Summary
Overview
Work History
Education
Skills
Certification
References
Timeline
Generic

Prashant Mohan Naik

Sydney,NSW

Summary

A seasoned IT and Information Security professional, having more than 17 years of rich and insightful experience in IT, Telecom, Media & Healthcare sectors. Enthusiastic and result-driven leader with versatile, cross-platform experience in Information security, Risk Management, IT Audits, implementation, integration, and administration in local and remote environments. Experience working with complex, high transaction, high availability environments.

Overview

20
20
years of professional experience
1
1
Certification

Work History

Senior Director, IT Security & Compliance

Appen Limited
04.2019 - Current
  • Company Overview: Appen is a global leader in data-driven services, specializing in AI and machine learning (ML) solutions that power technological advancements for clients worldwide
  • Headquartered in Australia, Appen has a presence in the United States, United Kingdom, China, and the Philippines, supporting a range of industries with high-quality data annotation, collection, and model training services
  • As the Head of Security and Compliance, established a global vision and comprehensive security strategy, policies, and roadmap for Appen across multiple international regions
  • Championed information security awareness throughout the organization, coordinating targeted security training for employees, contractors, partners, and third parties worldwide to foster a robust, globally aligned security culture
  • Determine security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates
  • Directed threat intelligence and emerging risk assessments, including the latest AI and Generative AI threats, to address rapidly evolving industry challenges and enhance Appen’s security resilience across a changing technological landscape
  • Led the compliance strategy on a global scale, meeting diverse regulatory standards such as GDPR, ISO27001, PCI-DSS, NIST, and SOX, tailored to meet the unique requirements of a global and diverse client base
  • Participates in the development of the organization’s disaster recovery and business continuity plans for information systems
  • Spearheaded cloud security initiatives with comprehensive coverage across AWS, Azure, and Alibaba Cloud, ensuring robust security postures aligned with global compliance requirements for Appen's international clients
  • Supervise the Enterprise Risk assessment and maintain the risk register from which the security plan will be modified to align with the Business
  • Assist in developing and maturing the future services and capabilities of the SOC, such as Forensics, Threat Management, Penetration Assessments, Tool Management, and more
  • Oversees incident response team (CIRT)
  • Appen is a global leader in data-driven services, specializing in AI and machine learning (ML) solutions that power technological advancements for clients worldwide
  • Headquartered in Australia, Appen has a presence in the United States, United Kingdom, China, and the Philippines, supporting a range of industries with high-quality data annotation, collection, and model training services

Portfolio Lead, IT Security & Compliance

Baxter Technology
06.2017 - 01.2019
  • Company Overview: Baxter International Inc
  • Is a global healthcare company with a presence in over 100 countries, dedicated to advancing patient care through a range of innovative medical products and therapies
  • With a strong commitment to improving healthcare outcomes, Baxter operates across diverse regions, bringing essential medical advancements to hospitals and patients worldwide
  • Working directly under the leadership of the CISO, Identify and assess technology risk to enable the execution of the enterprise IT risk management strategy
  • Ensuring the company is compliant with NIST, HIPAA, GDPR, SOX and ISO27001 standards as required
  • Collaborated with global teams, with reporting teams located in India and Mexico, to drive security initiatives and ensure compliance with international standards
  • Lead role in delivery of IT audit assignments covering a range of Technology areas ensuring the provision of assurance in relation to the adequacy, effectiveness and sustainability of key risk management, control, and governance processes
  • Support in driving meaningful business change through the audit delivery process and champion continuous improvement of risk management and control across the Group in respect of the above functional areas
  • Knowledge of generally accepted accounting principles and the Institute of Internal Auditor’s Professional Practices Framework, IT governance, system security & infrastructure
  • Research information security trends, threat patterns, vulnerabilities, tools, and practices to drive the improvement and evolutions of existing IR SOC processes and technologies
  • Providing consultancy, technical guidance, expertise, solutioning and education on cyber security related framework, best practices, security intelligence, methodology etc
  • Identify legal, regulatory, and contractual requirements and associated organizational policies and standards related to information systems to determine their potential impact on business objectives
  • Baxter International Inc
  • Is a global healthcare company with a presence in over 100 countries, dedicated to advancing patient care through a range of innovative medical products and therapies
  • With a strong commitment to improving healthcare outcomes, Baxter operates across diverse regions, bringing essential medical advancements to hospitals and patients worldwide
  • Successfully transitioned the SOC from Dell Romania and built the inhouse 24/7 SOC in India
  • Contributed to the annual IT Security audit plan, travelling to 4 countries doing manufacturing plant audits

