Experience

Zermatt Resort

• General Manager



Lloyds Banking Group

• Consultant

  • Sep 2015 - Dec 2015

  Control assessment and architecture review • Implementation review of Lloyds Banking Group's Transaction Management Hub (TMH) Project. TMH is the next generation global payment HUB that connects all Lloyds Banking Group channels and payments systems and provides a core set of centralized payment processing capabilities.



JP Morgan Chase

• VP

  • Dec 2012 - Jan 2015

  Set up 8 member Third Party Risk Management team for Asia Pac region and managed execution of 120+ high risk vendor reviews for multiple lines of business. • Worked closely with JP Morgan lines of businesses leads and information security teams to ensure adequate controls are implemented to protect company and client data/information. Location auditor for India IB Technology group



Withum Smith+ Brown Global

• Lead Consultant

  • Jan 2005 - Sep 2005

  Provide consultancy for remedying the deficient and non-existing areas of IT Governance (SDLC & Change management and General IT Controls). • Reviewed and assisted in SOX preparedness testing for financial organizations in the Tri-State area. • Performed GAP analysis of the existing Sarbanes-Oxley efforts for multiple clients. • Introduced process changes in the IT operations of Capital Markets function; bringing about process improvement and Sarbanes Oxley compliance. •… Show more Provide consultancy for remedying the deficient and non-existing areas of IT Governance (SDLC & Change management and General IT Controls). • Reviewed and assisted in SOX preparedness testing for financial organizations in the Tri-State area. • Performed GAP analysis of the existing Sarbanes-Oxley efforts for multiple clients. • Introduced process changes in the IT operations of Capital Markets function; bringing about process improvement and Sarbanes Oxley compliance. • Developed user-friendly customized reports for presentation to executive management

• Lead Consultant

  • Jan 2005 - Sep 2005

  Provide consultancy for remedying the deficient and non-existing areas of IT Governance (SDLC & Change management and General IT Controls). • Reviewed and assisted in SOX preparedness testing for financial organizations in the Tri-State area. • Performed GAP analysis of the existing Sarbanes-Oxley efforts for multiple clients. • Introduced process changes in the IT operations of Capital Markets function; bringing about process improvement and Sarbanes Oxley compliance. •… Show more Provide consultancy for remedying the deficient and non-existing areas of IT Governance (SDLC & Change management and General IT Controls). • Reviewed and assisted in SOX preparedness testing for financial organizations in the Tri-State area. • Performed GAP analysis of the existing Sarbanes-Oxley efforts for multiple clients. • Introduced process changes in the IT operations of Capital Markets function; bringing about process improvement and Sarbanes Oxley compliance. • Developed user-friendly customized reports for presentation to executive management



Mahindra British Telecom

• Senior Consultant

  • Feb 2004 - Jan 2005

  Led a team of 6 consultants for Process improvement and implementation of SSE-CMM Level 3 across the organization including the Mumbai, Pune and UK office. • Instrumental in creation of four new information-security departments, including Risk Assessment, Vulnerability, Penetration Testing, and Security Engineering services. • Introduced Security engineering practices in MBT's software development processes and brought about a marked decrease in number of security lapses… Show more Led a team of 6 consultants for Process improvement and implementation of SSE-CMM Level 3 across the organization including the Mumbai, Pune and UK office. • Instrumental in creation of four new information-security departments, including Risk Assessment, Vulnerability, Penetration Testing, and Security Engineering services. • Introduced Security engineering practices in MBT's software development processes and brought about a marked decrease in number of security lapses, software errors and bugs in the software developed in MBT. • Provided technical guidance and developed a team of secure software architects to implement security in the various projects across the organization. Developed a refined methodology using Zachman and SSE CMM framework for secure software design and development of applications and developed it as a service offering for external clients. • Performed logistic activities and pre sales operations for the group, developed proprietary templates, white papers and marketing presentations for the department. • Conducted Penetration testing and Network testing of MBT's servers and network infrastructure and provided guidance for vulnerability patching. Show less



ICICI Infotech

• Sr.Technical Architect/ Project Manager

  • Apr 2001 - Jan 2004

  Conducted several PCI-DSS Level 1 and 2 assessments and designed an on-going PCI program resulting in decreased cost and compliance for a multi-location large retail company, which was part of the larger organization. • Performed GAP analysis of the existing ICICI InfoTech processes and assurance evidence in relation to the compliance of BS-7799 standards. • Documented Business Continuity Planning and Disaster Recovery Planning (BCP-DRP) for an external client's critical… Show more Conducted several PCI-DSS Level 1 and 2 assessments and designed an on-going PCI program resulting in decreased cost and compliance for a multi-location large retail company, which was part of the larger organization. • Performed GAP analysis of the existing ICICI InfoTech processes and assurance evidence in relation to the compliance of BS-7799 standards. • Documented Business Continuity Planning and Disaster Recovery Planning (BCP-DRP) for an external client's critical Internal Processes. Conducted the Business Impact Analysis (BIA) process, and developed and worked with the various Local Recovery Teams to address the mitigation and recovery issues identified during the BIA. • Technical architect for a financial risk VAR (value at risk) calculating product for the Forex, equity and debt markets. The software incorporated various methodologies used in the financial markets in its scope i.e. Risk matrix, Helvetica, Monte Carlo and Historic .The product was developed in Pro C, JSP & Oracle. • Part of the organizations Architecture review group and responsible of evaluation of the software architecture developed within the organization using proven methodologies such as ATAM, SAAM, ARID etc • Responsible for evaluation of security evaluations of commercial off-the-shelf products (COTS) incorporated in the development projects and for selection of security components to be used in software development. • Introduced the concept of secure software development lifecycle along with trusted software development methodology in the organizations software development team. • Project Management and coordination of various projects, duties included client negotiations, customer interactions and delivery management. Show less



Arrk Solutions Pvt Limited

• Technical architect/ Project Leader

  • Sep 1999 - Apr 2001

• Technical architect/ Project Leader

  • Sep 1999 - Apr 2001