SUMMARY:

• Seasoned GRC implementation Professional with more than 15 years of strong experience in delivering quality results through conviction, collaboration, and tactical implementation strategies. Certified RSA Archer 6.x Administrator. Strong acumen to quickly understand business challenges and solve them with clever technical implementations. Proven ability to quickly identify, prioritize, and facilitate the implementation of process, risk, control and technology changes that improve corporate governance, risk management, streamline business operations, and increase overall security landscape within an organization. Proficient in Project Management, Software Development lifecycle, Application Access Assessments, Risk identification and mitigation, and Operational Security. Excellent team player, diligent and motivated individual possessing international business experience, strong written and verbal communication skills with proven analytical and problem - solving capabilities.

PROFESSIONAL EXPERIENCE:

Confidential, NY

Vice President

• Leading the GRC implementation that focuses on improving the organizations Risk Management, Compliance, and Third-Party Risk Management program. This includes, requirements gathering, solution design and development, testing and data migration planning.
• Design, architect, configure and Implement Archer solutions: Enterprise Management, Audit Management, Business Resiliency (Business Continuity and Disaster Recovery), Enterprise & Operational Risk Management, IT & Security Risk Management, Regulatory & Corporate Compliance Management, Third Party Governance (Vendor Management), Policy Management, Incident and Issue Management, Vulnerability and Threat Management and Risk Control Self-Assessment (RCSA).
• Coordinate with business stakeholders across the enterprise for scoping and designing out of the box solutions; chairing periodic meetings
• Liaise with the developers to ensure the applications are implemented as per the design requirements
• Troubleshoot and resolve production issues, maintain content through regular vendor releases and assist in maintenance activities.
• Implement and Manage 2 distinct yet connected Platforms - “Internal for SocGen” and “Vendor Portal (DMZ)” created on RSA Archer for seamless assessment completions.
• Proactively identify incident trends - release fixes or improvements in releases.
• Create Test scripts to help business stakeholders test their applications end to end.
• Create Technical document to show the overall architecture of the application and functional document to show the application workflow
• Conduct training and awareness programs for end users to help understand the application workflow.
• Provide Strategic design and analysis, managed upgrades and enhancements, system performance, user experience, data integrity for new on-boarded solutions and transitions from Archer 6.1 to Archer 6.4.
• Design and create On Demand Applications (ODA’s) for Risk Management group which involved in creating Solutions, Applications, Fields, Notifications, Sub-forms, Dashboards, iViews, Workflow, Advanced Workflows.
• Using Packaging and Data Feeds, integrate Archer with third party applications such as Veracode, Qualys (Vulnerability Scan results), ServiceNow (System of Record), Duns and Bradstreet (Vendor News Provider), and Sourcing Manager (Contracts).
• Configure and troubleshoot data communications - Notifications, Discussion Forums, Training and Awareness, Mail Merge to increase Archer usability.
• Configure and troubleshoot integrations to import data using Data Imports, Data Feeds, and Publications.
• Work with Quality and Regulatory, Business Unit, Risk and Control officers for NYDFS, SOX and HIPAA Compliance readiness.
• Enhanced reporting by integrating Archer with QlikView, MicroStrategy 11 and consumed iViews to display MicroStrategy reports in Archer.

Confidential, NJ

Manager

• Led the GRC implementation - providing day to day technical administration of the Archer platform including production support of solutions and platform, upgrades and release management, project technical documentation including design, installation, and configuration document, upgrade validation/testing, change control, technical issue/problem resolution.
• Worked closely with Project Managers, IT, and business management on multiple development and maintenance projects; throughout all phases of the software development lifecycle
• Worked with service management, change management, and infrastructure teams as needed on technology and platform upgrades, maintenance and enhancement migrations, and issue resolution
• Led a technical team of on-shore, off-shore, and/or professional services resources to complete both project level and small enhancement and maintenance efforts.
• Owner for the effectiveness, quality, simplified implementations and rapid delivery of project design decisions.
• Designed and implemented On-Demand applications, Questionnaires and perform questionnaire administration; Design of custom workflows and notifications; User Access Control; LDAP Sync.
• Worked with Archer Control Panel, Job Engine, and Services to maintain production/non-production environments; creation of new instances; Installs/upgrades to the platform and solutions.

