Devi Patra

Operations Associate

Bengaluru, Karnataka, India10 yrs 3 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Over six years of experience in information security.
  • Expertise in vulnerability assessment and ethical hacking.
  • Proven track record in managing security incidents and compliance.
Stackforce AI infers this person is a Cybersecurity professional with expertise in Governance, Risk, and Compliance.

Contact

LinkedIn

Skills

Core Skills

Information SecurityRisk ManagementCyber SecurityGovernance, Risk And Compliance (grc)Vulnerability AssessmentApplication Security

Other Skills

BMC Remedy Ticketing SystemBurp SuiteBusiness EfficiencyBusiness Process AnalysisBusiness Process DevelopmentClient ServicesCompliance ReportingCustomer ExperienceCustomer SatisfactionDeadline OrientedDesignationDocument PreparationDocumentation PracticesDynamic TestingEnjoy New Challenges

About

As a Site Lead at Coforge, I oversee the information security and risk management of multiple projects for global clients. I have successfully delivered solutions that enhance the security and resilience of systems and networks, using my expertise in vulnerability assessment, ethical hacking, and ISO 27001 standards. I have also contributed to the development and implementation of security policies, procedures, and best practices for the organization. I have more than six years of experience in the field, having worked as an Information Risk Analyst at Milestone Technologies and an Assistant Manager at Concentrix. I hold a Certified Ethical Hacker (CEH) credential from EC-Council and a Bachelor of Science degree from Gangadhar Meher College. I am passionate about staying updated on the latest trends and technologies in the industry, and I enjoy working with a diverse and talented team of professionals who share my vision and values. I am also committed to delivering high-quality service and exceeding client expectations.

Experience

10 yrs 3 mos
Total Experience
2 yrs 5 mos
Average Tenure
4 yrs 1 mo
Current Experience

Coforge limited

Senior Analyst

Apr 2022Present · 4 yrs 1 mo

  • Manage security audit, Risk assessment, BIA and other activities required to support the information security management system (ISMS)
  • Manage security incidents and investigations in accordance with the Information Security.
  • Review the client security requirement e.g. Security terms in Master service agreement (MSA), Statement of work (SOW) etc. and ensure those requirement can be met by Coforge through implementation of security controls
  • Governance of internal and external VAPT exercise into the organization.
  • Assist in GRC (Governance Risk and compliance) related initiatives within the firm.
Information SecurityRisk AssessmentSecurity Incident ManagementGovernance, Risk and Compliance (GRC)Risk Management

Milestone integration services india pvt.ltd

Information Risk Analyst

Sep 2021Apr 2022 · 7 mos · Hyderabad, Telangana, India · Remote

  • Measure and analyze cyber security posture across the organization and recommend improvements and solutions to current cyber security issues and risks.
  • Support identifying the scope of the Governance processes, drafting and validating business cases, conducting business analysis, leading the gathering process of business requirements.
  • Identify and communicate findings in a clear, logical, and concise manner
  • Assist in GRC (Governance Risk and compliance) related initiatives within the firm.
  • Provide support in evaluation of security tools for the firm.
  • Coordinates the implementation of cyber security solutions (new/modifications) to reduce risk while enabling business efficiency and productivity
  • Assist in development, implementation, maintenance and enforcement of policies, processes and procedures associated with cyber security
  • Assists in development and management of end point security, including hardening, tools, and procedures
  • Writes situational analysis for high-risk threats and suggests appropriate courses of action for remediation
  • Assists in the development and refinement of patch and vulnerability management processes and solutions
  • Assists in the development and refinement of incident response procedures and documentation
  • Assists in coordinating cyber security incident response across the enterprise
  • Assist various teams in capturing and refining information protection requirements, integrating those requirements into system designs and ensuring program compliance
  • Assist in planning and engagement efforts for organizational physical security evaluations, and floor architecture reviews.
  • Provide support for contract review for customer engagement from an Infosec perspective.
  • Provide support for periodic Awareness to internal employees.
Cyber SecurityGovernance ProcessesSecurity Tools EvaluationIncident Response ProceduresGovernance, Risk and Compliance (GRC)

