Nagesh J.
Details
• Team Lead for Web Application Firewall, Dynamic Application Security Testing, Static Application Security Testing
• Performing Third Party Risk Assessments, acting as ProcessUnity admin.
• Performed multiple Information Security Risk Assessments along similar lines to NIST based
• Responsible for complete administration of Dynamic Web Inspect Enterprise scans tool (enterprise wide).
• Responsible for designing and implementing security solutions that combine best practices, methodologies, processes and technologies that ensure compliance to the Information Security policy, and other regulatory requirements.
• Performed detailed Information Security technical risk assessment and audit to identify potential improvement to increase Information Security posture including people, process and technology.
• Developed Security Scanning Policies
• Developed Security Standards for Web Application Firewall.
• Managed staff members, budget and prepared proposal for client RFP and Statement of Work (SoW)
• Developed information security and compliance governance to manage and mitigate risk for the client.
• Working knowledge of NIST Cyber security framework for conducting Risk Assessments.
• Developed Procedures for multiple security tools
• Responsible for implementing Whitelisting Application (enterprise wide)
• Responsible for many Information security transformation projects.
• Responsible for both Run the Business and New projects.
• Provided Information security best practice, architecture, and design for IT Infrastructure and Applications to increase security posture of the organization as well as meet Security best practice.
• Achieved very high percentage compliance of servers enterprise wide and maintaining it.
• Achieved increasing number of vulnerabilities to be scanned
2012 : Present
Caterpillar Inc.
Security specialist (Information Security)
• Responsible for Kaspersky Anti-Virus enterprise wide
• Responsible for scanning and reporting vulnerabilities with Nessus scanner.
• Responsible for patch distribution through WSSDB for servers to be secured
• Responsible for deploying patches through SCCM to be secured
• Provided subject matter of expert guidance and consultation to the 3rd party business partners on PCI risk controls and policies.
• Developed and introduced cyber security framework for the organization to develop cyber security practice.
• Provided leadership and direction for Information security posture, operations, and the continued development and enhancement of the enterprise security strategy.
• Provided Information Security recommendations for IT Security to increase security posture.
• Responsible for developing queries, stored procedures and sql jobs for data interface between applications (Backup DBA-Sql srvr)
• Planned and helped implement the Workstation Security Control metrics.
• Provided policies, process guides, and support for security engineers.
• Assisted in the enhancement and implementation of Mac safeguards and security.
• Provided Information Security recommendations for IT Security to increase security posture.
• Managing Siebel and CRM projects by using MS Project
2009 : 2012
Pearl Technology
Information Security Analyst
• Responsible for Design, development of Siebel configuration/customization.
• Responsible for Siebel software installs.
• This is Siebel 8.1.
• Responsible for Siebel coding in eScript.
2009 : 2009
SXC Pharmaceauticals
Senior Siebel Admin/Developer
• Responsible for Design, development of Siebel enhancements.
• Responsible for Siebel software installs.
• Responsible for Siebel upgrade installation from 7.5 to 7.7.
• Responsible for Siebel coding in eScript.
• Responsible for design and development of Siebel configuration.
• Responsible for design and development of eService application.
• Responsible for integrating Siebel with LDAP for single sign-on.
2003 : 2009
Caterpillar Inc.
Senior Siebel Admin/Developer
• Responsible for Design, development of Siebel configuration.
• Responsible for Siebel software installs.
• Responsible for Siebel eService configuration.
• Responsible for Siebel coding in eScript.
• Responsible for design and development of Siebel EIM for both import and export.
• Responsible for design and development of Siebel workflows.
2003 : 2003
Blue Cross Blue Shield of Louisiana
Senior Siebel developer
About
Extensive experience as Information Security professional in enterprise environment. Nagesh worked mainly in managing security operations such as vulnerability/web Scans to detect and report Vulnerabilities, performed Risk Assessments. Nagesh has detailed experience on many of the Information Security tools. Prior to Information Security. Nagesh working since 2012 as team lead for security tools namely Qualys, Dynamic Application Security Testing, Static Application Security Testing, Web Application Firewall. Nagesh is doing hands on Dynamic scans, Static Scans, Web Applicaiton Firewall configurations, Qualys scans. Nagesh is reviewing vulnerabilities, interpeting them for remeidation. Nagesh worked in Siebel CRM projects, Reporting Solutions (Sql Server Reporting Services). He mainly has worked as an Information Security Specialist, Configuration developer, as a System Administrator, as a Developer, and as CRM Reporting Solutions expert for Caterpillar. Prior to that, Nagesh worked at Blue Cross Blue Shield of Louisiana on a Siebel project. He has excellent communication skills, and the ability to multi-task has enabled him to deliver time sensitive tasks repeatedly. In each role, Nagesh is a solid team player and is self driven. His experience also includes issue resolution on many information security teams. He has a Masters in Engineering with Computer Science (MIS) being one of the electives. He fulfilled the condition of adhering to SOX (Sarbanes-Oxley) guidelines in both of the Caterpillar projects.
Profile Photo
