Profiles search

Raj B.

Global CISO @ Jacobs | Cyber/IT Strategist | Author | Inventor
Ft. Washington, MD, United States

Details

Experience: Jacobs is a Fortune 250 firm with over 50,000 employees based in over 40 countries globally. As their CISO, I manage a global team of cybersecurity and risk professionals where I have the leadership, ownership and full accountability for the below mentioned cybersecurity functions across the three lines of businesses.

• Cybersecurity Engineering, Architecture & Operations for all domains, services and systems

• Identity and Access Management (IAM)

• Security Strategy and Direction

• Security Policy and Standards

• Vulnerability Management and Security assessments

• Incident Response

• Cyber table top exercises

• Regulatory (ISO 27001, CMMC, NIST) compliance and certifications

• Governance, risk and compliance (GRC) (including third party risk management)

• Mergers, Acquisitions and Divestures.

2023 : Present

Jacobs

VP, Global Head of Cybersecurity and CISO

Oracle is a Fortune 50 firm with over 125,000 employees globally. As the CISO for Oracle Cloud my responsibilities included -

• Making the case for Oracle cloud infrastructure (OCI) security and providing advisory services to existing and prospective (Fortune 200) customers.

• Advising customers on end-to-end cloud security and compliance.

• Enabling partnerships with key independent security vendors and services providers.

• Establishing secure multi-cloud partnerships and integrations with other hyper-scalers.

• Enablement of security services in OCI (Firewall, Vulnerability Scanning, VTAP, WAF, CSPM, Secure Landing Zone, Secure gateways, secure networking and connectivity, confidential computing etc.).

• Enabling a cross-platform infrastructure-as-code (IaC) & policy-as-code (PaC) capability.

• Providing thought leadership and enablement to customers and partners.

• Enabling compliance with security and privacy regulations.

• Aligning engineering, partnership and marketing priorities to customer needs.

• Enabling Executive Engagement.

2022 : 2023

Oracle

Chief Information Security Officer (CISO)

Voya is a Fortune 250 firm with over 10,000 employees globally. As the global CISO I was a member of the Voya Enterprise Leadership team (ELT) and provided full cyber security accountability, leadership, and coverage for the following business domains - Wealth (Retirement , Annuities and Life Insurance, Investment/Asset Management, and Broker/Dealer Operations ), Health (Employee Benefits including Benefits administration, and wellness) businesses, and associated sub businesses, partnerships and relationships. Apart from many security specific certifications (CISSP, CEH etc.) and IT certifications (ITIL, CCDA, CCNA etc.), I was also a (Finra) licensed Securities Professional with a Series 99 certification. Under my leadership, the firm did not have a single material cyber event or breach. I also got the firm ISO 27001 certified.

I managed a global team of 95 FTEs and 75 contractors.

My responsibilities included -

• Security Strategy and Direction

• Security Policy and Standards

• Security Engineering, Architecture & Operations for all domains, services and systems.

• Identity and Access Management (IAM)

• Incident Response

• eDiscovery and Legal Hold

• Cyber table top exercises

• Security Risk Assessments

• Support Business development activities

• Security input into RFI and RFPs.

• Maintaining regulatory compliance (e.g. SEC, FINRA etc.)

• Mergers, Acquisitions (2) and Divestitures (2).

• Physical Security

2018 : 2022

Voya Financial

SVP, Global Chief Information Security Officer (CISO)

AIG is a Fortune 100 firm with over 50,000 employees globally. I was the Global Head of the Cybersecurity for all LOBs and provided coverage for the following domains - Investment/Asset Management, Life and Retirement, General Insurance businesses and associated sub businesses, partnerships and relationships. I managed a team of 75 FTEs, 50 contractors and many international dotted line reports.

My responsibilities included -

• Security Engineering, Architecture & Operations for all domains, services and systems

• Security Strategy and Direction

• Security Policy and Standards

• Security Logging and Monitoring

• Vulnerability and Threat management

• Risk Management and Mitigation

• Behavior Analysis, Machine Learning and Artificial Intelligence

• Compliance with Government Regulations – PCI, SOX, NIST, GDPR & NYDFS

• BlockChain security on permissioned networks.

• Cyber Insurance - Security engineering & architecture to enable logging & monitoring to

determine customer cyber risk etc.

• Dealing with regulators (e.g. SEC, FINRA, Fed etc.)

2016 : 2018

AIG

SVP, Global Head of Cybersecurity

BAE Systems is a Fortune 100 firm with over 75,000 employees based in over 10 countries globally. I was the Chief Technologist and EA (Engineering Authority) for the sector (LOB), for the architecture and engineering of ALL Security and IT domains in the Americas and EMEA. I managed a team of 25 FTEs and many other dotted line reports.

My responsibilities included -

• Security Policy and Standards

• Security Architecture and Engineering

• Compliance with Government Regulations & Guidelines – FIPS, PCI, ITAR, NIST, DFARS & FOCI.

• Security and Systems Design for IC business for Intelligence and Security Sector

• PKI Engineering and architecture

• eDiscovery and Forensics

• Risk Management. Certification and Accreditation.

• SSO engineering. Multi Factor and Adaptive Authentication

• AWS and Azure Security Design and Policy

• Security Logging and Monitoring

• Dealing with defense regulators (DCSA etc.)

Also provided proposal support for many successful cyber security bids for classified and civilian government/federal bids. Helped BAE win a $10.3B classified award by helping with the technology selection and the subsequent creation and review of multiple critical design packages within the proposal.

2013 : 2016

BAE Systems

CTO, US Head of Engineering and Architecture, with TS clearance.
Company: Jacobs
Spoken Language: English, Gujarati, Hindi, Marathi, Punjabi, Urdu

About

I'm a C-Suite technology executive with 28 years of hands-on leadership experience in the architecture, engineering, operations, management & delivery of Cybersecurity services. I've built and delivered innovative and resilient security programs from the ground up for global innovative firms. I'm FINRA licensed, have multiple Security and IT certifications, and have managed large, diverse and global teams. I was named one of Top 100 Global CISOs in 2021, awarded the 2021 CISO leadership award by Global Leadership Institute (GLI), and the 2022 Top CISO award by cyber defense magazine.



My (4) books: https://www.amazon.com/stores/author/B09C6MVWTL/allbooks

My (14) Patents: https://patents.google.com/?inventor=rajat+badhwar&status=GRANT&type=PATENT&sort=new



•Have managed and delivered multi-year global transformation security programs at four large Fortune 200 multinational corporations. Managed large (global) teams comprising of more than 100 persons.



•Hands-on leadership experience in Security Engineering, Operations, Architecture, Incident Response, Vulnerability Management, Compliance and Risk Management.



•Experienced in DevSecOps for IT projects in Multi & Hybrid Cloud Computing domains using AWS, Azure, OCI & GCP.



•Experienced with setting cybersecurity and technology direction, strategy, policies, and guidelines for technology activities for multiple product sets to enable secure cloud enablement and digital transformation.



•Experienced in adoption of, and migration to cloud - private, hybrid and public. Data center migration and consolidation.



•Audits and Risk - Compliance analysis, Mitigation and Remediation for FIPS 140-2, PCI DSS, NYDFS, NIST 800-53, SANS, ITAR, FOCI, HITRUST, FedRAMP and HIPAA.



•Experienced in security and privacy breach remediation activities, ransomware recovery, and running Tabletop exercises.