User:Vishal Asthana

Information Security began emerging as a formal field of study by the time I had already completed MSEE (USC) and joined corporate US. Early 2002 is when got to taste data and network security and policy-making aspects in real life. It was one of the deliverables of my last job there. Loved it and wanted more! Personal reasons caused me to relocate back to India in early-2006.

Since then, corporate India has offered roles that have helped sharpen my existing Information Security skills and learn and develop new ones esp. application/software security, auditing/compliance and business continuity.

My work journey has given me an opportunity to work with firms of all sizes. Symantec, Cisco and Wipro were the large enterprises. Ford Graphics and iPolicy Networks were the mid-sized ones. Current employer (Security Compass) is an established Canadian InfoSec start-up and am leading their India operations. I have also been fortunate to have worked in both environments - product development as well as consulting/services.

At a technical level, this has helped develop the following skills: • Accounting for non-technical factors to arrive at the correct risk posture. • Gaining reasonable expertise in implementation of secure SDLC programs and Agile security • Presenting research/work at international and national conferences. • Leading virtual/remote teams. • Publishing a whitepaper, magazine articles, blogs on specific aspects for the benefit of the larger community.

From a soft skills perspective, the roles have helped me develop the following: • Knack for identifying research-related collaboration avenues. • The skill of effective business case development. • The art of interviewing. • The craft of mentoring.

Excited about the future of InfoSec and the possibility to remain a part at an always increasing level of leadership!