Head of IT Security & Controls

Ericsson
04.2012 - 10.2016
  • Company Overview: Ericsson is a global telecommunications and networking leader, with a footprint in over 180 countries
  • Known for pioneering innovations in mobile networks and 5G technology, Ericsson plays a pivotal role in connecting people and industries around the world, supporting digital transformation through cutting-edge communications solutions and services
  • Conceptualizing & Defining IT Security Strategies & plans aligned with Business Strategy; Data Center Management, Coordination with internal Stakeholders for Business Demands; Security Architecture, Specification Development, Budgeting, Execution Planning & Management; Security Consulting, Security Operations & Support
  • Adept at managing comprehensive review and analysis of organizational operations, performing financial analysis and modelling, and developing and implementing strategies and solutions that achieve consensus among key stakeholders across organization
  • Plan, lead and execute Information Security and Information systems related audits, reviews and assessments according to the defined IT Audit process including follow-up, reporting and effective closure
  • Coordinate with Internal Communications managers in spreading IT Security awareness by using several channels and methods including brief notes, newsletters, and other sources (talk shows and Quiz)
  • Specific subject matter expertise regarding technology application control disciplines and a solid business understanding of products, especially those associated with the Consumer business
  • Travelled across Europe performing Internal and Supplier IT Audits assisting the Corporate Audit team
  • Maintain a continuously develop business process, Information Security and IT and audit skills consistent with the company’s professional development requirements in line with Ericsson Group Management System (EGMS)
  • Ericsson is a global telecommunications and networking leader, with a footprint in over 180 countries
  • Known for pioneering innovations in mobile networks and 5G technology, Ericsson plays a pivotal role in connecting people and industries around the world, supporting digital transformation through cutting-edge communications solutions and services
  • Successfully transitioned the Supplier Security project from Sweden
  • Insourced Implementation management project from HP
  • Actively taken part in ST Ericsson Merger
  • Promoted as Senior Manager in 2014 and as Head of IT Security Access control India in Jan 2016
  • Won the Power Award for best performance in 2013
  • Nominated for the Ericsson Leadership program in 2014

Security and Compliance Lead

CGI India
07.2009 - 03.2012
  • Performs moderately complex audits related to business applications, technology management; project/program management; or supplier management in accordance with corporate methodologies and professional standards, including drafting of audit reports, presenting issues to the business and discussing practical solutions
  • Researched and analyzed methodologies to enhance productivity & utilize employees' time efficiently
  • Coordinated with team leaders to check the project status and deal with issues regarding project completion
  • Monitor day-to-day security patch using Patch link support to the client desktop and server environment
  • SPOC for Patch link servers the BELL, Canada Patch link and Deployment management
  • Responsible for preparing weekly status reports for senior management
  • Conducted clients' communication sessions to evaluate client needs & ensure timely project delivery
  • Coordinated & scheduled training programs to equip employees with advanced skills and thereby enhancing productivity
  • Implement global patch management policy and standards
  • Troubleshoot and resolve client issues in regard to security patch deployment
  • Successfully transitioned 3 projects from client BELL Canada to IGDC India
  • Promoted as Delivery Lead Oct 2011
  • Won the Best Performer Award in 2010

Information Security Specialist

Thomson Reuters
10.2006 - 07.2009
  • Implement global patch management policy and standards
  • Troubleshoot and resolve client issues in regard to security patch deployment
  • Part of Internal IT Audit team, taking care of ISO 27001-readiness program
  • Implemented and configured TREND MICRO OFFICE SCAN 10.0
  • Giving Support for the users on Blackberry
  • Supporting the Sap and the Citrix Applications
  • Monitor day-to-day security patch support to the client desktop and server environment
  • Create packages for remote deployment of missing patches for servers and systems
  • Regular monitoring of Surf Control rules and blocking the unwanted web access
  • Administration and configure the IPS (Intrusion Prevention System)
  • Configured and monitor the Bluecoat Proxy server
  • VPN Client-Side Configuration
  • Knowledge on DNS and DHCP
  • Promoted as Shift Lead in March & Information Security Specialist in Dec 2008
  • Successful migrated 1000+ users from one location to another during acquisition

IT Systems Engineer

HP and BIO
07.2004 - 10.2006

Education

Bachelor of Engineering - Computer And Information Sciences

VTU
2004

Skills

  • Information & Infrastructure Security
  • Leadership & Operational management
  • Cyber Strategy & Governance
  • Audit & Compliance
  • Transition and Transformation
  • Enterprise Risk Management

Certification

  • C|CISO (Certified Chief Information Security Officer)
  • CISM (Certified Information Security Manager)
  • CISA (Certified Information Systems Auditor)
  • CRISC (Certified in Risk and Information Systems Control)
  • PRINCE2 - Certified
  • ISO 27001:2013 Lead Auditor

References

References to be provided on request.

Timeline

Senior Director, IT Security & Compliance

Appen Limited
04.2019 - Current

Portfolio Lead, IT Security & Compliance

Baxter Technology
06.2017 - 01.2019

Head of IT Security & Controls

Ericsson
04.2012 - 10.2016

Security and Compliance Lead

CGI India
07.2009 - 03.2012

Information Security Specialist

Thomson Reuters
10.2006 - 07.2009

IT Systems Engineer

HP and BIO
07.2004 - 10.2006

Bachelor of Engineering - Computer And Information Sciences

VTU

Similar Profiles

  • Rishav Chakraborty

    Rishav ChakrabortyRishav Chakraborty

    Project Supervisor at Appen LimitedProject Supervisor at Appen Limited

    View Profile
  • MAHIN AHMED

    MAHIN AHMEDMAHIN AHMED

    GLOBAL DELIVERY CONTRIBUTOR at APPEN LIMITEDGLOBAL DELIVERY CONTRIBUTOR at APPEN LIMITED

    View Profile
  • Aditi Dubey

    Aditi DubeyAditi Dubey

    Search Engine Evaluator at Appen LimitedSearch Engine Evaluator at Appen Limited

    View Profile
Prashant Mohan Naik