This document contains the resume of Venkatesh M S, an IT security analyst with over 6 years of experience in areas such as web security, vulnerability scanning, security incident management, and cloud security. It lists his contact information, certifications in ITIL and ISO 27001, skills, security tools experience, work experience at Accenture and IBM, and education details.

1. Venkatesh M S
# 580 8th
main 5th
cross
RPC Layout Vijayanagara
Bangalore-40 E-mail: venkyms1984@gmail.com
Phone: 91-9742911777-9986928722.
Summary:
A IT Security Analyst with about 6.8 years of experience in Web security, Security Compliance Management and
specialized in System Security, Vulnerability Scanning, Security Incident Event Management, Application Security,
Cloud security, Identity & Access Management, Patch Management, Audit & Compliance, Project Management and
Information Security Audits in regulatory environment, Business Continuity Management.
Certification:
ITIL v3 Foundation Certificate in IT Service Management.
ISO27001 Lead Auditor Certification
Cobit V5
Skills:
Security Audit and Accountability, Compliance Testing, Risk Assessment, Identification and Authentication, Security
Standards, Compliance and Audit Management, Security Policies and Procedures, Identity and Access Management,
Security Incident & Event Management, Security health Checking, Regulatory Quality Testing, ISO 27001Controls, ITIL
standard, Risk Management using ISO 27005.
Security Tools:
Proficient in: Identity Access Manager(Multiple Vendors), Nessus
Familiar With: Vulnerability Scanners, ISS, Qualys Guard.
Employer Details:
• Working in Accenture as Sr Security Operations Analyst, From: March 2012 till date.
• Worked in IBM India Private Limited as Compliance Lead, From: August 2008 to July 2011
• Worked in Metlife Insurance PVT LTD as a Application support engineer From:Sep 2007 to june 2008
Project Details:
Working as Security Compliance Manager, from February 2012 till date
Description:
• Compliance Management.
o Ensure that the account is compliant with the entire security requirements document in the
Information security Policy using various tools.
o Manage Security Services, IAM, IT advisory services, Vulnerability scanning, Patch management &
infrastructure security
o Perform the vulnerability scanning, security health checks to client in scope servers & network
devices.
o Provide support to Patch management for customer servers & network devices.
o Provide to ensure timely manner to complete the execution of security testing.
o Provide IBM support team to track and assist in closing the security gap checks according security
guidelines.
o Provide support for delivering InfoSec assessments and controls demonstration regard to
compliance.
o Monitoring the compliance of the various process implemented to the meet the Controls documented
in the information security Policy.

2. o Expertise in analyzing and translating business requirements into control objectives, design security
controls and implement them along with a security management cycle.
o Conduct independent security controls review.
• Audit Management.
o Leadership / support in security Audits / reviews / validations of compliance posture.
o Assistance and guidance on interpreting the data requests and validating the data response
o Be a single point of contact to the Auditors and Audited team and help the team in understanding the
Audit requirement
o Internal compliance & Cyber security audit.
o Support corporate security review, SSAE16, SOX audit & Internal security assessment
• Risk Management.
o Perform security technical testing as the part of managed security services.
o Perform privilege monitoring & risk assessment for the IBM clients
o Drive the identification and management of risk
o Drive the documentation of threat and risk
o Ensure Issue and risk Management a part of the local delivery management system with Operation
metrics reviewed and actioned.
o Ensure the risk documented is communicated to the management and customer for action.
• Business Continuity Management
o Identify critical systems, processes and functions.
o Risk assessments based on the duration of Outage and criticality.
o Develop Business Continuity Plans for Everything
o Test and Exercise the Plans
o Layer Business Plan & Disaster Plan
o Ensuring there is a regular status reporting to management
o Use summary reports for management for tracking on the status
Worked as a part of Compliance Control Testing Team in IBM India Private Limited, from January 2011 to
January 2012
Description:
• Performing analysis and updates of IT Controls Testing checklists
• Key control testing of General Computer Controls.
• Evaluation and documentation of test results.
• If necessary, retesting of remediated controls.
• Assist in developing and updating procedures, other technical documentation, and best practices that can be
leveraged to improve efficiencies across the clients organization.
• Performing periodic shared ID reviews for the clients supported by the company.
• Evaluation and documentation of test results.
• Providing feedbacks and recommendations based on the observations of the review.
• Assisting in the preparations of security policy documents by actively reviewing and providing suggestions
based on the requirements.
Worked as a Quality Control Lead in IBM India Private Limited, from August 2009 to December 2010
Description:
• Verify procedural compliance (completeness, accuracy, etc).
• Summarize daily/weekly/monthly QC results.
• Review and provide QC results to Service Delivery Manager(s) and DPE(s) and identify any issues.
• Verify Compliance Incidents, RCAs are created and monitor to assure completion.
• Review consolidated inspection results to identify problem trends/area.
• Address issues with Delivery Leads.
• Summarize defects for weekly QC report.

3. Worked as IT Security Analyst in IBM India Private Limited, From: August 2008 to August 2009
Description:
• An astute professional with over 24 Months of experience in the areas of Information Security Management
and Security Auditing.
• Successfully handling projects for many clients during work experience.
• Been part of GDF (6 Sigma LEAN Derivative) –DPP (Defect Prevention Program) of IBM.
• Expertise in handling Internal/External Audits like Corporate, BC Review, KCO Testing and PMR.
• Strong communication & team building skills with proficiency at grasping new technical Concepts quickly &
utilize the same in a productive manner.
Worked as Application support engineer in Metlife insurance pvt ltd (Trimax computers ltd),
From: Sep 2007 to June 2008
Description:
• Team support and Co-ordination.
• Vendor Co-ordination(TCS and Impactools)
• Batch job running follow-ups and solving batch job related issues.
• Solving application and server (UAT, STAGING and Production) related issues.
• Managing the daily weekly monthly scheduled activities and reports.
• RFC and Ticket (Requests from the vendors) Co-ordination.
• Monitoring and managing the Network Devices
• Worked on Avaya MACD operations.
Qualification:
• B.Sc Computer Science ( D.R.M Degree & Junior College, Davangere)
Personal Profile:
Name : Venkatesh M S
Date of Birth : 17-09-1984.
Father’s name : Srinivas Rao M R
Languages Known: Kannada, English, and Hindi