CyberSecurity GRC Project FREELANCER
EY
Total years of experience :17 years, 8 Months
Description: Involved in Cyber Sec GRC Project consulting for various clients. Responsible for Cyber Risk Management, ISO27001 Internal Audits, System & Network Security Controls Assessment. My Contribution: Participate in System & network audit, Cyber Security Audit, ISO Audit to establish compliance with security policies. Identified & Mitigated technology risks related to Cloud Service Misconfigurations, Data Privacy & Compliance, APTs, Serverless Computing. Conducted Internal Audit as per ISO27001 and ensure closure of the findings. Ensure the effectiveness of IT Compliance and security program and assist in developing and executing risk management plans. As part of Internal Audit, showcased ability to plan and execute an internal audit focused on cybersecurity, considering critical aspects such as identity and access management, data protection, incident response, network security, third-party risk, and security awareness. Approached Followed - Conducted interviews with key Stakeholders, performed tech assessments, reviewed documentation, analyzed relevant metrics, benchmarked existing Cybersecurity practices against ISO27001 Std. & best practices.
Department: Mission Critical Information Systems. Description: Involved in Product Management & Pre-Sales for Datacenter Infra Manager Software (DCIM). Visited Taiwan for product training followed by imparting training in India to Sales & Operations Team (for Cross Selling), R&D and Engineering (for Product Customizations if required post Competition Analysis).
My Contribution: On Product Line (DCIM) / Technical Business Development Front: Involved in creating Strategy in terms of Product, Pricing, Placement & Promotions. As part of initiating Datacenter Infrastructure Management Software Sales in India, involved in market analysis (TAM/SAM/PAM) and formulating the Go-To-Market strategy aiming to hunt new accounts. Closely involved with Sales for account mining & also looked after the Pre Contract DD ( SLAs, Scalability & Integration, Training & KT, and Security & Privacy Assessments) for offered product. Enabled Sales via Consultants & SI across PAN India. For large opportunities, involved with Sales in Customer Negotiations & Convincing. Sharing QBR to BU highlighting- achieved quarterly product performance, solution required for catering product bottlenecks (if-any), defining support required from BU for such customizations (if-required in product), and Defining Product Roadmap (in-case if new product is needed post market & competition analysis). On Product (DCIM) Presales / Technical Solutioning Front: Promoting the product via Seminars, DCD-events and Technical Presentations. Preparation of Compliance Statement. On need basis, traveled onsite to engage with customer for Solution defense/presentations, Solution pricing. Customer requirement analysis and product demo. Preparation of Technical Solution, Generating BoM.
Description: Lead Network Projects involving Configuration, Installation and Implementation of Routers, Switches, Firewall. Lead Security projects involving implementation & management of approved security changes, Cyber Risk Management, VAPT, Incident Detection & Response Planning. My contribution Managed End to End Complex LAN/WAN/Security projects. Delivering customer engagements on time within approved budget & as per agreed SLAs. Assessed firewall changes based on customer standards and good business practices. As part of Planning, articulated the objectives of the VAPT project, including scope, goals & deliverables. Developed a detailed project timeline with specific milestones and deadlines while identifying / allocating necessary resources for the project. Clearly defined the scope of the VAPT, including systems, applications, and networks in scope. Thorough analysis of potential vulnerabilities including system misconfigurations, outdated software, and weak access controls. Identified & prioritized potential risks viz. data exposure, False +/-, DoS risks, risks related to Regulatory Compliance issues & incidence response based on their potential impact and likelihood of occurrence. Implemented and maintained a comprehensive incident response plan, resulting in 20% improvement in response time. Gathered Customer requirements & reviewed project scope and successfully plan and track execution. Managed scope, time, cost, risk, communications, scheduled changes, & stakeholders for a project. Developed Project Plan (stating timelines for Site Preparation, h/w & Ckt. delivery, Implementation, Testing & Schedule). Proactive risk/vulnerability assessment & management, threats, risk reporting.
Project: CCTNS (Crime & Criminal Tracking Network System)-A project initiated by Ministry of Home Affairs in India for Delhi Police. Department: India IDU
Description: Network and Security Upgrade for deployment of CCTNS Application in Traditional Datacenter. My contribution Responsible for Successful deployment, upgrade of Data Center Network Infrastructure viz. Servers, Routers, Switches, Firewalls, Load Balancers &SAN Devices. Infrastructure (Server/Storage) Sizing, Microsoft Licensing for Server/Storage. Responsible for managing Server migration, consolidation, commission, decommissions. To ensure solutions are delivered within the agreed parameters and achieve the agreed benefits as per clients business requirement. Systems integration across all internal and external suppliers.
Project: Eagle for Client: VISA Department: Network Design Shared Services. Description: As a Network Technical Designer, designed & managed the network devices and security devices and maintenance of the connectivity of remote customer locations. My contribution Recommended and created High Level designs for sites migrations with Visio and documentation concerning standard WAN-LAN Design. Suggest Network hardware & compatible software to be in compliance with customer Network Architecture. Post creation of design, executing LAN/WAN implementations (as per approved change requests) that involves preparing router configuration, network diagrams (for both existing & new devices in network). Also performed Links & device migration, circuits commissioning, device installation.
Department: Global Customer Service Center. Description: In this role, the team was looking after routing, switching and security. Team was troubleshooting various n/w links to clients various remote locations connected via MPLS enabled IP VPN backbone of France Telecom (a.k.a. Orange Business Services). My Contribution Configuring CE & PE routers using static & dynamic routing which includes protocols viz. EIGRP, OSPF, BGP, RIPv2.MPBGP, EBGP and BGP address families configuration and troubleshooting. Suggesting improvements, upgrades (B/W upgrade, path variation, Layer 2 protocol change from legacy to ATM or FR, new site/router implementation) etc. Configuration, Installation and Implementation of CISCO Firewall (ASA), Checkpoint.
Project: To implement HSRP & Ether Channel in North India Citibank Network Department: NOC Description: NOCs Daily Operational work which included Facility Managed Service, Monitoring of Network, 24x7 Support. My Contribution Responsible for daily NOC operational work which included Facility Managed Services, Monitoring of links using Wan Status (Citigroup web based monitoring tool).Network Configuration/Troubleshooting services. Asset Management via Net-Info (tool) & generating report of links (LL and ISDN), Generating Link Utilization, Memory Usage, CPU Utilization reports on Info Vista (tool).
After
After
After
After
URL removed due to policy violation. Please contact support for further information.