Prerna Sharma
Senior Information Security Analyst II at Workato- Claim this Profile
Click to upgrade to our gold package
for the full feature experience.
-
English -
Topline Score
Bio
Manisha Mittal
Prerna has an exceptional knowledge in Process Improvement and Information Security. She consistently demonstrated a solid work ethic and dedication to success. She is wonderful, enthusiastic and reliable team member.
Cdr Sanjib Chaudhury (Retd)
Prerna, being the meticulous person that she is, saw her contribution and dedication towards her work quickly recognized in the Organization. In a year or, so, of her joining the Software Testing group, she was the final word to be relied upon prior any software release. She was responsible for maturing and automating a host of processes within the organization. She is quick to grasp organizational need of the hour and is always ready to go the extra mile to ensure that they are met in all respects. Her positive attitude coupled with an analytical bent of mind is sure to carry her forward in any role that she chooses to venture into. A must-have in any team and an asset to any organization – wish her the very best for her future endeavours.
Manisha Mittal
Prerna has an exceptional knowledge in Process Improvement and Information Security. She consistently demonstrated a solid work ethic and dedication to success. She is wonderful, enthusiastic and reliable team member.
Cdr Sanjib Chaudhury (Retd)
Prerna, being the meticulous person that she is, saw her contribution and dedication towards her work quickly recognized in the Organization. In a year or, so, of her joining the Software Testing group, she was the final word to be relied upon prior any software release. She was responsible for maturing and automating a host of processes within the organization. She is quick to grasp organizational need of the hour and is always ready to go the extra mile to ensure that they are met in all respects. Her positive attitude coupled with an analytical bent of mind is sure to carry her forward in any role that she chooses to venture into. A must-have in any team and an asset to any organization – wish her the very best for her future endeavours.
Manisha Mittal
Prerna has an exceptional knowledge in Process Improvement and Information Security. She consistently demonstrated a solid work ethic and dedication to success. She is wonderful, enthusiastic and reliable team member.
Cdr Sanjib Chaudhury (Retd)
Prerna, being the meticulous person that she is, saw her contribution and dedication towards her work quickly recognized in the Organization. In a year or, so, of her joining the Software Testing group, she was the final word to be relied upon prior any software release. She was responsible for maturing and automating a host of processes within the organization. She is quick to grasp organizational need of the hour and is always ready to go the extra mile to ensure that they are met in all respects. Her positive attitude coupled with an analytical bent of mind is sure to carry her forward in any role that she chooses to venture into. A must-have in any team and an asset to any organization – wish her the very best for her future endeavours.
Manisha Mittal
Prerna has an exceptional knowledge in Process Improvement and Information Security. She consistently demonstrated a solid work ethic and dedication to success. She is wonderful, enthusiastic and reliable team member.
Cdr Sanjib Chaudhury (Retd)
Prerna, being the meticulous person that she is, saw her contribution and dedication towards her work quickly recognized in the Organization. In a year or, so, of her joining the Software Testing group, she was the final word to be relied upon prior any software release. She was responsible for maturing and automating a host of processes within the organization. She is quick to grasp organizational need of the hour and is always ready to go the extra mile to ensure that they are met in all respects. Her positive attitude coupled with an analytical bent of mind is sure to carry her forward in any role that she chooses to venture into. A must-have in any team and an asset to any organization – wish her the very best for her future endeavours.
