SUMMARY

• 8 years of experience as IT Consultant, Technical analyst/lead, functional experience in development, maintenance, migration projects and management of multiple vendor Applications.
• 4 years of experience on Archer GRC Tool with its implementation in multiple Business Units.
• Strong Understanding of Archer Data Feeds, questionnaires, calculated fields, work flow, reports, dashboards, I - views, Packaging.
• Assess, prioritize and update existing IT security policies and standards to reflect the GRC framework
• Perform risk assessment of new IT projects, identify areas of potential technical and process vulnerability, recommend compensating controls and maintain the IT risk register
• Involved in testing stage process of upgrading environment from RSA Archer 5.5 to 6.2.
• Review existing systems and processes against the GRC framework and prioritize remediation plans based on business risk.
• Evaluate and maintain up-to-date knowledge of the effectiveness of GRC standards and compensating controls in mitigating IT risk.
• Interact with Internal Audit and IT teams to ensure on-going compliance with company IT security policies and standards.
• Define GRC framework metrics and key risk indictors, maintain a management dashboard and produce an annual GRC framework compliance report for executive management.
• Provide training and support to management and employees regarding GRC programs and requirements.
• Work with internal and third party IT security partners to stay current on industry trends, controls and security technologies and services.
• Seasoned in delivering under complete SDLC methodology (requirement, analysis, design, data modeling, business process modeling, implementation and deployment).
• Strong knowledge of Data Warehousing concepts and Dimensional Modeling and exposure to Data Modeling, Normalization, and Business Process Analysis.
• Proficient in MS Office Excel, MS Visio, Access, PowerPoint.
• Extensive experience in conducting JAD sessions as Business Analyst - participated in varied roles ranging from facilitator, preparing visual aids, setting goals and objectives, providing read-ahead materials to participants, etc.
• Proficient in the implementation of productionchange managementtechniques and service delivery disciplines.
• Written Use cases and have produced Use Case Models, creating Behavioral diagrams (use case diagram, Activity diagrams and Sequence diagrams) based on UML Methodology & Business process flow diagrams in MS Visio.
• Extensive experience in documentation of business requirements and system functional specifications, including BRD, FRD.

TECHNICAL SKILLS

Application: RSA Archer Version 5.3, 5.4, 5.5, 6x.

Programming Languages: C, C++, C#,HTML, XML, PL/SQL,SQL

Operating Systems: LINUX, UNIX, Windows

Software Modeling Tools: Microsoft Office Suite, MS Visio, SQL Server 2008

PROFESSIONAL EXPERIENCE

Confidential, Charlotte, NC

RSA Archer Consultant

Responsibilities:

• Worked in Building Various Data feeds for ODAS and core application at the customer place.
• Worked in implementing advanced workflow for various applications based on business need.
• Worked in RSA Archer Installation at Multi host Environment and implementing Out of Box and ODA applications for various Modules like Enterprise management, Policy management Solution, Business Continuity management solution and Incident management solution.
• Worked on complex calculated fields and building of DDE’S and record permissions across the applications and Questionnaires.
• Worked in building Custom workflow for ODA application in various stages based on business requirement.
• Implemented Archer out-of-box solutions including Policy Management, Compliance Management, Enterprise Management, Business Continuity management, Vendor Management and Issue Management and Risk Management.
• Had worked in couple of Development and support projects on RSA Archer. This include troubleshooting production issues, developing new applications, modifying existing applications based on new business requirements, testing the workflows and other administration roles on Archer.
• End to end Archer development - Questionnaire, Applications, Campaigns, Fields, Events, Notifications, Reports, iView’s and Dashboards, Complex Calculated Fields, Custom Work Flows.
• Expertise on designing both on demand and core applications.
• Configuring access control on solution level, application-level, record-level and field-level access control functionalities of archer.
• Creating Test scripts, Test plans, Data migration plan which is used for testing the applications by the client.
• Create Packaging solution and migrating lower to higher environment and Installing Packages.
• Implemented advanced workflows for various core applications in Archer 6.2.

Confidential, Philadelphia, PA

RSA Archer eGRC System Consultant

Responsibilities:

• Archer instances designing and installation.
• Develop and maintain a formalized GRC framework, utilizing standards based controls aligned to business specific threats.
• Implementation of Vendor management solution.
• Assess, prioritize and update existing IT security policies and standards to reflect the GRC framework.
• Perform risk assessment of new IT projects, identify areas of potential technical and process vulnerability, recommend compensating controls and maintain the IT risk register
• Involved in testing stage process of upgrading environment from RSA Archer 5.5 to 6.1.
• Implementation of Business continuity solution
• Review existing systems and processes against the GRC framework and prioritize remediation plans based on business risk
• Evaluate and maintain up-to-date knowledge of the effectiveness of GRC standards and compensating controls in mitigating IT risk
• Implementation of Enterprise management solution
• Implementation of policy management solution
• Implementation of compliance management.
• Development of on-demand incident Management solution
• Interact with Internal Audit and IT teams to ensure on-going compliance with company IT security policies and standards.
• Define GRC framework metrics and key risk indictors, maintain a management dashboard and produce an annual GRC framework compliance report for executive management.
• Provided Archer operational support, including troubleshooting issues, user IDs and report and data requests support.
• Created C# based utility programs for SSIS tasks.

