Jody Venkatesan, CISA, CISM


Mr. Venkatesan has extensive experience managing and directing system-consulting engagements for the Holloway Information Systems Consulting team. Mr. Venkatesan is an experienced federal information systems security consultant and auditor. His over fifteen years of professional management responsibilities have included numerous reviews of major data centers in the federal government and Fortune 500 organizations, systems development project reviews, and information systems security reviews. He is an expert in the field of information security. He is very knowledgeable in each aspect of the standards and requirements outlined in the Federal Information Security Management Act of 2002 (FISMA), National Institute of Standards and Technology (NIST) Special Publication (SP) 800 Series, and the General Accountability Office's Federal Information System Controls Audit Manual (FISCAM).

As the Director of Information Systems Consulting for Holloway, Mr. Venkatesan is extensively involved in the planning of each engagement and monitoring its progress for timeliness and technical compliance with information security standards. In addition, he is responsible for the enterprise governance of; systems architecture, network security, operating systems, databases, application controls (e.g., PeopleSoft and SAP), systems changes controls, telecommunications, systems general controls, and systems business process re-engineering initiatives.

Most recently, Mr. Venkatesan managed SAS 70 and internal control examinations of systems including twenty plus SAS 70 reviews for the Centers for Medicare and Medicaid Services (CMS) from 2002 - 2007. In the last several years, he has managed financial systems reviews that process transactions in excess of one billion dollars daily. Each of these reviews has included the analysis of systems controls at the application, database and network levels. As an IT professional, he has extensive experience with implementing systems architecture models. He is very familiar the Federal Enterprise Architecture Framework (FEAF). From 2005- 2007, Mr. Venkatesan designed and implemented several department-wide IT A-123 initiatives for general and application level security in the federal government. Each of the internal controls projects considered the federal IT security legislation, OMB executive guidance, NIST technical guidance and Departmental policies.

Additionally, Mr. Venkatesan is a dynamic lecturer on current IT security topics. In the past he has been a presenter to the Information Systems Audit and Control Association (ISACA) National Capital Area Chapter (NACA) on several occasions on topics such as Federal Information Management Act (FISMA), Certification and Accreditation (C&A) and Business Continuity Planning.