bassi

Senior Information Security Manager
Santa Clara, CA, United States

Details

Education: Master's degree

Information Technology

Manipal International University

2000 : 2003

Post Graduate Diploma

Industrial & Personnel Management

Indira Gandhi National University

1996 : 1997
Experience: 2021 : Present

Ross Stores, Inc.

Senior Manager Information Security

Work closely with C Suite, CISO, IT and Business team to develop and run Cybersecurity program for Marvell Worldwide

Enforced robust Project Management process and improved delivery and adoption of security programs and changes

Rolled out several security projects on time and budget such as NIST CSF , ISO 27001 , Global Protect , M365 , Network Segmentation , End Point Protection , DLP, CASB etc

Defined and implemented ITAR ( International Traffic in Arms and Regulations) program

Worked with various teams to set up ISO Framework and lead NIST Audit

2017 : 2023

Marvell Semiconductor

IT Manager - Cyber Security

Defined and ran Vendor Management process to qualify partners for outsourcing needs for various Infrastructure and Security Projects

Managed end point protection program

2016 : 2016

Visa

Sr Manager -Infrastructure Security

2011 : 2014

Cisco

Infrastructure Manager - CapGemini

2011 : 2011

Kabam

IT Manager
Company: Ross Stores, Inc.
Years of Experience: 11

Skills

Agile Methodologies, Business Analysis, Business Intelligence, Cyber Risk Management, Information Technology Infrastructure, Leadership, Managed Security Services, Management, Project Implementation, Project Management, Project Management Office (PMO), Scrum Master, Security Policy Development, Software as a Service (SaaS), Technology Management, Vendor Management

About

With over 20 years of experience in managing large complex security programs and change management. Strong background in process improvement, strategic planning, risk management & compliance. Have developed and lead programs in Cybersecurity for FinTech and High Tech verticals



Core Qualification:

• Governance, Risk Management & Regulatory Compliance

• Information Security Program Management

• Policy Development and Implementation

• Assessment and Evaluation of Information Security Controls

• Driving Process Improvements

• Vulnerability Management

• Security Awareness and Education

• Third-Party Security

• Incident Response

• Implementation Governance Framework and Controls to Industry Standards (ISO 27001, NIST, ITAR)