Dmitry Kulshitsky
About
Dmitry Kulshitsky is from San Francisco Bay Area. Dmitry works in the following industries: "Information Technology and Services". Dmitry is currently Sr Manager, InfoSec at Tesla, located in Fremont, California. In Dmitry's previous role as a Sr Manager, Security Engineering at Workday, Dmitry worked in Pleasanton, California until Feb 2019. Prior to joining Workday, Dmitry was a Manager, Security Engineering at Workday and held the position of Manager, Security Engineering at Pleasanton, CA, USA. Prior to that, Dmitry was a Group Manager - Operations and Security at carsales.com.au, based in Melbourne, Australia from Sep 2015 to Jul 2016. Dmitry started working as Development Operations and Security Manager at carsales.com.au in Melbourne, Australia in May 2011. From Jul 2008 to May 2011, Dmitry was Security Architect at SEEK, based in Melbourne, Australia. Prior to that, Dmitry was a Systems Engineer / Senior Systems Engineer at SEEK, based in Melbourne, Australia from Feb 2003 to Jul 2008. Dmitry started working as Manager of the Software Development and Support department at Granit Bank in Moscow, Russian Federation in Jul 2002.
Go to finalscout.com and type Dmitry Kulshitsky's name into the search box for a free email address. FinalScout is a professional database with more than 500 million business professionals and 200 million company executives.
Dmitry Kulshitsky's current jobs
Protecting the machine that builds the machines. Vulnerability management, detection and incident response. Splunk + other security tools. Leading company-wide security initiatives.
Dmitry Kulshitsky's past jobs
• Lead, mentor, and manage high-performance engineering teams: - Cloud security team with the focus on Workday Private and public cloud defenses, software defined networks and firewalls, vulnerability scans - Enterprise security responsible for Endpoint protection, vulnerability scans, various technical security reviews, system hardening - Network security responsible for traditional and NextGen firewalls, DDoS protection, network security architecture • Leading engineering efforts for the key Security Engineering team initiatives • Oversee technical security relationships with major IT and security vendors • Work closely with IT, Product, Legal, and INF Engineering teams on scoping, executing, and completing joint programs • Design and implement security capabilities for both corporate and product sides of the business • Perform proactive security architecture and configuration assessments across various parts of Workday infrastructure • Driving down security risks across multiple domains Starting February 2018: • Member of the Workday Architecture Review Board. • Leading security engineering teams: - Splunk team (deploys and manages the enterprise SIEM and related tools ecosystem, working closely with SOC on alerting and rules turning, including tier 1 SOC automation). Development and adoption of the new Splunk use cases to protect Workday systems. - SRE (security reliability engineering) – this team’s main focus is building new and operating existing Security tools that protect Workday data and infrastructure, ensuring the availability, reliability, performance. - Enterprise (Corporate) security • Create, manage, and execute a roadmap for security engineering projects • Work closely with Research and Testing team to determine requirements for future development projects
Cloud and Enterprise security engineering teams
• Lead, mentor, and manage a team of engineers responsible for IT operations (DevOps), database technologies (DBAs), and Information Security across the Carsales group. Our team supports various platforms and technological components including Microsoft .Net, Java, SQL server, Oracle, AWS, Azure, Akamai etc • Chair Carsales "Trust and Security Decision committee". Generally responsible for security governance at Carsales (application security, infrastructure security, fraud etc) • Maintain application security guidelines
Led the team of engineers responsible for IT Operations and information security across the Carsales group, delivering 24x7 IT services through proactive management, automation and support. Key Responsibilities - DevOps • Managing delivery of IT services (applications, production infrastructure and services) to the specific requirements of diverse business groups. Managing Carsales production environment. • Team leadership, mentoring, performance management • Building and maintaining effective relationships with local and global vendors and service providers • Support technical teams and project streams (production environment changes, code deployments) • Identify infrastructure requirements to support upgrade projects, improvements, and other enhancements • Monitoring, alerting, capacity planning • Work with broader development teams/streams to establish service level agreements • Ensuring compliance and achieving appropriate standards in regulatory, internal and external (PWC) audits Key Responsibilities - Security • Conduct security risk assessments, design security solutions for both new and existing environments and develop treatment strategies • Implement and manage scheduled Security audits, reporting the results to Carsales management and identifying cost effective options to ensure Carsales security targets are achieved • Recommend and coordinate the implementation of information security controls to support and enforce information security policies • Participate in the creation of enterprise security documents • Conduct IT Disaster Recovery and Business Continuity Planning reviews, and work to ensure options/costs are identified and presented to senior management • Perform day-to-day security management activities, including responding to user problems, rectifying faults, and identifying training requirements across the Carsales employee base • Maintain up-to-date baselines for the secure configuration and operations of all in-place devices
• Work along with the Solution Architects and project tech leads on the architecture, design, implementation, testing, and management of information security solutions. • Provide high-level security consultancy to business stakeholders during all phases of the project development lifecycle. • Provide review and oversight of security architectural decisions, artefacts and analysis performed by solution architects. All security issues identified and risks/mitigation presented to the business before go-live of each project. Translating business requirements into strategic security solutions. • Specify and review testing, validation and deployment plans and methodologies from the security perspective. Enhancing SEEK's system development lifecycle and coding standards to respond to new threats and technologies. • Providing leadership and consulting on IT security issues throughout the company. • Hands-on activities such as internal penetration testing, log parsing and analysis, scripting/programming, spam/fraud reports analysis, monitoring, alerting about any significant threats. • Provide support to the Infrastructure Services team focusing on the security aspects of SEEK WAN, LAN and internal systems design and implementations (E-mail, AD, Citrix, VPN, Firewalls, Antivirus, secure file transfer etc) • Work with the 3rd parties/vendors in the areas of penetration testing, spam blocking, various antifraud solutions. Communicating vulnerabilities to the business stakeholders, prioritisation and triage processes.
• Analysis, Design, Security, Implementation and Management of the core SEEK systems. • A contact point for business enquiries into the outbound communication requirements. • Supporting Dev/QA teams throughout the project life cycle. Providing advice on infrastructure and security matters. • Working with the 3rd party penetration testing companies. Analysis, prioritisation, and presentation of the identified security risks. Remediation activities. • Consulting Seek Learning development team providing advice and guidance on security matters • Achievements - Solved the CPU spikes problem. - Consistently exceeding 99.96% SLA. - Migrated SEEK infrastructure to the new datacentres twice. This resulted in significant improvements in availability figures and reduced the number of on-call incidents. - Introduced and implemented several changes based on previous experience that resulted in further availability improvements (eliminated several single points of failure) - Introduced a method of cloning physical production servers which was 3 times faster. - Led the infrastructure part of the SQL 2005 Cluster project attached to the HP EVA6000 SAN. Independent review done my Microsoft concluded that the delivered configuration "could be used as a template for all future installations". - Proposed, initiated, and delivered (acting both as a systems engineer and a project manager) a e-mail disablement project (based on IronPort bounce logs). This project solved a long-standing problem of managing bounces and unsubscribing inactive e-mail addresses. - SEEK Commercial infrastructure design and implementation on short notice and on reduced budget to meet the needs of the new business, as well as their preferred spend profile - Identified and presented 15 security improvements that could have been actioned in short/medium term to mitigate immediate risks. Many of these issues were subsequently identified and recommended by a security consultancy firm.
Managed a small team of software developers and IT support specialists. Started several initiatives after the promotion to this role. Resigned due to migrating to Australia