Senthil Venkatachalam
Details
Master of Business Administration.
University of Virginia, Charlottesville, VA
Master of Science, Electrical Engineering.
Birla Institute of Technology and Science, Pilani, India
Bachelor of Engineering (Hons.), Computer Science.
Master of Science (Hons.), Mathematics.
Director, Product and Cloud Security
• Manage the security (cloud, identity, network and product security) components of the $75Million Cloudera Public Cloud service on AWS/Azure/GCP. Includes authentication/authorization, SAML, private links, among others.
• Manage 12 infosec and security focused engineers across four teams.
• Led response on critical/0-day vulnerabilities and other product security issues. Improved security response process by augmenting infosec teams with T1/T2 support personnel.
• Thought Leadership & Communications: Led discussions with CISOs on Cloudera product security process and Shared Responsibility Model (SRM). Trained technical teams on (a) security best practices to avoid OWASP Top-10 application vulnerabilities, and (b) cloud security tools: SWG/CASB/CWPP/CNAPPs.
• Created and launched the Cloudera Private Link Network service for secure, internet-free multi-cloud connectivity.
Verizon 2017 – 2022
Senior Manager, Cloud Security
• Managed $20M+ cloud and gateway security services with IDPS, Malware Defense, CASB, DLP and SSL Inspection features in FISMA High environment. Managed a budget of $7M and a team of six (6) senior technical personnel. Recognized as leading contributor (Top 5%) to company.
• Saved over $2M in equipment costs by negotiating with vendors. Created a Packet Capture solution using industry leading products for a fraction of the cost. Received a "Recognizing You" award in 2020 for this work.
• Concept-to-Launch: Evaluated in-house development and partnership opportunities, selected vendor, negotiated vendor agreement including pricing and SLA terms, and launched Verizon Secure Cloud Gateway service within a month of vendor contract completion; service has highest margins in product category.
• Communications: Presented solution to CISOs and technical teams, provided demos, and offered competitive in
• Roadmap and Development: Delivered integrations such as Threat Intel, Security Analytics, SD-WAN and Zero-Trust Networking; led internal engineering efforts to host vendor technology in Verizon Cloud Platform. Received “Recognizing You” award for innovative roadmap and vision to move service to Secure Access Service Edge (SASE).
Wipro Cybersecurity and Risk Services (CRS) 2016 – 2017
Senior Practice Manager and Security Partner
• Senior consultant to CISOs: gap analysis, problem identification, proactive proposal development, RFP responses, delivery and technical leadership, partner management and solution development.
• Provided security services across the spectrum: Managed Security Services, SOC/Security Intelligence, Identity and Access Management, Cloud and Mobile Security, Governance, Risk and Compliance (GRC).
• Helped customers evaluate cutting edge security technologies such as: Splunk/Sqrrl/UBA, Vectra, Security Orchestration, IOT Security, Managed SIEM and MSS offered through the Global SOC/Cyber Defense Center.
Fidelis Cybersecurity Systems 2014 – 2016
Senior Product Manager
• Managed Fidelis XPS product for Advance Threat Defense, Data Loss Prevention (DLP) & Security Analytics.
• Led the endpoint product integration strategy and development: Worked with partners to create value for customers through seamless interop of network/endpoint enterprise security solutions.
• Evaluated innovative security startups such as Lastline, Bit9/Carbon Black, CounterTack, Triumfant, Tanium, Bromium, and others to for technology and strategic integration.
• Led the Crowdstrike integration with Fidelis XPS: Integration of industry leading Advanced Threat intel.
• Led back-to-back releases for product with 20+ features in each version, including sandboxing capabilities.
• Produced compelling competitive intelligence against competitive products such as FireEye, Lastline, Palo Alto, SourceFire, TrendMicro, IBM Forensics, and Symantec with quick turnaround time to assist in many deals.
