Summary
Overview
Work History
Education
Skills
Certification
Timeline
e2
Amrrith M

Amrrith M

Bangalore,KA

Summary

With 14+ years of experience, highly skilled in Cyber Security Architecture across Aerospace, Industrial Automation, Automotive, and IT industries. Expertise in leading functional and strategic planning for cybersecurity, collaborative team management, security consulting, risk management, security requirement engineering, threat analysis, risk governance, and privacy impact analysis. Dedicated to ensuring top-level security for organizations and implementing effective cyber security posture management in the overall ecosystem.

Overview

15
15
years of professional experience
1
1
Certification

Work History

Sr. Product Cyber Security Solution Architect

Honeywell
01.2020 - Current
  • Lead and manage a team of security professionals, responsible for various Risk and Compliance related initiatives
  • Provide architecture and best practices guidance in building secure products
  • Support product security process activities including threat modeling, security requirements, security reviews, threat vulnerability assessments for all software and firmware development
  • Lead efforts with the development teams to quantify residual product risk and identification of appropriate security controls
  • Provide product security related coaching/mentoring and security expertise for all software and firmware development teams
  • Drive a standardized set of security product requirements into product and service offerings
  • Lead and coordinate cross-functional activities for incident response
  • Engage early with the teams and understand the project plan
  • Develop the security baseline, planning for security deliverables (with the team) and raise issues/exceptions requests as needed
  • Representing in the PI planning sessions, giving an update on the security posture of the products in the release train
  • Responsible for the strategic view on security for all the products in business
  • Ensure the product is securely developed and with appropriate risk level based on the product and its market
  • Ensure the product conforms to internal and external privacy and security regulations
  • Be Informed of upcoming regulation and process changes to give teams sufficient time to respond
  • Learning - Continual learning about new threats, technologies, and processes, regulations

Cyber Security System Architect

Continental
01.2018 - 01.2020
  • Evaluate effort/cost estimation, support RFI/P/Q and performance optimized solution on Cyber Security controls/features implemented within the product
  • Negotiate and drive the importance of value-added benefits of Cyber Security principles and adaptation to the key customer stakeholders and among the steering committee at organizational level
  • Perform & Execute detailed TARA (Threat Analysis and Risk Assessment) on the relevant product to justify the significance of Cyber Security adaptation
  • Derive/Define a functional security concept based on the outcome/results of TARA in accordance with well-defined Security goals and Risk mitigation approaches
  • Eliciting, Elaborating, Analysing and Specifying the detailed requirements to realize Cyber Security goals and measures with respect to various disciplines in a product development lifecycle
  • Handle and manage the conflicts to establish a common consensus between relevant stakeholders
  • Developing and document the Secure System product Architectures that fulfil the given security goals
  • Engage and collaborate with various project disciplines to manage and drive the industry standard feasible Cyber Security solutions
  • Responsible to define Cyber Security Architecture models for various Automotive/Industry use cases in PLC's like V-model and Agile methodologies
  • Analyse change requests with respect to impact on Cyber security and Privacy of the product
  • Collaboration and engagement with appropriate third-parties to model/build secure product architecture
  • Provide functional/technical analysis of existing and future security products and services
  • Participate in benchmarking exercises to align Cyber Security Services to industry best state of the art solutions & practices
  • Mentor, motivate, lead and manage the project teams
  • Perform reviews, auditing and assessments of various Cyber Security work packages within the working group

Cyber Security Associate Business IT Consultant.

