Vishal Malhotra
Senior Security Architect
Sydney
Summary
Ambitious Security Architect committed to formulating innovative solutions to challenges while optimizing processes. Having 22 years of diverse international experience across Australia, the UK, the UAE, and India. Recognized for agility and the ability to adapt to business changes, consistently delivering high-quality solutions that align with organizational objectives, thereby demonstrating a commitment to ongoing success.
Overview
22
22
years of professional experience
Work History
Senior Cyber Security Advisor
Origin Energy
11.2023 - 5 2024
- Defined and implemented security requirements for various projects, ensuring robust protection and compliance.
- Performed comprehensive evaluations of both On-premises and Cloud-based workloads, including those on AWS and Azure, to identify potential vulnerabilities and areas for improvement.
- Offered valuable insights and contributions to development of security patterns and guardrails, whether internally crafted or in partnership with collaborators. These efforts encompassed creation of SaaS Security Pattern, AWS EKS Security Pattern, and API Security Pattern.
- Served as subject matter expert and resource for both technical and non-technical staff on issues related to cybersecurity best practices.
Cyber Security Architect
TAL (Client of Razilio)
12.2022 - 11.2023
- Executed comprehensive cyber threat assessments for both On-premises and Azure cloud workloads, encompassing Kubernetes, App services, and intricate architecture integrations.
- Contributed to architectural design of Azure Cloud Hub Spoke Network Topology by providing valuable input, conducting thorough reviews, and assessing its robustness.
- Defined and implemented security specifications for Cloud Guardrails, tailored for services such as Azure Front Door and Static Web Apps.
- Assessed emerging technologies to determine their suitability for incorporation into upcoming security architecture designs. Conducted in-depth evaluations of security solutions offered by vendors and developed comprehensive solution architectures for API Security and Email Security services.
Security Architect
Australian Super
02.2022 - 11.2022
- Collaborated with vertical teams and provided security requirements to architecture and design documents confirming secure-by-design principles.
- Determined protection needs of information systems and networks and documented them appropriately.
- Ensured that developed systems and architectures were consistent with organization's cybersecurity architecture requirements.
Security Architect
AGL Energy
11.2020 - 02.2022
- Evaluated and endorsed designs, ensuring that solutions adhere to security standards and patterns.
- Handled exemptions and risk management for solutions and designs unable to adhere to cyber guardrails.
- Recognized opportunities to enhance and standardize technology for heightened protection while aligning with business objectives.
- Provided technical guidance on best practices for securely deploying cloud-based services and infrastructure.
Senior Security Architect
Westpac Banking Group (EY Client)
02.2018 - 09.2019
- Collaborated closely with project teams, offering security design and architecture solutions to achieve business objectives.
- Delivered technical security consultancy across various disciplines, IT environments, business units, and management levels.
- Participated in development of solution and infrastructure designs, conducted reviews and certifications of projects, and evaluated solution architectures to guarantee implementation of appropriate security controls and compliance with technology standards.
- Involved in Security Domain Architecture to help mitigate risks and address architectural implementation issues.
Lead Consultant
Wipro Ltd
02.2007 - 10.2017
- During tenure at Wipro, role was primarily focused on consulting, involving close collaboration with clients to achieve strategic cyber-secure outcomes.
- Served as Security Consultant with NRMA in Sydney and as Security Architect with Lloyds Banking Group and Aviva in United Kingdom. NRMA collaborated with Wipro to bolster security in alignment with industry standards, which included design of security policies and governance frameworks. Within Aviva, worked as part of Security Architecture, Consultancy, and Design team, conducting technical risk assessments and advising on adoption of security controls. Managed AWS Cloud risks and contributed to standardization of Security Advisory services delivery. At Lloyds Banking Group, provided comprehensive security consultancy, ensuring that technology solutions met both business needs and security requirements.
- As Lead consultant, delivered security advisory and assurance services to diverse portfolio of organizations, including Aircel, Bharti Airtel, Genpact, Alcatel Lucent, Punjab National Bank, and YL eServices in India. Primary duties involved conducting exhaustive security assessments, ensuring compliance with key standards such as ISO 27001 and PCI-DSS.
Network Security Engineer
Orange Business Services
07.2005 - 01.2007
- Reviewed Information Security Controls, leaded Network Security Risk assessments, conducted System Security audits.
