top of page

Feb 2017 - December 2018

HUAWEI TECHNOLOGIES LTD, SENIOR MANAGER 

SECURITY COMPETENCE CENTER . QUALITY AND SECURITY

Security Competence center -  Huawei HQ China.
·   Individual assignment of developing global ISMS process, Global Security Policy, Data Security and Privacy plan, ISMS Toolkit, Checklists & templates for all the GSCs worldwide.
·   Perform research on guidelines and objectives on modern security approach.
·   Self-developed tools & Automation security risk assessment and audit.
·   Support GSC to implement Information Security Management System (ISO27001), Business Continuity Management System (ISO22301).
·   Train the security SPOCs from all GSCs on ISMS & BCMS for certification enablement.
·    Preparation and guidance for external audits and certification.
·    Support EU GSC for GDPR compliance.
·    Setting up benchmarks for IT, Network, SOC & Physical Security.
·    Enhance the efficiency of SIEM, Vulnerability management,
·    Prepare teams for 5 Types of Audits process
·   [Internal Assessment, Company Assessment, 3rd Party Audits, Customer Audits, Penetration Test.]
·    Set up audit criteria for ISMS, BCMS & regulatory compliance (GDPR, DTA) for offshoring model.
·    Perform Project level process compliance, Security audits, analyse gaps from audits and spot checks.
·    Prepare and mentor teams to comply with standards & process.
·    Prepare security awareness sessions, audit test results & work licenses.
·    Prepare & conduct governance sessions periodically.
·    Perform risk assessment and drive mitigation plan, provide consultation and solution to client / project requirements.
·    Implementation of Data Security & Privacy model and Client security requirements.
·    Project management for security implementation for new GSCs.
·    Project management for setting up Business continuity management model for GSCs.
·    Set up weekly standup call & Monthly security operations call with all global security officers (CSO).
·    Provide security value addition during client visits & presales security consulting.
·    Prepare security artefacts & awareness campaigns.

©2021 by Madhu M.Nair.

bottom of page