ITC Infotech
01.2014 - 01.2018
  • Participate and support in Project Acquisition and Quotation for the Cyber Security needs and offerings for the customers in business-critical operations
  • Responsible for contributing in business development in identifying the partnership strategy to grow the business values of the organization
  • Responsible for accessing the business needs of project, converting these into formal business requirements, and producing the documents to the project development team
  • Define, develop and architect a business solution model that meets the customer needs that protects and secures the organizational assets and infrastructure
  • Accessing the maturity of Cyber Security capabilities and defining a strategy for risk mitigation
  • Performing response and recovery activities for high profile technology Incidents/disruptions due to Cyber-attacks and other crisis scenarios
  • Take into an account of Cyber Security goals and requirements of business along with existing processes and evaluate if changes are needed
  • Create and evaluate functional workflows, determine if various applications are meeting security standards, and develop new strategies
  • Engage and develop a strong intermediary link between the clients and the project team
  • Actively establish & strengthen Client/Customers (functional heads & key influencers) and internal relationships

Cyber Security System Engineer

Tata Consultancy Services Limited
01.2013 - 01.2014
  • Engage and to build relationship with new and existing customers to help them assess, evaluate and navigate in the cyber security landscape
  • Gather, collect and analyse the stakeholder requirements from the customer's business practice perspective
  • Develop a high-level Cyber Security functional concept to solve and address the existing Risks within the business corporate functions
  • Develop the mitigation steps and to design the process, strategies and architectures
  • Working with technical implementation team to realize the feasible functional solution to build the secure systems
  • Work with consulting team to provide assessments to clients of their current cyber security set-up, including vulnerability and risk management

Cyber Security Business Program Analyst

Cognizant
01.2010 - 01.2013
  • Collaborative team player in solving complex cyber-risk management issues
  • Build and map data flows across a complex application
  • Evaluate data gathered from multiple sources and business areas, reconcile conflicts, build up the detail, to underpin high-level information and summarise low-level information into digestible reports
  • Contribute to the creation of updates to senior stakeholders and governance board
  • Complementing the existing Cyber Security and operational functions, ensuring that all parties work toward a common Cyber Security goal
  • Coordinating and integrating corporate and mission critical Information Technology under a common Cyber Security Management framework, based on a holistic risk assessment of client assets
  • Interface and collaborate with outside teams
  • Manage and co-ordinate operational components of incident management, including detection, response and reporting
  • Provide clear, concise and easily consumable communication with key technical and non-technical stakeholders so that threats and incidents are understood and appropriately addressed
  • Ensure accurate and clear communication with all stakeholders
  • Support and assist Sales/Pre-sales team in selling Cyber Security Solutions and generating new business opportunities
  • Assist clients in planning and executing remediation plans identified in assessment activities

Education

Bachelor of Engineering - BE - Electrical, Electronics and Communications Engineering

N M A M Institute of Technology
01.2010

Skills

    Threat analysis/Risk Management

    Cyber Policies/Framework/Regulation

    Security Architecture

    Cyber Proposals/Initiation/SDLC

Certification

  • Certified Professional Requirement Engineer
  • Certified Secure Software Lifecycle Professional (CSSLP)
  • ISA/IEC 62443 Industrial Automation Cyber Security
  • ISO 21434 - Road Vehicle Cyber Security Engineering

Timeline

Sr. Product Cyber Security Solution Architect

Honeywell
01.2020 - Current

Cyber Security System Architect

Continental
01.2018 - 01.2020

Cyber Security Associate Business IT Consultant.

ITC Infotech
01.2014 - 01.2018

Cyber Security System Engineer

Tata Consultancy Services Limited
01.2013 - 01.2014

Cyber Security Business Program Analyst

Cognizant
01.2010 - 01.2013
  • Certified Professional Requirement Engineer
  • Certified Secure Software Lifecycle Professional (CSSLP)
  • ISA/IEC 62443 Industrial Automation Cyber Security
  • ISO 21434 - Road Vehicle Cyber Security Engineering

Bachelor of Engineering - BE - Electrical, Electronics and Communications Engineering

N M A M Institute of Technology

Similar Profiles

  • Betty Morgan

    Betty MorganBetty Morgan

    Electronics Technician at HoneywellElectronics Technician at Honeywell

    View Profile
  • HEVY ORIA

    HEVY ORIAHEVY ORIA

    Assembler- Level 2 at HoneywellAssembler- Level 2 at Honeywell

    View Profile
  • Aaliyah Weaver

    Aaliyah WeaverAaliyah Weaver

    Assembly Technician at HoneywellAssembly Technician at Honeywell

    View Profile
Amrrith M