Credentials
-
LogicGate Power User Certification
LogicGateMar, 2022- Nov, 2024 -
Certified Information Security Manager® (CISM)
ISACAApr, 2021- Nov, 2024 -
Certified HITRUST CSF Practitioner
HITRUST AllianceMar, 2018- Nov, 2024 -
COBIT Foundation
ISACA New Delhi ChapterJul, 2016- Nov, 2024 -
Lead Auditor Information Security Management Systems (ISMS) (BS ISO/IEC 27001:2013
British Standards Institution (BSI)Sep, 2015- Nov, 2024 -
Certified Ethical Hacker
EC-CouncilFeb, 2015- Nov, 2024 -
PCI DSS
BSI
Experience
-
Workato
-
United States
-
Software Development
-
700 & Above Employee
-
Senior Information Security Analyst II
-
Mar 2020 - Present
Lead vendor and client security program which ensure secure onboarding of new client and vendor in to the organizational technology stack· Formulated data disposition framework in line with GDPR and key PDPA regulations to automate client data management request. · Designed business impact analysis process for risk driven data management and application cataloging.· Facilitate annual review of SOC2 audit for the organization while guiding and mentoring internal teams for audit readiness and remediation activities.· Deployment and operationalization of CASB in the organization using Netskope and BitGlass globally and ensuring integrated operations.· Manage and monitor endpoint security globally using SentinelOne and optimize device polices based on business requirements.
-
-
-
EY
-
United Kingdom
-
IT Services and IT Consulting
-
700 & Above Employee
-
Senior
-
Mar 2019 - Mar 2020
• IT Risk Assessment (Governance & Compliance): Multiple client-based engagements for IT General control testing for SOC1, SOC2 and SOX reviews.• IT Risk Assessment (Governance & Compliance): Test of Design and Test of Effectiveness performed with audit focus on logical access, change management and back up operations. • Preparation of vendor assessment reports which will include an analysis of the business profiling questionnaire.• Assessment of compliance of vendors against set standards/controls.
-
-
-
Genpact
-
United States
-
Business Consulting and Services
-
700 & Above Employee
-
Risk and Compliance Manager
-
May 2018 - Mar 2019
• Experience in SOX IT General Controls compliance in the areas of Change management, User access management and technology operations (i.e. Network, OS, Database, Helpdesk, Desktop and operations Job scheduling)• Provide quality assurance of all IT General Control through assessment, walkthroughs and audit to ensure operational effectiveness of those security controls.• Identify risk and gaps to facilitate remediation.• Meet with the business to evaluate business processes and update necessary documentation.
-
-
-
UnitedHealth Group
-
Hospitals and Health Care
-
700 & Above Employee
-
Specialist Risk Services
-
Jan 2016 - May 2018
• Conducted information security assessments, developed risk remediation plans.• Ensured regulatory governance through PCI DSS and HIPPA assessment.• Conducted annual ITGC control review for SOX 404 program.• Technology liaison to finance department for SOX audit.• Member of policy governance committee providing policy advisory to business technology teams.• Designed risk assessment framework as per technology standard & procedures. • Enterprise Risk Management : Reduced policy exception for business technology by leading strategic remediation• Issue management on GRC for policy exception and audit tracking• Quality Assurance: Reviewing the risk assessment reports for policy exception process.• ISO 27001 IT Security Implementation and Audit.• Conducting firewall audits.
-
-
-
Ministry of Defence of India
-
Government Administration
-
700 & Above Employee
-
Software Engineer - ISMS
-
Jan 2013 - Dec 2015
Software Process Improvement: ISO 27001 and CMMI Security: Penetration Test, Vulnerability Assessment, Network Tracing, Wireshark Testing: Black-box, Acceptance, System Intrusion, Valgrind, LoadRunner Value Added Leadership: Stakeholder Management, Presentation, Analytics and Reporting Software Process Improvement: ISO 27001 and CMMI Security: Penetration Test, Vulnerability Assessment, Network Tracing, Wireshark Testing: Black-box, Acceptance, System Intrusion, Valgrind, LoadRunner Value Added Leadership: Stakeholder Management, Presentation, Analytics and Reporting
-
-
Education
-
2016 - 2018
Indian Institute of Foreign Trade
Executive MBA, Finance -
2010 - 2013
Guru Gobind Singh Indraprastha University
Master of Computer Applications (M.C.A.), Computer Science -
2007 - 2010
Guru Gobind Singh Indraprastha University
Bachelor of Computer Application, Information Technology
Community