- Provided Security Awareness training, and updated Security procedures and guidelines for operational efficiency.
- Enhanced network security by implementing advanced firewall configurations and intrusion detection systems
Security Specialist
IBM Global Services
05.2004 - 07.2005
- Participated in efforts to enhance security of Bharti Airtel network environment, client of IBM.
- Undertook evaluations of various security policies, including Password, Network, OS, Backup, and Physical Access policies. Additionally, administered Checkpoint firewalls (hosted on Solaris), Cisco Pix firewalls, and Real Secure NIDS throughout Bharti Airtel.
- Addressed identified vulnerabilities promptly by collaborating with cross-functional teams for prompt resolution of issues.
Network Engineer
Microland Ltd
05.2002 - 04.2004
- Collaborated with Teletech Services and Minervatelelink (Micorland customers), managing user accounts, implementing policies, and overseeing servers.
- Oversaw network infrastructure setup, implemented backups, and maintained antivirus protection. Additionally, configured networking equipment such as Cisco PIX firewall, routers, and Layer 3 Switches
- Analysed and produced recommendations on continuous network improvements.
Skills
Secure Architecture and Design
Accomplishments
- From the Head of Technology at Australian Super
- SuperTech Individual Award Winner (Chosen amongst a team of about 50 Security Architects) - Recognition from Westpac Group CIO and CTO
Timeline
Senior Cyber Security Advisor
Origin Energy
11.2023 - 5 2024
Cyber Security Architect
TAL (Client of Razilio)
12.2022 - 11.2023
Security Architect
Australian Super
02.2022 - 11.2022
Security Architect
AGL Energy
11.2020 - 02.2022
Senior Security Architect
Westpac Banking Group (EY Client)
02.2018 - 09.2019
Lead Consultant
Wipro Ltd
02.2007 - 10.2017
Network Security Engineer
Orange Business Services
07.2005 - 01.2007
Security Specialist
IBM Global Services
05.2004 - 07.2005
Network Engineer
Microland Ltd
05.2002 - 04.2004
Education And Certifications
- Master's in Computer Applications (MCA)
- Microsoft Azure Security Technologies - AZ 500 (2022)
- Certified Information Systems Security Professional - CISSP (2018)
- Certified Cloud Security Professional - CCSP (2018)
- Certified Information Security Manager - CISM (2019)
- Microsoft Security, Compliance and Identity Fundamentals- SC 900 (2022)
- AWS Certified Cloud Practitioner - CLF-C01 (2022)
- Microsoft Certified Azure Fundamentals - AZ 900 (2020)
- ISO27001: 2005 ISMS Lead Auditor and Implementer
- Certified Payment Card Industry Security Implementer (CPISI)
- Certified Ethical Hacker (CEH 4.0)
- Checkpoint Certified Security Administrator - CCSA (156-210.4)
- Cisco Certified Network Associate - CCNA (640-607)
- Microsoft Certified Systems Engineer - MCSE (2000)
Key Projects
Origin Energy
1. Security Requirements for Mobile Device Enrolment: Provided comprehensive security requirements for the enrolment of shared mobile devices into Microsoft Intune. This initiative ensured secure access and data protection across all shared devices.
2. UiPath Test Automation Assessment: Conducted a thorough assessment of UiPath test automation, covering both on-premise and cloud service. This evaluation ensured the robustness and efficiency of test automation processes.
3. Third-Party Email Validation Tool Assessment: Assessed a third-party email validation tool, with a keen focus on ensuring the confidentiality and integrity of customer data.This assessment ensured that customer data remained secure while improving the accuracy of email communications.
TAL Australia
1. Security Enhancement: Contributed security insights, performed in-depth reviews, and evaluated the structure of the Azure Cloud Hub Spoke Network Topology. Additionally, offered security guidance for Developer Access to the Cloud, ensuring operations are both secure and efficient.
2. Development of New Security Patterns: Contributed strategic security insights to the development of Cloud Guardrails, including Azure Front Door and Static Web Apps. This initiative fortified our cloud security measures.
3. Security Product Evaluation and Solution Design: Evaluated top-tier security products and designed innovative solutions for API Security and Email Security. This role was pivotal in enhancing our defense mechanisms and ensuring the safe transmission of information.
