Linkedin Wordpress
Hello, my name is

Shiva Kumar Kothwala

Cybersecurity Architect Expert

  • Shiva.kothwala@gmail.com
  • 516-547-5681
About me

A very passionate Cybersecurity architect helping organizations achieve best results through cost effective security solutions

My Journey

With a wealth of technical experience in the dynamic field of information security, I take pride in my proactive approach to safeguarding against cyber threats. Throughout my journey, I have dedicated myself to leveraging cutting-edge technologies, notably AI recently, while actively advocating for their integration within organizations. I invite you to join me on a guided tour through my experiences and insights.

 

I earned my bachelor’s degree in Electronics and Communication Engineering, immersing myself in a diverse range of subjects, including Pulse and Digital Circuits, Electronic Devices and Circuits, VLSI design, Wave Guides, and Signal and Systems. During that period, one of my favorite reads was “Signal and Systems” by Simon Haykin, delving into modulation techniques such as ASK, PSK, and more.

While I initially intended to pursue a career in VLSI design due to my proficiency in VHDL and Verilog, my journey took an unexpected turn. Upon graduating, I found myself drawn to Computer Science and chose to pursue a master’s degree. It was during this time that I encountered Cybersecurity for the first time, and the experience captivated me completely. I developed a profound passion for the field, leading me to commit myself wholeheartedly to the dynamic and ever-evolving realm of Cybersecurity.

I began my journey as a security engineer, engaging in a spectrum of responsibilities that ranged from conducting vulnerability scans and fortifying systems, encompassing Linux, Unix, and Solaris platforms. I adeptly installed both proprietary and open-source security products. Additionally, I demonstrated expertise in mass deploying Linux servers through kickstart installations, configuring SAN storage, and mounting NAS. In the transformative year of 2013, I seized the opportunity to extend my skills to cloud computing, venturing into both AWS and OpenStack.

Throughout my professional journey, I have undertaken diverse projects of varying types and complexities, including pivotal high-visibility initiatives. My role has consistently involved conducting intricate security risk assessments and offering strategic guidance to teams. As a leader, my work style has garnered significant appreciation. Our team is dedicated to delivering services that not only prioritize cost-effective solutions and elevate customer satisfaction but also mitigate residual risk to an acceptable level.

The solutions we craft not only align with compliance and non-compliance requirements but also play a pivotal role in substantially reducing the total cost of ownership for implemented controls. Our approach is rooted in the principles of Defense-in-Depth and Zero-Trust architecture, ensuring that the solutions we provide are comprehensive and aligned with the evolving needs of our customers.

Read More

What I do

From understanding requirements, designing a security architecture blueprint, and delivering the final product, I do everything that falls in between these lines.

Cloud Security

content needed to be updated

Software security

content needed to be updated

App Security

content needed to be updated

Skills

Leadership
Responsibility, Motivation, Empathy, Good behaviors, Communication, Problem Solving, Innovation, Strategy,
Cloud Security
Azure, GCP, AWS, OCI, OpenStack
Compliance
HIPAA, PCI, SOC 2, SOX, FTC, CCPA, EU-GDPR, GLBA
Frameworks
ISO 27000 Series, NIST 800-53, NIST 800-210, NIST CSF, HITRUST CSF, FedRAMP
Technologies
Robotic Process Automation (RPA), AI, Blockchain, IoT, Cloud Computing, SOA, Containerization
Vulnerability Management
MSB/Policy Compliance Scans (CIS Benchmark), Vulnerability Scans (CVE), Threat Modelling
Software Security
SAST, DAST, IAST, Open Source Component Scanning, Container Scanning, API security, DevSecOps
Data Protection
CASB, DLP, FIM, Encryption & Key Management, SSL Certificate Management, Data discovery, Endpoint Protection
Network Security
Zero Trust, DDoS Protection, WAF, Botnet Protection, IDS/IPS, Private connections, VPN, Back Bone networking
Other
SIEM, SOAR, Mobile Device Management (MDM), SMB/CIFS Security, NFS /w Kerberos, POS security, Open Source

My Experience

2022 - Present

CVS Health

Principal Security Architect

Leading a team of highly technical security architects and security risk advisors conducting technical security risk assessments and providing valuable security architecture solutions.

2017-2022

Netrovert Software Inc 

(Client: CVS Health)

Sr security Architect

Led key cloud security initiatives and a trusted security advisor to executive leadership

2014 - 2017

Netrovert Software Inc

(Client: CVS Health)

Security Architect

Undertook a big effort and bought large number of IT assets secure and compliant while simultaneously bringing down both Capex and Opex costs

2013-2014

Netrovert Software Inc

Security Architect Engineer

Helped different clients meet security requirements while also working on open source cloud technologies and big data technologies for other needs

Portfolio