Summary
Overview
Work History
Education
Skills
Websites
Certification
Timeline
Generic
Amrrith M

Amrrith M

Cyber Security Leader
Bangalore

Summary

Skilled Cyber Security Leader with 15 years of experience in Aerospace, Industrial Automation, Automotive, and IT industries. Expertise in leading functional/technical and strategic planning/implementing cybersecurity architectural solutions. Proven track record in collaborative team management, security consulting, risk management, security requirement engineering, threat analysis, risk governance, and privacy impact analysis. Committed to ensuring top-level security for organizations and implementing effective cyber security posture management in the overall ecosystem.

Overview

15
15
years of professional experience
2011
2011
years of post-secondary education
4
4
Certifications

Work History

Sr. Product Cyber Security Solution Architect

Honeywell
09.2020 - Current
  • Lead and manage a team of security professionals, responsible for various Risk and Compliance related initiatives
  • Provide architecture and best practices guidance in building secure products.
  • Support product security process activities including threat modeling, security requirements, security reviews, threat vulnerability assessments for all software and firmware development
  • Lead efforts with the development teams to quantify residual product risk and identification of appropriate security controls
  • Provide product security/privacy related coaching/mentoring and security expertise for all software and firmware development teams.
  • Drive a standardized set of security product requirements into product and service offerings
  • Lead and coordinate cross-functional activities for incident response plan.
  • Engage early with the teams and understand the project plan
  • Develop the security baseline, planning for security deliverables (with the team) and raise issues/exceptions requests as needed
  • Build and implement cyber resilience capabilities to ensure continuity of operations during cyber-attacks or major incidents, with defined escalation, containment, and communication protocols.
  • Responsible for the strategic view on security for all the products in business.
  • Ensure the product is securely developed and with appropriate risk level based on the product and its market.
  • Ensure the product conforms to internal and external privacy and security regulations.
  • Be Informed of upcoming regulation and process changes to give teams sufficient time to respond
  • Integrate secure software development life cycle (SDLC) practices and DevSecOps controls across application development and third-party integrations.
  • Conducted research to evaluate systems design and process efficiency.
  • Improved solution efficiency by designing and implementing scalable architectures for enterprise clients.
  • Lead or support the Data Protection Officer (DPO) function to conduct Privacy Impact Assessments (PIAs), handle grievances, and manage regulatory reporting.

Cyber Security System Architect

Continental
06.2018 - 08.2020
  • Evaluate effort/cost estimation, support RFI/P/Q and performance optimized solution on Cyber Security controls/features implemented within the product
  • Negotiate and drive the importance of value-added benefits of Cyber Security principles and adaptation to the key customer stakeholders and among the steering committee at organizational level
  • Perform & Execute detailed TARA (Threat Analysis and Risk Assessment) on the relevant product to justify the significance of Cyber Security adaptation
  • Derive/Define a functional security concept based on the outcome/results of TARA in accordance with well-defined Security goals and Risk mitigation approaches
  • Eliciting, Elaborating, Analyzing and Specifying the detailed requirements to realize Cyber Security goals and measures with respect to various disciplines in a product development lifecycle
  • Handle and manage the conflicts to establish a common consensus between relevant stakeholders
  • Developing and document the Secure System product Architectures that fulfill the given security goals
  • Engage and collaborate with various project disciplines to manage and drive the industry standard feasible Cyber Security solutions
  • Responsible to define Cyber Security Architecture models for various Automotive/Industry use cases in PLC's like V-model and Agile methodologies
  • Analyze change requests with respect to impact on Cyber security and Privacy of the product
  • Collaboration and engagement with appropriate third-parties to model/build secure product architecture
  • Provide functional/technical analysis of existing and future security products and services
  • Participate in benchmarking exercises to align Cyber Security Services to industry best state of the art solutions & practices
  • Mentor, motivate, lead and manage the project teams
  • Perform reviews, auditing and assessments of various Cyber Security work packages within the working group

Cyber Security Associate Business IT Consultant.