Australian Super
1. Dynamics CRM (On-premises) to Dynamics 365 (Cloud) Migration: As a Security Architect within Australian Super, I worked towards providing requirements around Conditional Access Policies, Identity protection, Sentinel onboarding, Information protection and data sensitivity labels and collaborated with Cloud and Infrastructure teams to ensure a secure build. I also contributed towards the review of Infrastructure and Application designs, Config review of Azure subscriptions and Azure resources like SQL MI and Storage Accounts.
2. Forms Automation : As Australian Super looks to enhance the experience for its members and advisors, as a Security Architect, I worked with technology and business stakeholders to complete security risk assessments of proposed architecture and integrations, and provide inputs around the design and architecture of forms and application architecture.
AGL Energy
1. Zero Trust Strategy: Worked with Microsoft and AGL stakeholders to devise a Zero Trust Strategy for AGL based on Microsoft Zero Trust Principles - Verify explicitly, Use Least Privilege Access and Assume Breach. The strategy included guardrails around Identities, Devices, Networks, Data, Infrastructure and Applications.
2. Azure Landing Zone: With the AGL de-merger, there was a requirement to have a separate landing zone for the newly formed ‘Accel Energy’. Worked with Cloud Architects to assess and review the security architecture of the proposed Azure Landing Zone.
3. Azure Virtual Desktop solution :AGL decided to move from Citrix On-Premises to the Azure AVD and as Security Architect I provided inputs around the security architecture of the solution.
4. SaaS Assessment : Completed a few assessments around securing SaaS Solutions. The key one was ‘Call Center as a Service' in which I worked with Architects of AGL vendors ensuring that the security was addressed throughout the project lifecycle.
5. Network Integration Patterns like PaaS to PaaS, External to IaaS: Delivered blueprint patterns together with Cloud and Network Architects for immediate consumption of technology teams.
6. Cloud Migration: I reviewed and approved designs as the only Security stakeholder within the Design Authority of the AGL helping project teams with the secure lift and shift of on-premise applications to Azure Public Cloud.
7. Kubernetes adoption: As AGL business and IT decided to move from App Services to Azure Kubernetes service, I completed threat modelling and provided inputs towards patterns around Kubernetes adoption.
Westpac Banking Group
1. Azure:
PaaS: Evaluated a business solution that revolves around real-time event processing, with an emphasis on identifying customer journeys and events to extract actionable insights. This involved the design and evaluation of workloads using services such as Azure Kubernetes Service, PostgreSQL, Cosmos DB, Redis Cache, Event Hub, APIM, Security Centre, Azure Monitor, Azure Policy, Azure Key Vault, DevOps Services, and Application Gateway.
IaaS: Conducted an assessment of a Data-Driven Experience Platform (DDEP) solution for Westpac customers enabling them to analyze their payments in innovative ways. This included the design and evaluation of workloads using services like Azure Active Directory, Virtual Machines, Blob, Azure Data Lake Service, Recovery Services Vault, Azure Monitor, Security Centre, Azure Policy, Azure Key Vault, DevOps Services, Application Gateway, and Express Route.
SaaS: Reviewed vendor solutions and capabilities, contributing valuable insights to the design process.
2. AWS (SaaS): Assessed a call recording solution leveraging services like AWS Direct Connect, S3, IAM, EC2, AWS Aurora, AWS Security Groups, KMS, Cloud trail etc.
3. ATM Security: Ensured a secure build around Westpac ATMs by leveraging the security offerings of Vynamic Security Solutions.
4. Regulatory Reporting Solutions: Participated in major projects directly linked to regulatory reporting, including AUSkey Replacement and Axiom.
Similar Profiles
Sanjeet KaurSanjeet Kaur
Inbound Outbound Customer Service Representative at Origin EnergyInbound Outbound Customer Service Representative at Origin Energy
Renjei PadrigoRenjei Padrigo
Energy Specialist at Origin EnergyEnergy Specialist at Origin Energy
Jalal MuhammadJalal Muhammad
Commercial & Industrial Account Manager at Origin EnergyCommercial & Industrial Account Manager at Origin Energy
MITCHELL REBERGERMITCHELL REBERGER
Origin LPG (reginal Manager) at Origin EnergyOrigin LPG (reginal Manager) at Origin Energy
Pujari UthpalaPujari Uthpala
Lead Consultant at Capgemini, AustraliaLead Consultant at Capgemini, Australia