Bhargav Vivekanandan

• Primary security risk assessor for the Risk Escalation Committee (REC) that is a committee of senior security and privacy leaders, enterprise architecture leaders, business leaders as well as legal counsel in treating security risks
• Planned, Developed and executed Artificial Intelligence (AI) Security Assessments including but not limited to generative AI use cases involving homegrown and third-party products
• Employed the lessons learnt from security risk assessments and provided recommendations to change existing security policies, standards and guidelines
• Led the NIST Tier 2 Technical Safeguards Assessment that assessed the governing security guidelines and reference architecture and provided recommendations for process improvements
• Developed detailed design and obtained buy-in from stakeholders for a fully automated security risk assessment
• Currently playing the role of a Subject Matter Expert (SME) in the area of AI Security Risk Assessments
• Conducted IT HIPAA Security Assessment on an annual basis of BSC assets including but not limited to software/hardware assets on premises, hybrid and externally hosted in the public cloud
• Conducted the IT HIPAA Technical Safeguards Assessments focused on technology, processes , policies , standards and architectures of business products
• Conduct risk assessments of third-party vendors, enterprise risks and exceptions to policies and standards for the escalation committee and present recommendations to committee
• Co-Led the cloud security compliance planning for the hybrid/multi-cloud including MS Azure, Google Cloud Platform (GCP) and On-Premises infrastructure
• Experienced in the MS Defender for Cloud and provided expert analysis of cloud based systems for the enterprise
• Planned and developed the multi-hybrid cloud automated continuous risk assessment strategy and detailed solution architecture for the future state
• Conducted Rapid Risk assessments multi-cloud products and measured the overall security posture
• Worked closely with stakeholders from rest of IT, Security Architecture, Security Engineering to devise mitigation plans and security solutions
• In charge of generating periodic reports and analytics for the REC

• Led the security partnership with IT Security to improve the security capabilities of cloud engineering by collaborating, strategizing and executing security solutions for the Hybrid cloud, IaaS and CaaS web infrastructure
• Played a pivotal role in developing guidelines and architectural standards for the Application Integration Platform (AIP) based on Service Oriented Architecture (SOA)
• Applied SOAR methodologies to develop a fully capable SIEM system using the Splunk Enterprise Security capabilities by collaborating with IT Security and Enterprise Monitoring teams
• Innovated Threat Intelligence capabilities by integrating with IBM and VMWare security feeds via RSS/ATOM feeds covering technology surfaces including but not limited to IBM WebSphere Application Server, IBM MQ, IBM MQ MFT, IBM WMB, Datapower, IBM API Connect, VM Ware ESX, VRealize
• Led the service improvement plan to identify opportunities to automate the Legacy, Hybrid Cloud, On-Prem IaaS and CaaS web infrastructure
• Provided middleware engineering solutions for web infrastructure requirements specifically Java Web Applications, WebSphere Application Server, Datapower, MQ, IBM Integration Bus and MQ Managed File Transfer
• Technology Leadership, Solution Architecture and DevOps in the web infrastructure space, successfully participated in all phases of the Solution Architecture Development for the Application Integration Platform (AIP) and lead the technology architecture all the way till successful implementation Actively participate in the Change Management & Governance phase of the ADM cycle for the AIP in monitoring the effectiveness of the architecture in action.
• Took ownership of a detailed Gap-Analysis of the current state of the Enterprise Monitoring Infrastructure in BSC and identified a list of Business domain, Data Domain, Application and Technology gaps that were reported to the Enterprise Monitoring team.
  Established an end to end application, server and database monitoring system collaborating with the enterprise monitoring team employing COTS products.
• Worked closely with the Problem Management team in identifying gaps in the existing Consumer Member/Employer Portal application and addressed the same to achieve an efficient target solution addressing performance, high availability and stability issues.
  Pivotal role in management and provisioning of web infrastructure environments in PaaS offerings Major incident and problem management of web infrastructure assets Establish Middleware Technology standards and apply it to the IT Organization.
• Work on Project based roles providing middleware engineering expertise and application operations support expertise.
  Act as a final technical escalation point for the Middleware related issues Manage the software life cycle of the Application Server software.
• Enhanced client security by conducting comprehensive risk assessments and recommending appropriate countermeasures.

