APPAKUTTY E. KALAINESAN
CARMEL,IN
Summary
Seasoned information security executive with extensive experience leading full-scope, enterprise-wide IT/IS security operations and establishing innovative, best-in-class network security solutions. Background in building security for diverse environments such as oil and gas, pharmaceuticals, insurance, publishing, and research. Proven history of fortifying enterprise security posture, maturing the security architecture, boosting productivity and availability, and maximizing ROI. Expertise lies in designing policies and processes that transform companies from reactive to predictive from a security standpoint. Strong technical aptitude and deep hands-on experience across a wide range of tech platforms.
Overview
23
23
years of professional experience
Work History
Senior Principal Application Security Architect | IoT Product Security Lead
OWL LABS INC.
09.2022 - Current
- Develop and execute the security roadmap and strategy, including developing governance structures and creating / implementing privacy policies and procedures to ensure compliance with federal privacy regulations (GDPR, etc.)
- Oversee security risk assessments and incident response
- Manage consultant and provide indirect leadership to engineering team of 60+
- Built and launched all elements of Owl Labs' security programs, directing changes that affected 15% increase in sales YOY and elevated the organization's security posture and maturity from zero to 70% within one year, with final 30% (ISO, SOC2, and TAA certifications) to be achieved in 2024
- Designed security for Android-based IoT devices, including secure boot and x509 certificate-based authentication to cloud
- Planned and implemented security for AWS cloud using cloud-native security tools; architected cloud and IoT devices for compliance with Cyber essential, ISO 27001, TAA, NDAA, and MS team driver certification for owl devices
- Drove resolution of multiple security issues with IoT devices, fixing all vulnerabilities identified by a third party, producing every artifact for security and processes, and securing the environment to meet NIST and ISO 27001 standards
- Designed and implemented GDPR, CCPA compliance program, including mapping data flows, identifying and prioritizing gaps, implementing data protection measures, updating policies and procedures, and training employees on GDPR requirements
- Designed a Build an environment for Microsoft team driver testing and code signing environment for Owl Devices
- Architected solution to meet European IOT device security standards
- Present to leadership team on security strategy and security architecture
- Architected a container security program for secure deployment of containers using NIST standards
Principal Architect, IoT | BISO Cummins Digital Organization
CUMMINS, LTD
12.2019 - 09.2022
- Governed security among AWS and Azure PaaS / IaaS cloud environments for the Cummins Digital organization
- Designed and architected secure solutions for IoT devices used in on-highway and off-highway vehicles (gas and electric)
- Designed vulnerability management program, firewalls, gap analysis, and audits based on GDPR, CA, SOX, UNECE 155,156, and ISO 27000 standards
- Managed team of 2
- Established the organization's security program to undergird the strategic vision for digital transformation
- Played instrumental role in increasing sales from $1B to $3B by designing and architecting secure data analysis solution for predictive maintenance and warranty program
- Architected and implemented secure keys for data transfer using Entrust HSM for 10000/sec data reads
- Architected and implemented a solution for vehicle connected IOT devices using x509 certificate that is used for encryption, authentication, and authorization to the cloud
- Designed and built universally available web application using Web application firewall and CDN
- Designed highly available API gateway for securing the APIs for third party consumption
- Architected highly available container security program for secure deployment of containers using NIST standards
- Present to leadership team on security strategy and security architecture for digital organization
Security Consulting Manager | IoT and Data Lake Security Lead - CHEVRON
ACCENTURE
09.2017 - 01.2020