Concentrix daksh services india private limited

Asst-Manager

Dec 2019Oct 2021 · 1 yr 10 mos · Bangalore Urban, Karnataka, India

Concentrix daksh services india pvt.ltd

Asst.Manager information security Governance and compliance

Dec 2019Sep 2021 · 1 yr 9 mos

  • Designate as Security DRI with overall responsibility of information security compliance and Governance.
  • Coordinate with client security manager on regular basis, provide monthly/weekly reports and ensure compliance
  • Preparation of various reports and submission to client as well as top management of Concentrix.
  • Conduction of internal audits according to ISO 27001and other security standards to maintain compliance.
  • Implementation of global security directives and guidelines.
  • Manage security incidents and investigations in accordance with the Information Security.
  • Conduction of activities like VA, DLP logs review, Netskope logs review and VPN logs review. In addition, ensure closure of observations and VA gaps in timely manner.
  • Preparing multiple weekly/monthly MIS reports, Graphical presentations that shows the Service Improvement trends to management.
  • Security DRI shall ensure any employees having logical and physical access to Confidential and sensitive information shall have criminal background verification completed successfully prior to having access.
  • Investigate any incident or potential breach of security and any theft, loss, manipulation or disclosure of Confidential or Sensitive Information, digital or physical.
Information Security ComplianceInternal AuditsSecurity Incident ManagementInformation SecurityGovernance, Risk and Compliance (GRC)

Capgemini india pvt.ltd

Security Analyst

Feb 2016Dec 2019 · 3 yrs 10 mos

  • Experience in performing, Vulnerability Assessment and Auditing (Internal & External).
  • Experience in working with a leading product company.
  • Handling various technical aspects like project documentation, report preparation, security metrics and reviewing the documents.
  • Expertise in Minimum Security Baseline Standard (MSB) development for different platforms and servers.
  • Track open vulnerabilities with stakeholders and drive closure.
  • Prepare security approaches and effort estimates based on client’s security testing requirements.
  • Performing Application Security for various applications using Burp Suite
  • Design and implement GDPR along with stakeholders.
  • Experienced in handling customer and client queries and project demonstrations.
  • Experience in managing a critical application from the start till the end and ensure in its completion in strict timelines.
  • Supported & administrated security of intranet systems and networks.
  • Participated in understanding of security practices and standards
  • Developed training programs and trained ethical hackers internally.
  • Examine current dynamic scanning practices and identify key risks, then execute programs to address them.
  • Take ownership of assessment from start to finish. Ensure that assessments are executed on-time, within defined scope.
Vulnerability AssessmentApplication SecurityGDPR Implementation

Education

Gangadhar meher college (auto)

Bachelor of Science (BSc)

Stackforce found 100+ more professionals with Information Security & Risk Management

Explore similar profiles based on matching skills and experience

Maunish Patel

Maunish Patel

Head of Security Engineering

at Medibank

Melbourne, Australia17 yrs 7 mos exp
Cloud SecurityCyber Security StrategyCyber Security ArchitectureProject Management
BV

Bhanu Vrat

Principal Security Consultant, Cyber & Data Resilience

at Kroll

New Delhi, India10 yrs 10 mos exp
Cyber-securityInformation SecurityVulnerability ManagementInformation Security Awareness
VIKAS P.

VIKAS P.

Global Head of Security Architecture - Digital & Technology

at Aramex

New Delhi, India11 yrs 7 mos exp
Cloud SecurityContent CreationCyber Security ManagementCyber Security OperationsCyber Security Strategy
SUVAM AGARWAL

SUVAM AGARWAL

Security Compliance Controls Specialist

at Cloudflare

Bengaluru, India7 yrs 10 mos exp
Aaron Sanders

Aaron Sanders

Sr. Architect Info. Security (GRC)

at Edwards Lifesciences

Rochester, United States20 yrs 6 mos exp
IT Risk ManagementCyber Security RiskIT Security Policies & ProceduresVulnerability ManagementSecurity Compliance
Katie Hinz

Katie Hinz

Security Engineer

at Netflix

New York, United States8 yrs 11 mos exp
Risk QuantificationData EngineeringCyber SecuritySoftware DevelopmentFront-End Development
AM

Anshul Mangla

Chief Information Security Officer (CISO) & Data Privacy Officer (DPO)

at Hero FinCorp.

Delhi, India23 yrs 8 mos exp
Information SecurityInformation Security GovernanceSecurity Operations
Raj Viswanathan

Raj Viswanathan

Chief Information Security Officer (CISO)

at Nium

Chennai, India23 yrs 6 mos exp
Cyber SecurityIT Risk ManagementInformation SecurityRisk Management