Client - John Deere , Moline, IL (2010 - 2015)

• Technically led a team of web application engineers in supporting the John Deere shared internet processing environment comprising of hardware load balancers, Linux/Windows virtual machines hosting hundreds of Deere web sites running on WebSphere Application Server
• Acted as a single point of contact representing the IBM team to the customer and handle ticket management, technical issues, driving them to closure and resolution Assumed leadership in identifying chronic problems in the quality of delivery of the IBM team and engaged with the customer in re-iterating the customer's business requirements in order to re-shape the Business Architecture and implemented a successful combination of people, process and technology resources to solve the chronic issues with service delivery
• Review Web Middleware infrastructure concepts and design and recommend improvement suggestions (middleware,database, connectivity, security, access etc.,) Provide input to the required delivery support teams as needed in an effort to increase Web Middleware software product's availability Review new web middleware environment requirements and architect/design web middleware environments Provide input for new web middleware environment architecture Providing improvements for improving the overall performance. This includes architecture review, design review and the overall system integration perspective
• Worked on project based roles in the IT Infrastructure Management area providing expertise in all aspects of web infrastructure management and application lifecycle management Technology leadership in the web infrastructure space for both internal organization and clients Client interfacing roles as a technical leader with major US based industrial and insurance customers Multi faceted role involving both hands on technical implementation as well as issue resolution and management of support teams Built lasting relationships and trust with customers

CNA Insurance, Chicago, IL (2010)

• New Client Knowledge Transition to IBM India Successfully transitioned technical and process knowledge from the client to the IBM offshore team Ensured IBM specific compliance standards are met in the engagement
• Assisted management initiative to setup a middleware center of excellence enabling technology aspirants to move on to complex technical environment and take on higher level support Actively participated in the planning of the CoE program Assisted in developing technical assessment standards and questionnaires

• Performed the roles of an Technical/Project Leader with various insurance and banking clients in North America and the United Kingdom
• Subject Matter Expert in WebSphere Application Server administration Performed a multi faceted role in performing technical delivery, solution architecture as well as people management Participated in Request for Proposals and won a key technology migration project for Cognizant Trained and groomed budding engineers to nurture them for IT enterprise support

Client - Lloyds TSB Bank

London, United Kingdom - December 2008 - July 2009

• Prepared and finalized the project proposal including the Project Plan, Resourcing and technical strategy
• Planned for training programs and conducted project specific induction programs including and assessed the resources
• Worked closely with the client SME in deciding the weekly plan for the Knowledge Transition Phase Lead the team during the Knowledge Transition phase and ensured successful certification of all gateways
• Prepared comprehensive documentation during the Knowledge Transition Phase
• Installed and Configured WebSphere Application Server v6.x on Unix Shared environments
• Deployed clusters and applications using automated scripts

Great West Life Assurance Company

Winnipeg, Canada - December 2007 - November 2008

• Led a team of 6 infrastructure engineers in migrating WebSphere Application Server and WebSphere Portal Server infrastructure from v5.x to v6.x in client environments
• Played a pivotal role all the way from the preliminary phases of the ADM cycle in requirements gathering, defining the target state, business, application, technology architectures to the final completion in the project to migrate customer's WebSphere 5.x infrastructure to WebSphere 6.x Prepared and estimated the Project Plan encompassing the implementation strategy, time duration, costs and resources
• Successfully led a team in completing a proof of concept for migrating client's existing middleware infrastructure employing both the manual and automated methodologies
• Provided comparative metrics in order to determine the infrastructure migration strategy
• Provided consultation on technical decisions and best practices for the client Designed the automated migration strategy

Metropolitan Life Insurance Company

Chennai, India, India - December 2006 - November 2007

• Responsible for managing and project delivery for a team of 4 members providing 24/7 application and environment support
• Successfully completed the Knowledge Transition Phase by traveling to Client location and understanding the architecture and educating the offshore team on the same by means of video recordings and Documentation
• Prepared and finalized the project plan during the initial stages of the project and obtained sign off from the client
• Co-ordinate the onsite-offshore operations by means of implementing onsite-offshore turnover and daily calls with the onsite co-coordinator

• Trained on IBM Middleware Technologies Worked on Project based roles as a systems analyst providing expertise in WebSphere Application Server Administration

• Trained and worked with the Poro-Mechanics Institute (PMI) at the University of Oklahoma as a part time Graduate Research Institute (GRA)
• Worked on developing computer programs to perform formation evaluation of natural formations