Confidential, San Francisco, CA

RSA Archer eGRC system Developer

Responsibilities:

• Worked as technical lead for the project, and System administrator for the RSA Archer Application
• Took RSA’s Archer Basic Administration class. Knowledge in building on-demand application, dashboards, workspace, Global IViews.
• Deployed Archer applications to provide user acceptance testing, performance load testing and production work.
• Performed troubleshooting for problems with data feeds and determined root cause.
• Created the Technical Design Document, playbook and other required documents.
• Worked with different Team, production team, developers, business people, vendors, stakeholders etc.
• Worked with business people to understand the needs and requirement of the project while pulling the data.
• Involved in two different parts of projects in same time.
• Setup user accounts and groups according to the security needs.
• Created scheduled tasks on windows 2013 servers.
• Ran executables manually on the servers as needed.
• Reviewed log files to help determine problem root cause.
• Experienced in CA Software Change Manager
• Gathered detailed business and technical requirements and participated in the definitions of business rules and data standards
• Gathered requirements using Agile methodology, defined business process design and Gap Analysis
• Gathered and documented functional requirements and use cases for automation of operational and Administrative business processes.
• Interfaced with team leaders, identify and analyze the given information, procedures and decision flows,
• Evaluated existing procedures, methods and technical documentation. Communicated with executives, managers and other stakeholders regarding project scope
• Generated a detailed requirements document describing the template and the usability of the reports using MS Visio
• Utilized Waterfall methodology to configure and develop process, standards, and procedures.
• Interfaced with developers, analysts, customers and project managers to discuss requirements and recommended solutions, to help resolve issues.

Confidential

Information Risk Management (IRM) Coordinator& IT GRC Analyst

Responsibilities:

• Leading, auditing and monitoring projects to address specific compliance risks.
• Following up on corrective actions in response to identified issues and audits
• Developing compliance policies and procedures, emphasizing prior success in roles leveraging compliance hotline protocols and compliance investigation process and procedures
• Assisted in charting out a plan for IRM assessment and remediation. Planned its execution to Evergreen phase
• Developed the IRM capability within the group through training and emphasizing its cause
• Perform 'IP Compliance & SLA assessment' (semi-annually for High Risk applications/annually for Normal Risk applications)
• Responsible for monitoring compliance with the policies, standards and technical controls
• Process/Incident Management/Change Management
• Ensure IRM, APC, and other Compliance deliverables for each application
• Regularly track Incident metrics / Change Management metrics and identify possible areas for improvements.

Confidential

.NET Developer

Responsibilities:

• Involved in collecting and analyzing the business requirements from the customers.
• Responsible for developing all the front end screens and the back end database queries for retrieving data and NET Framework 2.0.
• Developed the system frontend using C#.NET, ASP.NET 2.0 and HTML and backend using SQL server 2005 as the backend database.
• Designed the Conversation pattern from existing ASP application to ASP.NET/ C#.NET Web Forms and .NET Framework 2.0.
• Used ADO.NET for retrieving data from backend database SQL Server 2005 and Visual Studio 2005.
• Implement and Deploy of XML Web Services (SOAP) using C#.NET. Created dynamic GUIs with .Net Web Controls.
• Implemented extreme programming by using fast paced Object Oriented Methodologies, involving in task completion, user stories, and iterations.
• Worked on UI using AJAX for making smaller, faster and user friendly web-page application.
• Developed Server side programming using C#.NET .NET, ASP.NET 2.0 on .NET architecture.
• Implemented AJAX in order to provide pleasant client side experience.
• Designed XML Schemas and developed XSL and XML gateway.
• Extensively used XSLT language to transform from XML document into HTML web page.
• Developed testing report, Stored Procedures using SQL Server 2005 and SQL scripts, and DTS packages and Data Modeling.
• Used Microsoft Visual Source Safe (VSS) for all the source code maintenance needs.

Environment: Visual Studio, .NET Framework, ASP.NET, ASP, ADO.NET, VB.NET, AJAX, XML, HTML, CSS, SOAP, SQL Server, JavaScript, jQuery, WCF, SSRS .