ITC Infotech
09.2014 - 06.2018
  • Participate and support in Project Acquisition and Quotation for the Cyber Security needs and offerings for the customers in business-critical operations
  • Responsible for contributing in business development in identifying the partnership strategy to grow the business values of the organization
  • Define code scanning, vulnerability testing, and release gating processes for all critical business applications.
  • Define, develop and architect a business solution model that meets the customer needs that protects and secures the organizational assets and infrastructure
  • Accessing the maturity of Cyber Security capabilities and defining a strategy for risk mitigation
  • Performing response and recovery activities for high profile technology Incidents/disruptions due to Cyber-attacks and other crisis scenarios
  • Take into an account of Cyber Security goals and requirements of business along with existing processes and evaluate if changes are needed
  • Create and evaluate functional workflows, determine if various applications are meeting security standards, and develop new strategies
  • Engage and develop a strong intermediary link between the clients and the project team
  • Actively establish & strengthen Client/Customers (functional heads & key influencers) and internal relationships
  • Establish due diligence and ongoing oversight for third-party risk, including penetration testing, compliance attestations, and contractual security clauses.
  • Continuously monitor vendor performance, breach history, and regulatory alignment to ensure data security obligations are consistently met.

Cyber Security Systems Engineer

Tata Consultancy Services Limited
11.2013 - 09.2014
  • Engage and to build relationship with new and existing customers to help them assess, evaluate and navigate in the cyber security landscape
  • Gather, collect and analyze the stakeholder requirements from the customer's business practice perspective
  • Develop a high-level Cyber Security functional concept to solve and address the existing Risks within the business corporate functions
  • Develop the mitigation steps and to design the process, strategies and architectures
  • Working with technical implementation team to realize the feasible functional solution to build the secure systems
  • Work with consulting team to provide assessments to clients of their current cyber security set-up, including vulnerability and risk management.
  • Engage with executive leaders, function heads, Manufacturing, and regional sales leadership to embed security into operations.

Cyber Security Business Program Analyst

Cognizant
12.2010 - 10.2013
  • Collaborative team player in solving complex cyber-risk management issues
  • Build and map data flows across a complex application
  • Evaluate data gathered from multiple sources and business areas, reconcile conflicts, build up the detail, to underpin high-level information and summarize low-level information into digestible reports
  • Contribute to the creation of updates to senior stakeholders and governance board
  • Complementing the existing Cyber Security and operational functions, ensuring that all parties work toward a common Cyber Security goal
  • Coordinating and integrating corporate and mission critical Information Technology under a common Cyber Security Management framework, based on a holistic risk assessment of client assets
  • Interface and collaborate with outside teams
  • Manage and co-ordinate operational components of incident management, including detection, response and reporting
  • Provide clear, concise and easily consumable communication with key technical and non-technical stakeholders so that threats and incidents are understood and appropriately addressed
  • Ensure accurate and clear communication with all stakeholders
  • Support and assist Sales/Pre-sales team in selling Cyber Security Solutions and generating new business opportunities
  • Assist clients in planning and executing remediation plans identified in assessment activities

Education

Bachelor of Engineering - BE - Electronics And Communications Engineering

NMAM Institute of Technology

Skills

    Threat Analysis/Risk Management/Risk Governance

    Risk/Privacy profiling

    Cyber Policies/Framework/Regulations

    Cyber Proposals/Initiation/SDLC

    Product Cyber Security

    AI in Cyberspace

Certification

Certified Professional Requirement Engineer

Timeline

Sr. Product Cyber Security Solution Architect

Honeywell
09.2020 - Current

Cyber Security System Architect

Continental
06.2018 - 08.2020

Cyber Security Associate Business IT Consultant.

ITC Infotech
09.2014 - 06.2018

Cyber Security Systems Engineer

Tata Consultancy Services Limited
11.2013 - 09.2014

Cyber Security Business Program Analyst

Cognizant
12.2010 - 10.2013

Bachelor of Engineering - BE - Electronics And Communications Engineering

NMAM Institute of Technology

Similar Profiles

CREATE PROFILE
Amrrith MCyber Security Leader