- Oversaw initiatives to gather data from IoT devices on health and efficacy of drilling equipment
- Championed Big Data, IoT, IaaS, and PaaS security
- Defined compliance and security controls for IoT Hub to be used in Azure cloud
- Architected solution to assimilate IoT real-time data streaming into data analytics platforms
- Configured IoT Hub and IoT Edge to support 2 million endpoints; and authenticated IIOT devices using device specific certificate
- Progressed rapidly from external consultant to full-time Consulting Manager
Big Data Security Consultant | Security Architect
DOW CHEMICAL CORPORATION
09.2017 - 09.2018
- Led efforts Build a data lake to identify and categorize data from 3 previously combined organizations into one distinct entity
- Architected cloud environment for research and marketing purposes, with web crawlers relaying data on Dow products to IBM Watson for processing and analysis
- Captured $250M in savings by designing Data Lake and Innovation Lab featuring high-speed computing, machine learning, and artificial intelligence for manufacturing and supply chain management
- Configured secure Cloudera Hadoop platform and architected solution to receive IoT real-time data streaming into Hadoop platform via IoT Hub and IoT Edge
- Architected secure API development and delivery method using Azure API management platform and Micro services
- Designed and architected a persona-based data access control to access the data in data lake
Senior Security Consultant | Enterprise Security Architect
ALTRIA GROUP, INC. (PHILLIP MORRIS USA)
09.2016 - 08.2017
- Designed and implemented robust security architecture, evaluated risk, and advised on security policies to protect enterprise information systems and assets
- Led security assessments, developed security frameworks, drove alignment with business objectives, and ensured regulatory compliance
- Performed comprehensive gap analysis, built solution for encrypting data in ServiceNow Cloud, and architected data loss prevention solution for data center, cloud, and SAP
- Redesigned Azure cloud with Palo Alto firewalls for Infrastructure as a Service (IaaS)
- Designed and architected enterprise management solution for data center and Azure cloud platform
- Delivered innovative solution for API management and security, and architected Cisco next-generation firewall with Firepower for core network
- Supported BISO's for securing Business applications
Director of Information Security | CISO
FIDELIS CYBERSECURITY, LLC
01.2016 - 08.2016
- Oversaw comprehensive security programs using next-gen firewall, content delivery services, and attack mitigation efforts at all Fidelis offices
- Drove all aspects of security, from risk management and reporting to vulnerability management, patch management, audits, investigations, forensics, fraud analysis, security event management, pen testing, incident management and response, endpoint security, and perimeter security
- Held distinction as the organization's first Security officer and the author of its security program
- Designed and implemented Fidelis Network to detect and identify advanced persistent threats (APTs)
- Implemented AirWatch to enable proactive SSO and mobile device management
- Present to leadership team on security strategy and security architecture
Director of Information Security
NATIONAL GEOGRAPHIC SOCIETY
01.2013 - 01.2016
- Created, launched, and administered security program
- Administered a $2.5M budget, established and executed security roadmap, drove strategy, and directed risk assessments, reporting, investigations, forensic analysis, and fraud prevention
- Conducted regular audits to ensure compliance with GDPR, PCI-DSS, ISO 27001, and SSAE 16
- Architected security program - including zero trust network for AWS cloud and datacenter; secure network and e-commerce software testing process; penetration testing and vulnerability management of web applications; and security for customer-facing websites, e-commerce, and digital media - that proved pivotal in positioning the media properties' $725M sale to FOX in 2015
- Present to leadership team on security strategy and security architecture
- Progressed rapidly from security architect to Director of security in six months
Senior IT Security / Network Specialist
ULLICO, INC.
