Associate Vice President
Standard Chartered GBS
Total years of experience :20 years, 1 Months
Support as the First Line of Defense for all Risk and Control activities for the Security Technology Services (STS) team and align the Operational risk management approach in function/domain to the Risk Management Framework and oversee its effective implementation within GBS
•Proactively manage the domain operational risk profile: Risk Acceptances and associated actions. Processes and associated process failures and KRIs, policies and procedures to ensure that all commitments and timelines are met.
•Drive the implementation of Information, Cyber Security Risk Framework (ICS). Work closely with Group 1st and 2nd Lines on ICS controls.
•Drive/oversee STS-wide SWIFT attestation work and deliverables. Activities include finalization of Control and Implementation description, monthly reporting of metrics, completing QA on the RFIs for final attestation.
•Define standards for STS eg. RACI for Risk Assessment Papers, templates, risk committee write ups/reporting.
•Monitor the monthly KRI/KCI and take necessary action. Complete Control Self-assessment Testing and publish the monthly report.
•Provide risk information/updates to functions/domains Operational Risk Committee as appropriate.
•Conduct risk assessment on all new projects that are undertaken to improve the overall process within STS
Risk Management & Compliance,
IRM Leader - Information Security, Risk Management & Compliance,
, Program Head (
Patni Computer Systems provides solutions to clients' business challenges by leveraging its technology and process capability, my role is as follows:
•Managing Business Continuity for key BFSI accounts, work involves performing RA, BIA, implementation and testing.
•Lead the Internal Audit function of Patni Computer Systems. End to End audit role for the entire Outsourcing services division of Patni. i.e. Audit planning to Audit closure
•Lead the initiative of ISO 27001:2005 recertification for all the locations of Patni Computer Systems at Noida and Cambridge, US.
•Lead SAS 70 (SSAE16) Type II assessment for all ITGC controls without any qualification for two continuous years
•Designed measures and metrics plan for ISMS and responsible for publishing monthly dashboards to measure the effectiveness of Information Security.
Awards & Recognitions
•Annual Best Team Award 2007
Managing ITGC controls and complying with SAS 70 requirements (SSAE 16)
•Manage the Business Continuity Plan and Testing of the account.
Awards & Recognitions
•Numero Uno Award Oct 2005
Identification of Key Responsibility Areas & Key Risk Indicators of HR Benefit processes followed in Standard Chartered Bank
•Involved with regular testing of DR/BCP.
•Internal Audit of all the processes.
CISM - ISACA, United States – Certificate No. 1426123 •CRISC - ISACA, United States – Certificate No. 1619936 •AMBCI - Business Continuity Institute, UK – Certificate No. 031831 ISO 27001 Lead Auditor – STQC, India ISO 27001 LA 2013 Transition Course at DNV, India. CoBIT 5 Foundation – APMG CPISI - Certified Payment Card Industry Security Implementer at SISA India ISO 27001 Lead Implementer – BSI, India ISO 22301 Lead Implementer – BSI, India