Anup Chauhan
Details
History
Delhi University
1986 : 1988
ITIL
2009 : 2009
• Head the global HSM from 6 sites across. Manage HSM’s across 8 geographical locations
• Head the global key management team for external clients for payment systems.
• Lead VISA’s KC (Key custodian program). Manage KC across different org lanes globally.
• Support, define and drive health metrics, and leverage automation and tooling platforms to help the team maintain systems health and improve availability over time
• Collaborate with leaders in multiple global locations in a follow-the-sun model, including participating in critical, high-profile deployments and programs.
• Operate in a rapidly evolving, high paced environment, quickly adapt to new information, re-prioritize and re-organize based on need.
• Manage engineers to strengths, enable, unblock, and grow talent through coaching and technical mentoring
• Responsible for people management of a global team of at least 11 engineers and additional continent staff, set goals, providing performance reviews, continual feedback, coaching and career growth for direct reports.
• Managing and partnering with all leading HSM vendors. Exploring and evaluating new technologies for the business needs.
• Partner with finance and sourcing teams for high value assets, vendor onboarding and management. Managing M&S (maintenance and support) contracts for HSM and tools
2019 : Present
Visa
Director Cybersecurity-Applied Cryptography
• Provide Sr. leadership to team in maintaining and operating Webtrust and internal corporate PKI
• Perform Key ceremonies for certificate issuance in accordance with WebTrust/CAB-F requirements
• Maintained and monitored CRL publishing for the enterprise.
• Managed and work with different regions across the globe to implement HSM’s (Host Security Modules)
• Maintain Master keys and key components related to PKI and HSM at the Foster city CA location
• Implement new PKI infrastructure in VISA’s multiple Data Centers across the country.
• Design and implement a robust BCP (Business Recovery Plan). Write and maintain detailed documentation for day-to-day operation, training and disaster recovery.
• Perform and participate in audits as Web Trust, TG3, SAS70 and internal company audits.
• Supported SSAE-18, SOX, PCI-PIN, PCI-DSS, and Gartner audit reviews of encryption systems
• Conduct annual disaster recovery/business continuity exercises for cryptographic systems
• Participate in maintaining, improvement and implementation of CP/CPS (Certificate Practice and Certification Practice Statement
• Lead the PKI & HSM team to deliver cryptographic services within the scope and budget
• Implemented data-at-rest encryption for storage devices like EMC-Vmax, and Hitachi for multiple platforms.
2014 : 2019
Visa
Sr. Staff Info Sec Engineer - Applied Cryptography
• An end to end private Iaas and Saas cloud services provider.
• Provide Private Cloud services (Iaas and Saas).
• Hosted multi-client email offerings on MS exchange.
• Hosted file shares on cloud based infrastructure
• Mobile device management, MDM's and
• At site customer support for all IT services, security and vendor management.
• Provide consultancy service to clients for IT asset optimization and improve ROI.
• VoIP solutions
• Provide virtualization solutions on cloud-based infrastructure across multiple sites.
2013 : 2015
Head In The Cloud
Chief Engineer, Architect, VP
Senior Information Security Specialist in VISA – Cybersecurity/ Applied Cryptography group (Applied Cryptography group in VISA is responsible for running VISA PKI and security infrastructure)
• Maintained end to end RSA Keon, Microsoft PKI and IBM DKMS certificate authorities.
• Perform Key ceremonies for certificate issuance.
• Maintained and monitored CRL publishing for the enterprise.
• Managed and work with different regions across the globe to implement Host Security Modules
• Maintain Master keys and key components related to PKI
• Implement new PKI infrastructure in VISA’s multiple Data Centers across the country.
• Design and implement a robust BCP (Business Recovery Plan)
• Write and maintain detailed documentation for day-to-day operation, training and disaster recovery.
• Perform and participate in audits as Web Trust, TG3, SAS70 and internal company audits. Supported SSAE-16, TR-39, SOX, PCI DSS, and Gartner audit reviews of encryption systems
• Conduct annual disaster recovery/business continuity exercises for cryptographic systems
• Participate in maintaining, improvement and implementation of CP/CPS (Certificate Practice and Certification Practice Statement
• Lead the PKI team to deliver cryptographic services within the scope and budget
• Upgrade HSM’s (host security modules) for multiple applications and projects
• Implemented data-at-rest encryption for storage devices like EMC-Vmax, and Hitachi for multiple platforms.
2009 : 2013
Visa
Information Security Specialist (PKI)
• Responsible designing, provisioning/implementing new systems and application for corporate and business line functions.
• Architect/design systems for application development.
• Maintain development environments for various in-house projects
• Testing, deploying new technologies i.e., Virtual Machines for server consolidations
• Providing III Level support to production environments
• Working with Development, Product Support and QA teams directly to meet their requirements
• Providing support for end – users and day-to-day administration. Trouble shooting, imaging redeploying systems laptops, etc.
• Inventory control and vendor management
• Working and coordinating with the security department to maintain system compliance and policies as defined by the organization based on PCI compliance.
• Implement security monitoring and compliance tools as Tripwire and Symantec ESM
• Maintaining 100% compliance with corporate security policies.
2002 : 2009
Visa
Senior Systems Engineer
Skills
Asymmetric keys, Audit Management, Cloud Computing, Compliance PCI, Computer Network Operations, Computer Security, Data Center, Disaster Recovery, Disk Encryption, Email Encryption, Enterprise Architecture, HSM, Information Security, Infrastructure, Integration, IT Management, Microsoft Technologies, Operations, Operations Management, Payment Industry, PCI-X, PKI, PKI/MS CA, SaaS, Security, Security Operations, Standards Compliance, Symmetric keys, Third Party Vendor Management, Vendor Coordination, Vendor Management, Vendor Partnerships
About
Senior technology leader with more than 20 years of career accomplishments in business processes improvements, developing & executing strategies to promote organizational growth and leading multifaceted, cross-functional global teams. Experienced hands-on leadership of mission-critical IT/security operations. Skilled leader with vision, execution at the detail level and delivering true global enterprise-level solutions.
• A consultative leader, with the ability to influence across all divisions and communicate a business strategy, key objectives, security needs, policies and compliance requirements.
• Experienced leading a sophisticated global organization across multiple countries, managing multi-disciplined team of engineers and business lanes Extensive experience working at scale across large organizational structures managing $30+ million critical assets to protect confidential and critical data
• Strong quantitative and analytical aptitude with deep understanding on how to develop relevant metrics to track activity and quantify the impact of security initiatives on the organization
• Expertise in a wide range of engineering, security, GRC, data protection, CAB/F, PCI (PCI-Pin, PCI-DSS, PCI-P2PE, PCI-PTS HSM, SOC/SSAE18, GDPR, internal audit) regulatory and payment industry compliance standards.
• Effective and comfortable interacting with various stakeholders, higher leadership in the organization to effectively communicate and convey programs, compliance, policies.
• Experienced with highly critical data protection and maintaining its security as a top priority, understanding information security at scale.
• Experienced in architecting designs and solution for critical infrastructure, HSM’s regulatory requirements, processes and support requirements. for multi-site global structures.
• Work across IT and security lanes, product, and support teams, on developing the strategy, design, and processes required to support the organization globally.
Profile Photo