Confidential

Senior Implementation Consultant

• Led the GRC implementation that focuses on improving the organizations IT Risk Management and Compliance program. This included, requirements gathering, solution design and development, testing and data migration planning.
• Designed, architected, configured and Implemented Archer solutions: Enterprise Management, Audit Management, Business Resiliency (Business Continuity and Disaster Recovery), Enterprise & Operational Risk Management, IT & Security Risk Management, Regulatory & Corporate Compliance Management, Third Party Governance (Vendor Management), Policy Management, Incident and Issue Management, Vulnerability and Threat Management.
• Coordinated with business stakeholders across the enterprise for scoping and designing out of the box solutions; chairing periodic meetings
• Liaised with the developers to ensure the applications are implemented as per the design requirements
• Troubleshoot and resolve production issues, maintain content through regular vendor releases and assist in maintenance activities
• Created Test scripts to help business stakeholders test their applications end to end.
• Created Technical document to show the overall architecture of the application and functional document to show the application workflow
• Conducted training and awareness programs for end users to help understand the application workflow.
• Provided Strategic design and analysis, managed upgrades and enhancements, system performance, user experience, data integrity for the transition from Archer 5.5 to Archer 6.1 and Single Sign-on.
• Designed and created On Demand Applications (ODA’s) for Global Security Operations group which involved in creating Solutions, Applications, Fields, Notifications, Sub-forms, Dashboards, iViews, Workflow, Advanced Workflows.
• Using Packaging and Data Feeds, integrated Archer with third party applications such as Veracode, Qualys (Vulnerability Scan results), and ServiceNow (System of Record).
• Configured and troubleshoot data communications - Notifications, Discussion Forums, Training and Awareness, Mail Merge to increase Archer usability.
• Configured and trouble-shoot integrations to import data using Data Imports, Data Feeds, and Publications.
• Worked with Quality and Regulatory, Business Unit, Risk and Control officers for SOX and HIPAA Compliance readiness.
• Enhanced reporting by integrating Archer with Tableau 9.3 and consumed iViews to display Tableau reports in Archer.

Senior Project Manager (Scrum Master)

Confidential

• Responsible for full life cycle project development including business analysis, specifications, architecture, budgets and schedules, development, testing, rollout and support of end-user applications.
• Responsible for key critical path deliverables, projected timeline, key accomplishments, activities behind schedule, key decisions and impacts, resource impacts and dependencies, risks and issues, activities dashboard, key open design decision review;
• Developed multiple project plans, communication plans, presentations and reports.
• Collaborated with R&D teams, gathered dashboard requirements for BI and KPIs, led Quality Assurance benchmarking and Business User Acceptance Testing, created training/technical manuals, and built monthly status reports.
• For the IT Risk Management group, led creation of GRC proof of concept modules for specific business requirements arising out of compliance and/ or regulatory requirements.

Project Manager

Confidential

• Oversee the day-to-day progress of Agile development projects with regard to time, budget, scope and quality.
• Facilitate the Scrum process (daily stand-ups, sprint planning, backlog grooming, sprint reviews & retrospectives)
• Facilitate communications within the team and key stakeholders
• Identify and remove impediments that are blocking the team and their ability to deliver the product.
• Work with architecture and engineering teams in distributed locations to drive planning, issue resolution, and development of platform and project specific technical topics.
• Partner with the development and QA leads to provide leadership and mentorship to the team.
• Ensure teams keep to schedules and budgets and adapt to keep projects in line with expectations.
• Coach team members, provide general guidance and ensure teams are practicing Agile principles.
• Organize and facilitate project planning, daily stand-up meetings (scrums), reviews, retrospectives, sprint and release planning, demos, and other Scrum-related meetings.

Senior PMO Analyst (Project Manager)

Confidential

• Conduct gap analysis, developed policies, objectives, targets, and procedures.
• Design relevant metrics and artifacts and other documents to comply with ITIL requirements.
• Conduct training on "awareness on ITIL", " ITIL processes" and "internal audits".
• Carry out internal audits, identify Non-conformances and track them to closure.
• Defined and implemented Quality Assurance Framework (QAF) activities, defining various Processes like Risk management, Issue management, Configuration management, Change management, Quality management, Review management.
• Lead a team of 4 Business process analysts to ensure deliverables were tracked and reported to executive management team.
• Developed high level and low level process design flows and process mapping projects, products and services.
• Provide analytical support to the Program and Project Managers, acting as PMO analyst.
• Assist other Senior PM's on parallel projects, with Project life-cycles, onboarding, action items, risk resolution and project execution.
• Participated in and led grooming to drive alignment and refinement of requirements.
• Documented all stakeholder project information (project plans, presentations).
• Refined system requirements based on feedback from cross functional team leads and facilitated reviews of proposed solutions.

Technical Communicator

Confidential

• Developed content on hardware/software products for a leading ecommerce site
• Worked in a cross-functional, cross-geography product/content development setup
• Organized both formal and informal product/software training sessions, as required
• Gave direction and guidance to technical illustrators, other writers about projects and processes
• Provided principal training to other writers within the organization
• Edited other writer’s documents and corresponding illustrations
• Managed company internal portal