Prabhu Dillinathan
Senior Principal Security Architect
Saint Augustine,FL
Summary
Over 18 years of work experience specialized in enabling information security by balancing both the business needs and the security needs for large organizations. In-Depth experience in implementing strategic security programs which includes security architecture, edge protection, security controls advisory, security assessments (static, dynamic, interactive and penetration testing) and DevSecOps.
Strong technical knowledge in providing guidance to the application development teams to enable secure development process and improve overall security posture of the organization. Additional experience in data security, platform vulnerability analysis, identity management and application development along with strong information security risk management. Watchful professional offering comprehensive, hands-on experience identifying, investigating, and responding to information security alerts. Expertise in searching through data-sets to detect threats and anomalies and administering metrics to maintain security processes and controls. Focused on helping businesses safeguard sensitive data from hackers and cyber-criminals.
Overview
17
17
years of professional experience
3
3
Certifications
Work History
Senior Principal Security Architect
Dun & Bradstreet
04.2020 - Current
- Responsible for architecting, reviewing various product designs, and providing guidance on secure design principles
- Work with security architects and enterprise architects to establish software security design standards
- Perform security design review to ensure systems are in compliance with the established software design standards
- Support new technologies and frameworks from the development teams by providing security guidelines and solutions
- Perform comprehensive security assessments including threat modeling for the firm's critical assets
- Provide subject matter expert support to development teams on secure design principles and recommended frameworks
- Provide the security guidelines and solutions to development teams on authentication, authorization, session management, data protection (encryption) and key management
- Provide leadership on different forums on promoting security awareness, including recommended solutions, and staying current on net new threats, vulnerabilities, and OWASP best practices
Vice President
BNP Paribas
9 2014 - 04.2020
- Worked with application teams enterprise-wide to detect, prioritize, remediate and minimize security vulnerabilities throughout the SDLC process
- Served as Subject Matter Expert (SME) in application security for enterprise wide projects
- Implemented DevSecOps to bolt in security early and throughout the SDLC
- Helped both North America and Latin America regions to develop application security testing process
- Performed internal application security assessments which involved security design/architecture reviews, application security testing, vulnerability management, security issue remediation validation and verification
- Created application security program maturity roadmap to senior management through OpenSAMM framework
- Worked with various IT security product vendors and service providers to evaluate potential security offerings including product evaluations, pilots and proof of concepts
- Trained the various application teams with secure development practices by demonstrating the vulnerabilities found in their applications and helped them resolve those issues
- Onboarded security events in to the SIEM framework (ArcSight) to monitor for potential fraudulent activities within the fraud sensitive applications
- Performed portfolio wide security controls risk assessments and presented the report to the Head of IT, Head of Business and Executive Management
- Onboarded 3rd party vendors to perform pen testing on internet facing and internal fraud sensitive applications
Application Security Consultant
Finra
03.2012 - 09.2014
- Implemented continuous build integrated security scans by integrating security tools in the CI platform
- Performed application security assessments on all the internally deployed applications
- Developed application security dashboard to report security posture to the senior management
- Developed application risk classification system to help application team provide application related information
- Risk classification system will automatically classify the sensitivity of the applications organization wide
Associate
Cognizant Technology Solutions
12.2006 - 03.2012
- Performed applications security assessments/testing for various large organizations
- Implemented solutions for Identity Management, Data Security and Test Data Management projects
- Performed Web development using Java/J2EE technologies in the Financials, Retail, Telecommunications and Health Care domains
- Automated build deployment process for various severs (Tomcat, WebLogic and WebSphere)
- Developed internal data masking tool to mask sensitive data present in file systems and databases which includes Oracle, SQL Server
- Project management experience in managing various projects for large organizations
Education
Bachelor of Technology - Information Technology
Anna University
Chennai, India 05.2001 -
Skills
DevSecOps
undefinedCertification
CISSP
Technical Skills
Security Tools
Akamai, Snyk, CheckMarx, Invicti, Crowdstrike, Fortify, AppSpider, Acunetix, Contrast Security, WebInspect, AppScan, ZAP, Burp Suite, Fiddler, Wireshark, Nessus, Nmap, DataVantage Data Masking Tool, IBM Optim, BMC Identity Management suite
Programming
Java, J2EE, Java Frameworks and scripting, PL/SQL, Shell scripting,
Databases
Oracle, MS SQL Server, MySQL
Others
OWASP, NIST, FFIEC, DFS, OpenSAMM, BSIMM
Timeline
Senior Principal Security Architect
Dun & Bradstreet
04.2020 - Current
Application Security Consultant
Finra
03.2012 - 09.2014
Associate
Cognizant Technology Solutions
12.2006 - 03.2012
Bachelor of Technology - Information Technology
Anna University
05.2001 -
Vice President
BNP Paribas
9 2014 - 04.2020
Similar Profiles
Lucas BadaLucas Bada
Solution Sales Advisor at Dun & BradstreetSolution Sales Advisor at Dun & Bradstreet
Gabriella SanchezGabriella Sanchez
Sales Development Representative at Dun & BradstreetSales Development Representative at Dun & Bradstreet
Rajkumar SelvaganapathiRajkumar Selvaganapathi
Senior Data Scientist / Analyst II – Data at Dun & BradstreetSenior Data Scientist / Analyst II – Data at Dun & Bradstreet
Samer Al-ShawishSamer Al-Shawish
Risk Management Consultant at Dun&bradstreetRisk Management Consultant at Dun&bradstreet
Nicolas RiveraNicolas Rivera
Meat Cutter at BJ's WholesaleMeat Cutter at BJ's Wholesale