06.2007 - 01.2013
Network Architect (Contract)
NORTEL GOVERNMENT SOLUTIONS
03.2007 - 07.2007
Senior Network Engineer
TFS GROUP
06.2001 - 04.2007
Education
BS - Computer, and Information Science
UNIVERSITY OF MARYLAND-University College
College Park, MDSkills
- Strategic Security Roadmap
- IS Risk Assessment & Management
- Compliance (GDPR, SOC, ISO 27001, NIST)
- Data Center Security
- Security Architecture
- Network Security
- Cloud Security
- PKI and Key management
- Big Data Security
- API Security
- Security Audits
- Project Management
- Encryption
- Authentication
- Disaster Recovery
- Business Continuity
- Rapid 7
- Web Inspect
- Symantec Endpoint Protection
- ServiceNow
- SolarWinds
- Cisco ASA
- Palo Alto NGFW
- Juniper Firewall and SSL VPN
- Nessus scanners
- Kali-Linux
- Encase
- F5 Web Application Firewall
- Solaris
- Linux
- BSD
- Windows
- Apple/Mac
- C
- PL/SQL
- Shell Scripting
- VBNET
- ASPNET
- Java
- J2EE
- J2SE
- Perl
- SMTP
- SNMP
- HTTPS
- POP3
- FTP
- Telnet
- DNS
- DHCP
- IMAP4
- TCP/IP
- IPX/SPX
- MQTT
- AMQP
- Data Encryption Techniques
- Information Security Management
- GDPR Compliance
- Incident Response Planning
- Privacy Strategy Alignment
- CCPA Compliance
- Privacy Stakeholder Engagement
- Cross-Border Data Transfers
- Privacy Audits
- Data Privacy Expertise
- Data Protection Policies
- Data classification
- Problem-Solving
- Teamwork and Collaboration
- Time Management
- Attention to Detail
- Problem-solving abilities
- Multitasking Abilities
- Critical Thinking
- Team Leadership
- Interpersonal Skills
- Risk Identification
- Compliance Reporting
Educationcertification
BS, Computer and Information Science, UNIVERSITY OF MARYLAND, College Park, MD, ITIL V3 Foundations Certified
Technicalacumen
Firemon, Rapid 7, Web Inspect, Symantec Endpoint Protection, ServiceNow, SolarWinds, Sophos, Cisco ASA, Palo Alto NGFW, Juniper Firewall and SSL VPN, Sourcefire IPS/IDS, Nessus scanners, Nmap, Acunetix, Fidelis, Kali-Linux, Barncat, Encase, F5 Web Application Firewall, Solaris, Linux, BSD, Windows, Apple/Mac, C++, PL/SQL, Shell Scripting, VB.NET, ASP.NET, Java, J2EE, J2SE, Perl, SMTP, SNMP, HTTPS, POP3, FTP, Telnet, DNS, DHCP, IMAP4, TCP/IP, IPX/SPX, MQTT, AMQP
Corestrengthsskills
- Strategic Security Roadmap
- IS Risk Assessment & Management
- Compliance (GDPR, SOC, ISO 27001, NIST)
- Data Center Security
- Security Architecture
- Network Security
- Cloud Security
- PKI and Key management
- Big Data Security
- API Security
- Security Audits
- Project Management
- Encryption
- Authentication
- Disaster Recovery
- Business Continuity
Timeline
Senior Principal Application Security Architect | IoT Product Security Lead
OWL LABS INC.
09.2022 - Current
Principal Architect, IoT | BISO Cummins Digital Organization
CUMMINS, LTD
12.2019 - 09.2022
Security Consulting Manager | IoT and Data Lake Security Lead - CHEVRON
ACCENTURE
09.2017 - 01.2020
Big Data Security Consultant | Security Architect
DOW CHEMICAL CORPORATION
09.2017 - 09.2018
Senior Security Consultant | Enterprise Security Architect
ALTRIA GROUP, INC. (PHILLIP MORRIS USA)
09.2016 - 08.2017
Director of Information Security | CISO
FIDELIS CYBERSECURITY, LLC
01.2016 - 08.2016
Director of Information Security
NATIONAL GEOGRAPHIC SOCIETY
01.2013 - 01.2016
Senior IT Security / Network Specialist
ULLICO, INC.
06.2007 - 01.2013
Network Architect (Contract)
NORTEL GOVERNMENT SOLUTIONS
03.2007 - 07.2007
Senior Network Engineer
TFS GROUP
06.2001 - 04.2007
BS - Computer, and Information Science
UNIVERSITY OF MARYLAND-University College
Similar Profiles
Anastasia BurdakovAnastasia Burdakov
Software Quality Assurance Engineer at Owl LabsSoftware Quality Assurance Engineer at Owl Labs
Karen BoehringerKaren Boehringer
Medical Receptionist at Owl OrthodonticsMedical Receptionist at Owl Orthodontics
Skyler PletcherSkyler Pletcher
Barista at Owl Canyon CoffeeBarista at Owl Canyon Coffee
Sean LynchSean Lynch
Packaging Consultant / Principal at Packform USAPackaging Consultant / Principal at Packform USA
Genta PowellGenta Powell
Self Employeed at Indy Home Design CenterSelf Employeed at Indy Home Design Center