Shalini B

Operations Associate

Bengaluru, Karnataka, India10 yrs 11 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Over 9 years of experience in Information Security.
Expert in Third Party Risk Management and Compliance.
Proven track record in developing security frameworks.

Stackforce AI infers this person is a seasoned Information Security professional specializing in risk management and compliance within the SaaS industry.

Contact

Skills

Core Skills

Information Security Management System (isms)Vendor Risk ManagementThird Party Risk Management

Other Skills

AWS FundamentalsAlert AnalysisAzure FundamentalsBusiness Continuity ManagementControl AssessmentsControl AutomationControl TestingCyber Threat Hunting (CTH)Cyber Threat Intelligence (CTI)CybersecurityGovernance-Risk and ComplianceIBM Cloud SecurityISO 27001 Lead AuditorISO 27001:2013Malware Analysis

About

Shalini is an experienced Information Security professional with over 9 years of diverse experience in security operations, Information Security Management Systems (ISMS), Third Party Risk Management (TPRM), and Business Continuity Management Systems (BCMS). She specializes in identifying and addressing control gaps in third-party vendor infrastructure, applications, and processes. Skilled in evaluating risk exposure associated with vendor services and infrastructure changes, and providing actionable recommendations to mitigate and manage risks effectively. She is passionate about safeguarding organizational assets and driving robust security frameworks to ensure compliance and resilience in an ever-evolving digital landscape.

Experience

Ibm

Supplier Risk Assessor

Jun 2023 – Present · 2 yrs 9 mos · Bengaluru, Karnataka, India

Led and managed end-to-end security and compliance initiatives, including IBM Cloud security governance, Supplier Risk Management, and Control Automation. Oversaw the development and implementation of controls, policies, procedures, and standards aligned with regulatory and industry frameworks such as FedRAMP, NIST, ISO, and HITRUST. Ensured ongoing regulatory compliance through proactive risk assessments, control testing, and continuous improvement programs.

Supplier Risk ManagementControl AutomationRegulatory ComplianceRisk AssessmentsControl TestingInformation Security Management System (ISMS)+1

Citrix

Senior Security Engineer

Dec 2020 – Jun 2023 · 2 yrs 6 mos · Bengaluru, Karnataka, India

Governance-Risk and Compliance, Third Party Vendor Risk Assessment, Control Assessments, Risk Management, Business Continuity Management, Security Policy and Standards, ISO 27001, NIST Framework and other obligations.

Governance-Risk and ComplianceThird Party Vendor Risk AssessmentControl AssessmentsRisk ManagementBusiness Continuity ManagementThird Party Risk Management+1

Ey

Consultant

Jul 2017 – Dec 2020 · 3 yrs 5 mos · India

Third Party Vendor Risk Assessment, Control Assessments, Risk Management, Business Continuity Management, Security Policy and Standards, ISO 27001, NIST Framework and other obligations.

Third Party Vendor Risk AssessmentControl AssessmentsRisk ManagementBusiness Continuity ManagementThird Party Risk ManagementInformation Security Management System (ISMS)