Spacenet Managed Network Services 2011 – 2013
Director of Product Management
• Managed the “Managed Network Services” products/services, and responsible for the introduction of new high value services such as Security, PCI Compliance, and Cloud Services to customer base.
• Launched MNS Connect and PCI Accel services. Partnered with ControlCase, Trustwave and Fortinet to offer PCI services; trained sales teams on PCI Compliance and the value proposition.
• Analyzed the SIEM market and evaluated vendors to determine the best fit for Spacenet MSS services.
BT Counterpane/Managed Security Services 2006 – 2011
Lead Product Manager
• Managed BT Counterpane MSS services, and a team of product managers.
• Managed a $22 million threat monitoring service, BT’s flagship product in its security solutions portfolio:
• Led multiple high-performance cross-functional teams and directed the work of over twenty (20) senior technology professionals resulting in the release of many high-value correlation features (anomaly, DDoS, malware, and botnet detection).
• Led a team of product managers and senior architects to put in place next-generation “Big Data” technologies and infrastructure to monitor high volume logs and help “leap over” the competition.
• Streamlined product development processes reducing time-to-market by 33%.
• Hosted webinars (> 120 attendees), created press releases, and wrote RFP responses and case studies – resulting in greater market awareness of the depth and flexibility of the service.
• Visited key customers to review service, present roadmaps, get feedback, and save troubled accounts.
• Key decision maker on product features, roadmaps, and buy/build/partner decisions.
• Launched and managed a Software-as-a-Service (SaaS) security service for Vulnerability Scanning with revenues of $250K in partnership with Qualys (the industry leading scan vendor):
• Negotiated vendor contract and obtained favorable terms (low costs and enhanced functionality), saving the company 6 months of engineering work; received a “WOW” award for this accomplishment.
• Spearheaded a multi-disciplinary team to achieve first coveted “PCI Certification” for company, earning certification despite strict requirements.
• Redesigned the customer-facing web portal for content, infrastructure, and look-and-feel, resulting in great customer reviews and contributing to sale of many new accounts. This included a redesign of the dashboard, reports, data presentation: charts and graphs, and tiered data analysis.
• Managed strategic partners (such as Qualys and Skybox) to bring high-value services to market, perform joint marketing, and pursue sales opportunities.
• Led the hiring and training of new, high caliber senior product managers and key technical personnel.
Skills
Strategy & Roadmaps
Cross-functional Team Leadership
Risk/Program Management
Application/Network/End-point Security
Cloud/Data/Identity Security
Security & Network Architecture
Compliance: PCI, NIST-800, FISMA
Security Monitoring & Analytics (XDR)
Vulnerability Management
Vendor Management
SIEM/IDS/Firewalls/WAF/DLP
Threat Feeds & Intel Services
About
Experienced Leader in Information Security: Security Program Leadership, Risk Management, Compliance, IR.
Expertise in Security Program Leadership:
• Leadership: Led direct and cross-functional teams of up to 25 technical personnel and program managers.
• Technical: Application/Network/Endpoint/Cloud/Data security, security strategy, architecture, SecOps/SOC, vulnerability management, threat monitoring, IR, compliance, automation, AI for Security.
• Policies: Setup and documented processes and policies for security issues (CVEs/0-day, SLAs, Ops Support).
• Communications: Interfaced with internal/external executives/CIO/CISOs on security issues. Led the communication of Technical Security Support Bulletins and Cloud Shared Responsibility Model.
• Budget: Managed budget of $7M. Saved $2M in costs through negotiated deals.
• Vendor Management: Led build/buy/partner and on-prem/cloud analysis for many security services.
• Service Management: Managed services from launch to deployment/rollout to in-life upgrades and EOL.
• GRC/Compliance: Deep experience with audits, PCI, NIST-800-53, FISMA High and FedRamp.
• Training: Ran training programs across the company for security and other evolving technologies.
Track record of leading high-performance teams - including hiring and promoting senior personnel. US Citizen.