Senior Manager - Information Security
Genpact India Pvt Ltd.
Total years of experience :8 years, 7 Months
Spearheading evaluation, Proof of Concept (POC) and implementation of security tools such as AvePoint, DSPM - Wiz.io, CASB - Microsoft CASB (MDCA), Broadcom CloudSOC, Netskope, and DLP - ZScaler, Netskope, Proofpoint. Establishing governance for successful administration and compliance with industry standards such as GDPR, PCIDSS, and HIPAA.
Administration of DRM solution - Blackberry Workspace, managing user permissions and access for external collaboration along with tenant and license management. Conducting audits monitoring and reviewing application activities, ensuring compliance with security policies and integrity standards.
Planning and executing data discovery initiatives across data repositories including endpoint systems, servers, shared storages and cloud storages (O365, AWS, Salesforce, etc.). Ensuring adherence to compliance requirements like GDPR, PCIDSS, and DSR requests. Identify and explore solutions, plan and implement data discovery capabilities to meet organizational standards and follow data privacy regulations and standards.
Leading incident analysis team through escalation and investigations, managing violations with effective mitigation strategies while ensuring compliance with organization and industry standards. Conduct table top exercises, incident investigations for informed decision-making, user awareness, training and validation of implemented security measures. Also participating in internal and client data protection audits.
Collaboration within the Information Protection teams to monitor, secure, and regulate data usage across organization and externally. Received Gold Award from organization for active contribution to security initiatives and was also part of the team nominated for prestigious ISE East Summit and Awards in 2023 for addressing Microsoft 365 challenges while maintaining compliance.
Lead the incident response team to successfully deal with investigation and escalation process following playbook, along with reviewing and periodic update. Conducted Data Flow Analysis (DFA) and policy governance in collaboration with IT Security teams and different departments to identify critical information and potential data leakage points.
Symantec and Forcepoint DLP administration - Identified and implemented technical solutions creating/modifying DLP policies. Was responsible to perform optimization and improving performance of DLP by configuring to align with different requirements, following industry best practices. Developing customized policies, creation and installation of DLP endpoint agent packages, minimizing false positives with continuous analysis and fine tuning, improving agent performance and various required troubleshooting.
Web Traffic assessment using Forcepoint DLP and proxy solutions like Blue Coat and ZScaler was also part of the overall data protection responsibilities. Administered these tools, generating daily and monthly trend analysis reports, delivering feedback and insights to the team and higher management through dashboard reporting, progress updates, trend analysis, and incident reports actively contributing to data leakage prevention efforts.
Handling periodic tasks and other admin activities related to emails and mail flow on Messaging Gateway solution like Symantec Messaging Gateway (SMG). Ensuring system maintenance and troubleshooting, proactively managing application upgrades, etc. to keep the system running and updated.
Led the deployment, and administration of Symantec security products, including Data Loss Prevention (DLP), Symantec Messaging Gateway and Microsoft Exchange. Identified company-specific needs and executed technical implementations, crafting policies for Symantec DLP.
Performed root cause analysis of reported issues, facilitating timely corrections.
Collaborated with sales engineers during customer site visits to address technical inquiries.
Worked directly with clients in rollout and post-rollout stages, offering training and support for applications and systems.
Advised on software and hardware modifications to enhance performance and reduce latency.
Successfully integrated Symantec DLP with various security products, including Symantec Messaging Gateway, Proxy, and PGP Encryption.
Managed integration with email security products like Symantec Messaging Gateway (SMG) and Bluecoat proxy for comprehensive security.
Conducted daily activities in Active Directory (AD) in alignment with user requirements.
Completed training on Blackberry Watchdox, performing test implementations, and integrating Symantec DLP with Blackberry Watchdox.