Varun Nair, CISSP, CSSLP, CEH

Varun Nair, CISSP, CSSLP, CEH

Security Consultant

London, United Kingdom

Past

see less...

6 more...

Education
  • DA-IICT
  • Gujarat University
  • Prakash Higher Secondary School
Recommended
Varun has 12 recommendations 12 people have recommended Varun
Connections
331 connections
Industry
Computer & Network Security

Varun Nair, CISSP, CSSLP, CEH’s Summary

Information security professional with more than 5 years of experience in security architecture, risk analysis and management, application security, network security, vulnerability assessments, penetration testing, secure software development and compliance. Has worked for multiple clients including banks, insurance companies, government agencies, conglomerates and internal company projects.

Currently holds the CISSP, CSSLP and CEH certifications. Has passed the CISM exam and expects to get certified soon as soon as the endorsement process is completed.

Varun Nair, CISSP, CSSLP, CEH’s Specialties:

Security architecture, risk analysis and management, application security, network security, vulnerability assessments, penetration testing, secure software development and compliance.

Varun Nair, CISSP, CSSLP, CEH’s Experience

  • Security & Privacy Consultant

    IBM Global Business Services

    (Public Company; IBM; Information Technology and Services industry)

    August 2009January 2010 (6 months)

  • Embedded Security Expert (Information Security Consultant)

    Tata Consultancy Services

    (Public Company; Information Technology and Services industry)

    January 2009August 2009 (8 months)

    I am the “embedded” security expert for a large development team consisting of 4 sub-teams, about 15 project managers and approximately 140+ developers and other members. My job consists of primarily the following functions:
    (a) Security evangelism
    (b) Guidance for secure application development
    (c) Incident handling assistance
    (d) Third-party (supplier/vendor) Security Reviews
    (e) Security evaluations of new technologies and tools

  • Security Architect and Project Leader (Information Security Consultant)

    Tata Consultancy Services

    (Public Company; Information Technology and Services industry)

    April 2008December 2008 (9 months)

    I Was one of the primary security architects and project leaders on the security team of my client company responsible for:
    (a) Secure SDLC support
    (b) Defense in depth (network, application, OS, processes, people etc.) security assessments
    (c) Security tool evaluations
    (d) Incident handling assistance
    (e) Security policy reviews and formulation
    (f) Third-party (supplier) security reviews

  • Project Leader – Special Projects in Security (Information Security Consultant)

    Tata Consultancy Services

    (Public Company; Information Technology and Services industry)

    April 2007March 2008 (1 year )

    Was responsible for:
    (a) Security research
    (b) Security tool evaluations
    (c) Network security architecture
    (d) Application security architecture
    (e) Secure SDLC support

  • Application Vulnerability Assessments Service Leader (Information Security Consultant)

    Tata Consultancy Services

    (Public Company; Information Technology and Services industry)

    October 2006March 2007 (6 months)

    Was the customer-facing service leader for the application vulnerability assessment service of the Application Security Center of Excellence in the client’s company. I was responsible for:
    (a) Application vulnerability assessments
    (b) Automated application vulnerability scans
    (c) Security tool evaluations

  • Information Security Analyst

    Tata Consultancy Services

    (Public Company; Information Technology and Services industry)

    February 2006September 2006 (8 months)

    I was a member of the GCP-IRM (Global Consulting Practice – Information Risk Management) team of TCS. I worked on a number of short-term and medium-term security projects for various Indian companies, foreign companies as well as the TCS CSO (Chief Security Officer). Primary responsibilities included:
    (a) Network vulnerability assessments and penetration testing
    (b) Network security architecture
    (c) Application vulnerability assessments and penetration testing
    (d) Application security architecture
    (e) Security source code reviews
    (f) Security policy formulation

  • Programmer / Researcher

    Tata Consultancy Services

    (Public Company; Information Technology and Services industry)

    August 2004January 2006 (1 year 6 months)

    Was a member of the Software R&D wing of TCS (TRDDC) that focused on software (tools and methodologies) to make software better and faster.

  • Intern Programmer

    Net-Square

    (Privately Held; Computer & Network Security industry)

    January 2004April 2004 (4 months)

    Worked on developing Blackout, a host-based anti-nmap tool that would mislead nmap's OS fingerprinting capability.

  • Teaching Assistant (TA)

    DA-IICT

    (Educational Institution; Higher Education industry)

    August 2002December 2002 (5 months)

    Teaching assistant for DBMS course offered to 2nd year BTech undergraduate students.

Varun Nair, CISSP, CSSLP, CEH’s Education

  • DA-IICT

    MS (IT) , 20022004

  • Gujarat University

    B.C.A (Bachelors of Computer Applications) , 19992002

  • Prakash Higher Secondary School

Additional Information

Varun Nair, CISSP, CSSLP, CEH’s Interests:

Information security, web technologies, web design, usability, economics, politics, sociology, new media

Varun Nair, CISSP, CSSLP, CEH’s Groups:

  •    Certified Information Systems Security Professionals (CISSP)
  •    The Greater IBM Connection: IBM's alumni program for past and present IBM employees
  •    GE (General Electric)
  •    Open Web Application Security Project (OWASP)
  •    Information Security Community
  •    Delhi Bloggers Bloc
  •    IBM India
  •    Global Security Professional
  •    IBM co/ex workers independent group
  •    IBMers
  •    2012 London Olympics & Paralympics
  •    The Web Application Security Consortium
  •    OWASP Delhi Chapter- Active
  •    OWASP Leaders India
  •    (CEH) Certified Ethical Hacker
  •    DAIICT- Universal
  •    OWASP India
  •    OWASP Bangalore
  •    OWASP Bangalore Chapter
  •    CompliancEX
  •    Penetration Testing Jobs
  •    UK Information Security Professionals Group
  •    MS(IT) @ DAIICT
  •    Information Security Jobs UK
  •    InfoSec Careers
  •    Syngress
  •    IBM GLOBAL SERVICES INDIA ALUMNI
  •    IBMers - India
  •    Digital Media Technologies
  •    UK InfoSec Contractors & Consultants
  •    INDIA CISSP
  •    OWASP London
  •    SC Magazine UK
  •    IBM Security
  •    Cloud Security Alliance
  •    Institute for Certified Application Security Specialist (ASS)
  •    India - Information Security Community
  •    Information Security Review
  •    null0x00
  •    WAST - Web Application Security Testing
  •    InfoSec Careers UK
  •    Friends of the London Olympics - SECURITY GROUP
  •    iRisk Information Risk Network

Varun Nair, CISSP, CSSLP, CEH’s Contact Settings

Interested In:

  • career opportunities
  • consulting offers
  • new ventures
  • job inquiries
  • expertise requests
  • business deals
  • reference requests
  • getting back in touch

View Full Profile

Public profile powered by: LinkedIn

Create a public profile: Sign In or Join Now

View Varun Nair, CISSP, CSSLP, CEH’s full profile:

  • See who you and Varun Nair, CISSP, CSSLP, CEH know in common
  • Get introduced to Varun Nair, CISSP, CSSLP, CEH
  • Contact Varun Nair, CISSP, CSSLP, CEH directly

View Full Profile