Arun Muthu

Information security

Keep up to date with the latest security and technology developments Research and evaluate emerging cyber security threats and ways to manage them Plan for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Test and evaluate security products, knowledge of IDS/IPS systems Perform security due diligence checks

Control review activity includes but not limited to Test execution of Design and Operating Effectiveness, Issue Root Cause Analysis, Results Reporting or performing QC checks on the above. Establish credibility and maintain strong working relationships with groups involved with information security matters (Legal, Business Development, Internal Audit, Fraud, Physical Security, Developer Community, Networking, Systems, etc.).

*Implementation and maintenance of ISO 27001 compliance *Implementation and maintenance of ISO 27017 compliance *Implementation and maintenance of ISO 27018 compliance *Implementation and maintenance of PCI DSS compliance *SOC I and SOC II adherence *Liaise with the external auditors to make sure all the External Audits are completed on time *Ensure the internal Audits are completed on time and escalate all NC’s to CISO *Build and maintain Audit Calendar

*ISMS Implementation, ISO Audit, Risk Assessment *Security Policies, standards, procedures and guidelines *Incident Management and Business continuity plan *Coordinating QMS and CMMI L3 Implementation

Leads the design, implementation, operation and maintenance of the Information Security Management System based on the ISO/IEC 27001. information security awareness, training and educational activities, risk assessments and controls selection activities implementation of information security policies, standards, procedures and guidelines.

Prepare design alternatives and design specification document for security engineering ISO Audit, preparing manual and policies. Risk identification through COSO. Updating policies and standards.

Emulating Trust zone in Android emulator for secure processing by using SCRUM Methodology Development is done by using java platform, Android SDK, ARM Architecture cryptography technology and APDU protocols.

Collecting the business requirement converting into software modules, coding and testing also involved Involved in enterprise application security , BRS and HLD for software assurance internal audit and code review Involved in BCP, When account is moved from Cognizant GMR Block to Cognizant –DLF Block

Software Engineering and Security Architecture Security Management Computer and Network Security Principles of Management IT Management Research Methodology System Theory Security in Open Distributed System

Design and Analysis of Algorithms Software Engineering Object oriented programming Theory of computation Artificial Intelligence Computer Security