Manager
BNP Paribas
Total des années d'expérience :9 years, 2 Mois
● Worked on the audit for Shared Security services where RPA was in my scope.
● Sections such as governance, project management and development, Information Security and IT production were covered as a part of the investigation covering below domains:
o Change and Release Management
o IT Continuity & Disaster Recovery Planning
o Network Security assessment
o Technology Operations (Capacity & Production Monitoring)
o Back-up schedules review & testing
o Periodic Review/Re-certifications of applications/database rights
o Incident Management
o Physical & Environmental controls over data centers
o Privileged Access Management
● Work with the clients on the various governance activities and provide the required information on various action items.
● Create security assessment calendar, work on closure of findings.
● Work on different security audits, prepare the activity calendar, improve or implement the new processes as per the findings.
● Maintenance of the client data protection program for the project. Providing SME views on the different controls.
● Incident management and reporting. Deep dive analysis of the incidents.
● Create and reporting of various security indicators
● Spread awareness regarding information security
● Work on policies and procedures as per the client contract
● Work on the action items as per the client requirements
● Work on process improvements as and when needed as per the identified risks
● Coordinate on the recertification campaigns with the relevant owners
I had worked as an information security officer in Accenture Post Trade Processing (APTP) where we were service providers for 3 International Banks