Nazira Carlage
Details
Executive Certificate in Management and Leadership
MIT Sloan School of Management
2021
Master's Degree
Computer Science Concentration in Security
Boston University
Master's Degree
Computer Applications
Jamia Hamdard
Bachelor's Degree
Computer Science
Kyrgyz State Technical University
Executive Education
Executive Certificate in Strategy and Innovation
MIT Sloan School of Management
2022
LTK (formerly rewardStyle & LIKEtoKNOW.it)
Chief Information Security Officer
Led global teams in Product and Infrastructure Security for Commerce, Analytics (including Tableau), Mulesoft, and Heroku products.
2021 : 2023
Salesforce
Senior Director, Security Assurance
Spearheaded the Product Security team that supports Commerce Cloud products (B2C Commerce, B2B Commerce, Order Management, Commerce Einstein, etc.).
2019 : 2021
Salesforce
Director, Product Security
Architected Vulnerability and Customer Security Response programs within Product & Application Security team; piloted and transformed the Global Dell Product Incident Security Response Team (PSIRT) responsible for product security vulnerabilities and Dell’s public digital
footprint.
Championed Dell’s cross-functional response to several high-profile vulnerabilities (e.g. WannaCry, Meltdown/Spectre).
Led Dell’s crowdsourced security testing strategy and programs : propelled Dell’s first vulnerability disclosure and private bug bounty programs.
Represented Dell in various industry bodies and forums and was EWF Champion at Dell (https : //www.ewf-usa.com/).
2018 : 2019
Dell
Director, Product and Application Security
Orchestrated Lead Product Security Response Center (PSRC) to manage Dell EMC’s Vulnerability Response program; oversaw vulnerability response integration activities during Dell and EMC merger, product security issues, compliance inquires, and strategic planning for crowdsourced security testing.
Managed annually 1000+ product security reports and issued around 200 customer-facing security advisories.
Represented Dell EMC at several FIRST and SAFECode working groups and co-authored 2 papers and authored Dell EMC’s first official Public Vulnerability Response Policy.
Established and implemented the usage of CVSSv3 for the company with systematic training and coaching.
Cross functionally collaborated in cross-vendor/industry-wide vulnerability response efforts; SME for EMC.
Presented as a subject matter expert on EMC’s Security Development Lifecycle (SDL) program; mentored various product teams to adopt SDL activities and requirements (threat modeling, security assessments, hardening, source code analysis, security testing, etc.)
2008 : 2018
Dell EMC
Senior Manager, Manager, Principal Security Engineer, Senior Security Engineer
Skills
Application Security, CISSP, Computer Security, Cryptography, Cybersecurity, Encryption, Enterprise Software, Identity Management, Information Security, Information Security Management, Network Architecture, Network Security, Penetration Testing, PKI, Security, Security Architecture Design, Security Development Lifecycle, Vulnerability Assessment, Vulnerability Management, Web Application Security
About
A proven senior security leader that drives business-centric innovation through strategy, empowering independence, and inspiring the next generation of enterprise growth from small to large enterprise. Experienced security strategist from Cloud to Enterprise Architecture, change/transitional management, application security, product development, vulnerability assessment, security operations, security engineering, process improvement, and enterprise transformation. A visionary who serves as a catalyst for sustainable change by empowering organizations and people in achieving breakthrough results as they travel to secure digital transformations. A leader that nurtures and empowers teams through communication in fostering cross-functional collaboration and achieving the organization’s goals. A driver of continuous improvement who eliminates single points of failure, transforming complex obstacles into tangible solutions.
Profile Photo
