Experience

Arrka

• India
• Computer and Network Security
• 1 - 100 Employee

• Chief Architect Arrka Privacy Platform

  • May 2023 - Present

  Mumbai, Maharashtra, India - Orchestrated the conceptualization, architecture, and oversight of the Arrka Privacy Management product development lifecycle, successfully transitioning teams to a product-centric model for virtual-CISO/virtual-DPO services. This has been rolled out for ~80 clients across the multiple sectors and geographies. - Spearheaded the formulation of business requirements and workflows for 24 modules within the product like maturity assessment, vendor compliance, internal audit, Risk Management… Show more - Orchestrated the conceptualization, architecture, and oversight of the Arrka Privacy Management product development lifecycle, successfully transitioning teams to a product-centric model for virtual-CISO/virtual-DPO services. This has been rolled out for ~80 clients across the multiple sectors and geographies. - Spearheaded the formulation of business requirements and workflows for 24 modules within the product like maturity assessment, vendor compliance, internal audit, Risk Management, Breach Management, Personal Data Management - Drove the creation of platform content for Security and Data Privacy, encompassing 22 global laws and frameworks, including ISO27001, ISO27701, India DPDP, GDPR, and CCPA. - Currently, at the helm of a geographically dispersed 10 members team of developers, testers, content writers, security and data privacy experts, propelling the growth of the practice and fostering a culture of continuous improvement to elevate client delivery efficiency.

• Head of Products - Arrka Platform

  • May 2018 - May 2023

  Mumbai, Maharashtra, India



Instarem

• Singapore
• Financial Services
• 1 - 100 Employee

• Global Head - Risk Management & Governance and CISO

  • Jun 2017 - Apr 2018

  Mumbai, Maharashtra, India Played a pivotal role in designing and implementing a comprehensive risk management framework that spanned multiple regions, including Singapore, Australia, Malaysia, Hong Kong, India, Europe, USA, and Canada. This encompassing framework covered risk management, information security, business continuity, and health and safety protocols. As a mentor to fellow business leaders, I shared my expertise on the importance and benefits of robust risk management practices and their practical… Show more Played a pivotal role in designing and implementing a comprehensive risk management framework that spanned multiple regions, including Singapore, Australia, Malaysia, Hong Kong, India, Europe, USA, and Canada. This encompassing framework covered risk management, information security, business continuity, and health and safety protocols. As a mentor to fellow business leaders, I shared my expertise on the importance and benefits of robust risk management practices and their practical applications. I ensured that the organization had a holistic understanding of interconnected risks, encompassing areas such as FX risk, liquidity risk, operational risk, cyber risk, reputational risk, and regulatory risk. Furthermore, I cultivated productive partnerships with third-party entities and regulatory authorities, consistently upholding high personal and corporate ethical standards and unwavering integrity. Show less



National Payments Corporation Of India (NPCI)

• India
• Financial Services
• 700 & Above Employee

• Senior Manager - Risk Management

  • Sep 2014 - Jun 2017

  Mumbai, Maharashtra Held executive and board-level accountability for overseeing risk management, Information Security, business continuity, people health and safety, governance, and compliance. I nurtured collaborative relationships with cross-functional teams, ensuring rigorous adherence to regulatory standards, corporate policies, and global best practices. Leading a diverse team of 11 members, I managed Governance, Risk & Compliance, Information Security, business continuity, and health and safety. My… Show more Held executive and board-level accountability for overseeing risk management, Information Security, business continuity, people health and safety, governance, and compliance. I nurtured collaborative relationships with cross-functional teams, ensuring rigorous adherence to regulatory standards, corporate policies, and global best practices. Leading a diverse team of 11 members, I managed Governance, Risk & Compliance, Information Security, business continuity, and health and safety. My contributions extended to designing solutions for Aadhaar-based payment systems, entailing meticulous documentation and risk mitigation. Additionally, I represented the Risk team in the successful execution of Unified Payments Interface (UPI) and BBPS projects, effectively managing risks throughout the project lifecycle, further showcasing my proactive approach to risk management. Show less



Aviva

• United Kingdom
• Financial Services
• 700 & Above Employee

• Associate Vice President - Business Protection Oversight

  • Apr 2013 - Sep 2014

  Pune Managed end-to-end Information Security, Business Continuity, and Operational Risk for 4500 FTEs across 11 sites, spanning Aviva's GI, L&P, Healthcare, AD&M, and F&A businesses. Oversaw a 6-member team, ensuring vendor compliance with the Master Service Agreement. Pioneered an offshore governance framework for IT vendors (annual spend £70m), resulting in an 80% reduction in governance costs. Additionally, contributed to the design of risk models for various pricing strategies, including unit… Show more Managed end-to-end Information Security, Business Continuity, and Operational Risk for 4500 FTEs across 11 sites, spanning Aviva's GI, L&P, Healthcare, AD&M, and F&A businesses. Oversaw a 6-member team, ensuring vendor compliance with the Master Service Agreement. Pioneered an offshore governance framework for IT vendors (annual spend £70m), resulting in an 80% reduction in governance costs. Additionally, contributed to the design of risk models for various pricing strategies, including unit transaction and outcome-based pricing models.

• Manager Business Protection Oversight

  • Apr 2011 - Mar 2013

  Pune



KPMG US

• United States
• Financial Services
• 700 & Above Employee

• Assistant Manager

  • Feb 2007 - Apr 2011

  Pune Area, India Responsible for providing IT advisory services to varied industry sectors like Banking and Financial, IT & ITES, Telecommunication, Manufacturing, Knowledge Processing and Pharmaceuticals.  Developed and implemented a scalable enterprise Security Information and Event Management (SIEM) platform and capabilities to monitor and correlate security events with known vulnerabilities for a Stock Exchange  Developed IT Strategy for a bank for their ATM Switch operations  Carried out… Show more Responsible for providing IT advisory services to varied industry sectors like Banking and Financial, IT & ITES, Telecommunication, Manufacturing, Knowledge Processing and Pharmaceuticals.  Developed and implemented a scalable enterprise Security Information and Event Management (SIEM) platform and capabilities to monitor and correlate security events with known vulnerabilities for a Stock Exchange  Developed IT Strategy for a bank for their ATM Switch operations  Carried out application architecture and design review for 5 banking applications including functional and unit testing  Consolidation of vendors including RFP designing, defining SLAs / penalty clauses and vendor evaluation for one of multinational bank in India  IT security review of the Outsourced Development Center, IT infrastructure for JPMorgan Chase and American Express Bank  Review of the selected information technology components of Siebel CRM, Internet Banking and Network infrastructure of the bank from an IT general controls and application controls perspective and highlight control weaknesses for a bank  Consultant for ISO27001 and BS25999 implementation and audit for 17 organizations Show less



Wipro

• India
• IT Services and IT Consulting
• 700 & Above Employee

• Associate Consultant

  • Apr 2005 - Feb 2007

  Mumbai Worked as Associate Consultant with Wipro. I was responsible for providing IT advisory services in the areas of IS Governance (ISG) including ISO 27001, BS25999 advisory, continuity including Business Continuity Management and IT Controls Review