Working in Group Internal Audit functions - The Third Line of Defence - Cybersecurity Assessment and verifications - Report HH

Working on Cybersecurity functions including GRC to secure an organisation and keep the operations smooth from a Security perspective.

End-to-end handling of the Cybersecurity functions that come under the Governance Risk and Compliance umbrella

Ensure a comprehensive IT Risk Management framework is established to identify, analyze, mitigate, monitor and communicate IT risks across Emirates IT. Collect IT risks identified through various channels eg. risk assessments, incidents, log them in the IT Risk Register and perform continuous monitoring activities. Perform regular risk assessments on Third Party, Cybersecurity, Project and Program and IT operations risks. Perform risk assessment reports and present the results to Management. Produce regular risk reports for all IT departments, and Top risks report for Senior Management. Develop Key Risk Indicators (KRIs) for IT and create dashboards for continuous monitoring of the risks. Periodically assess, improve and develop Cybersecurity controls, policies, processes and standards. Conduct regular IT and Cybersecurity maturity assessments, bench-marking assignments and gap assessments against industry best practices to identify areas of improvement. Design, develop and maintain a Cybersecurity scorecard by business area, to assess the Cybersecurity posture - Identify key metrics covering all Cybersecurity areas, automate the data collection and scorecard production for all business areas, present the scorecard to the business. Monitor and track IT regulatory requirements. Keep abreast of emerging risks and industry standards, and assess the potential impact on the organization. Produce regular reporting to Senior Management. Support contribute to the IT security awareness campaign by organizing roadshows, publishing articles, or conducting on-site Cybersecurity training. Conduct awareness training and workshops on IT Risk Management. Manage daily security exceptions requests- Assess, review and action requests for exceptions to policies and standards from all levels of the organization, both corporate and IT users. Maintain an up-to-date repository of all the exceptions granted and communicate the exceptions to relevant business-technical units

Operational and Governance-related tasks that relate to Security for Client ASGC, Dubai. Major task includes the Defining and Implementation of Information Security Policies and Procedures as per ISO27001 Standards. The Automation of Management Reports, Analyze the vulnerabilities found in infrastructure by Vulnerability Analysis and Penetration Testing (Manual+Automated), Threat Remediation, highlight risk to management, risk assessment, vendor management, security checks for vendor, hardening checks on the Oracle Linux operating system, schedule Antivirus scans and highlight the Major vulnerability to IT Infra team, schedule patch management, Ensure compliance of the policies on the servers, Manage and Administer IT security and Forensic tools such as LanSweeper, QualysGuard, Symantec Endpoint protection, ATP, ETP, EDR, MS Office 365 Admin, Azure Portal Admin, Cloud Server Management Activities like New Provisioning server, Migrate, Destroy server etc. Perform VAPT on in-house Applications using OpenVAS. SIEM configuration (AlienVault), Cyber Operations, Reporting, Demonstration. Investigation of the attacks, Fortinet Firewall Rules review (nipper), log and memory based analysis, Forensic evidence finding (SIEM Log and Dump based) Technical Policy defining and Implementation in Symantec Endpoint Protection, Data Leakage Protection (DLP), Email+Cloud Security, Email Threat Protection (FireEye, Microsoft, Mimecast), Web Isolation modules. Check More on LinkedIn Profile

Automation with Security Compliance checks, Policy procedures defining, ISO/IEC 27001, PCI-DSS implementation, Process Management, Incident Management, Change management, Automation of operational tasks, Internal Security Auditing, VAPT, Continuous Development and Automation with open-source tools (DevOps), Complete Financial Domain, Payment gateway interface Audit as per PCI DSS Compliance, Process Auditing. Reporting ROC (Report on Compliance), ROV (Report on Validation), Performing ASV Scans as part of PCI DSS Implementation. Major Responsibility included all the Operational and Governance related tasks that relates to Security for Finacus Solutions Pvt. Ltd. which deals with its various clients (100+) as Reputed Banks spread across India. Major task included the Defining and Implementation of Information Security Policies and Procedures. The Automation of business requirements and management, covered Change management, Incident Management, Asset Inventory, Helpdesk, Ticketing, Effort Tracking and Documentation storage Automation. Administering Azure account for system integration of ticketing system. From DevSecOps section, have covered configuration, implementation and Maintenance of various monitoring tool such as Nagios, Baretail, OpenNMS, Graylog, RanCID. Automated Email/SMS Triggering from monitoring tool if critical alert arrives as per business requirement. Configuring and Administration of Manage Engine PIM Tool Password Manager Pro, WatchGuard Firewall Rules, Implementing Trend Micro Anti-Virus, Involvement of banking domain requires more emphasize on PCI-DSS compliance which talks about internal and external Auditing reports. Jenkins Automation for day to day jobs as well as code deployment on Linux servers via Shell Scripts developed and implemented. Following Agile Way of Methodology with Sprint Framework and DevSecOps Practice to achieve Automation with End to End Project workflow Integration including Automated Security Check Components.

Governance Security - Manage Audits and compliance checks along with certifications for various standards such as ISO 27001- 2013 and PCI DSS. Multi-operational experience in Networking Operations, Systems Administration, Security and Audit and Support of Heterogeneous IT Infrastructure and BCP/DR. Handling Incident Management.Formulating, Reviewing, Upgrading, Developing Policy, Procedures and Guidelines for elements governing/connected to ISO Standards, Analyze SIEM tools, IDS and auctioning on alerts Operational Security- Involved in Vulnerability Analysis and Penetration Testing, worked on tools like burpsuite, IBM Appscanner, OWASP top 10, wapiti, Paros proxy, Nikto, Nessus, metasploite etc.IPS and DDOS mitigation device reports analysis firewall rule dump and analysis, proxy logs, user administration, OSSEC, SIEM tool monitoring and configuration, ITIL Tool - Service now.Cyber Forensics and Analysis using tools like The Sleuth Kit, Autopsy, Rekall, DumpIT, Volatility, log2timeline and most of the tools from Kali Linux OS. Handled SOC activities in which Analysis of complete trail of activities of user based on the logs and extracting footprints for legal purpose to be dealt with Cyber Law team. DevSecOps- Digital Transformation of Project- Worked on Multiple open source tools like Nagios, Munin, graphite, Jenkins, Apache, ldap, mongodb, maven, Exim, ELK stack, graylog, graphite, redis-cache, memcache, exim, Linux shell scripting, Automation with Jenkins, Ansible, PuppetTo design business rule-based dashboards in AppDynamic. To make dashboards and alerts in AppDynamics based on Business requirement. AppDynamics deployment and complete setup Project Management- Experience on Atlassian tools like JIRA, Confluence, stash, bitbucket. Studied ITIL Fv4 and worked on Kanban boards for project progress tracking. Project management experience for deployment, schedule.Good at Incident, Change management, onshore and offshore interaction Documentation. Check More on LinkedIn Profile

Performed Vulnerability Analysis and Penetration Testing, worked on Linux-based open source tools like burpsuite, OWASP, Nikto, wapiti, Paros proxy, Nessus, metasploite etc. Implemented and Administered IPS and Performed DDOS mitigation device reports analysis, Forensic Analysis on attack trace, proxy logs, user administration. Complete SOC level Monitoring setup including Nagios, OSSEC, SIEM tool monitoring and configuration. Tweaking in existing scripts/IT Tools for performance boosting and Automating of the tasks performed. Check More on LinkedIn Profile

Information Technology, Mumbai, India

Electronics and Telecommunications, Mumbai, India