Sudhakar Reddy

CEO

Hyderabad, Telangana, India18 yrs 3 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • 16 years of experience in Information Security.
  • Expert in Third Party Risk Management and Compliance.
  • Strong analytical and team management skills.
Stackforce AI infers this person is a seasoned Information Security professional with a focus on Third Party Risk Management in the Fintech sector.

Contact

LinkedIn

Skills

Core Skills

Third Party Risk ManagementInformation SecurityRisk ManagementTechnical Support

Other Skills

Security Risk AssessmentsCompliance ManagementVendor Risk ManagementSecurity Metrics ProgramSecurity MetricsThird Party AuditsCompliance StandardsHelpdesk SupportTroubleshootingRemote SupportData Loss Prevention (DLP)Web Content FilteringException ManagementCertificationsCEH-V3

About

▪︎16 years of experience in various domains of Information Technology and Information security such as Third Party risk assessments, Network Security, Email and DLP Security, ▪︎Currently working as Assistant vice president in Synchrony Financial Services (GE Capital) from 2019. ▪︎Worked as a Sr. Systems Engineer in Bank of America India for 9 years. ▪︎Worked as a Sr. Technical Associate in Tech Mahindra – Hyderabad. ▪︎Worked in IBM Global India as a Sr. Technical Support Associate for 2 and half years. ▪︎Certifications- CISM, ITIL V3 Foundation, CEH V8 (Certified Ethical Hacker) and ISO 27001 Lead Implementer and perusing CISSP ▪︎Excellent analytical, interpersonal and communication skills ▪︎Excellent team-building and Management skills ▪︎Good knowledge in IT Operations & Information Security Operations

Experience

Synchrony

2 roles

AVP - Third Party Risk Assessments

Promoted

May 2023Present · 2 yrs 10 mos · Hyderabad

Sr Analyst-Manager, Third-party Risk management, Information Security

Aug 2019Jun 2023 · 3 yrs 10 mos · Hyderabad

  • Conducting security risk assessments, audits, and third party risk reviews to ensure compliance with regulatory requirements and compliance standards & frameworks. Liaise with supplier managers and procurement team to remediate issues and tracking security issues in an electronic GRC system.
  • Conducting reviews against IRS of the supplier risk profile to determine the assessment scope and supplier classification. Performing onsite assessments for GDC suppliers. Evaluating supplier control effectiveness by reviewing policies, procedures, controls, systems and processes to identify control gaps. Recommend policy and coordinate review and approval. Provide third party risk guidance to cyber management, staff, and users. Continuous monitoring of the critical suppliers through Security score card , monthly score cards. Collaborating with SMCOE and threat intelligence team for continuous monitoring of High/Critical suppliers.
  • Refreshing vendor risk assessment questions aligning it with latest threat landscape, designing vendor risk management workflow. Documenting the processes and procedures for vendor risk management process.
  • Evaluating implementation and functionality of security requirements and appropriate information technology (IT) solutions that are consistent with the organization's mission and goals. Revamped the security metrics program to align with industry standards and the business objectives in delivering a more concise status of the organization’s security posture. Collaborated with all security groups to define and calculate metrics. Mapped the existing metrics with PCI requirements and developed tableau dash board for PCI metrics. Presented monthly security metrics reports to IT leadership supporting risk decisions.
  • Conducting information security NHO sessions. Contributed to the process enhancement and workflow revamping at the time of transition to the new GRC tool.Conducting security risk assessment
Third Party Risk ManagementSecurity Risk AssessmentsCompliance ManagementVendor Risk ManagementSecurity Metrics ProgramInformation Security

Bank of america

Sr. Systems Engineer, Third party Information Security

Dec 2010Aug 2019 · 8 yrs 8 mos · Hyderabad Area, India

  • Overview:
  • Worked as a part of Third Party Information Security (Third Party Audits) team performing Information Security
  • audits of Bank of America vendors.
  • Responsibilities:
  • Third Party Auditor – 2011- 2015
  • ● Responsible for conducting online & Self Assessments of vendors across India, EMEA, US, APAC regions
  • covering ISO 27001, PCI-DSS, and ISO 22301, SOX etc. standards
  • ● Understand the business processes in operation to identify information security risks and implement effective
  • mitigating control measures to manage such risks.
  • ● Conduct interviews, document client processes and procedures, review documents, and prepare work papers.
  • ● Review Third Party or Vendor infrastructure against various standards as mentioned above and provide remediation
  • plans.
  • ● Review Information Security, Business Continuity, Disaster Recovery and various other policies depending on
  • the services provided by the supplier.
  • ● Review third party audit reports such as PCI DSS Compliance reports and HIPAA Compliance reports.
  • ● Tracking remediation plans and performing follow-up procedures. ● Perform exit process audits for clients/suppliers exiting out of relationship from Bank of America
  • Sr. Systems Engineer – Third Party Audits – 2015 – 2019
  • ● Provide second level of support and subject matter expertise on the queries raised by the third
  • party auditors or assessors
  • ● Perform quality review of the assessments or audits performed by the auditors or assessors
  • ● Provide timely feedback on the deviations identified
  • ● Provide timely reporting to the management.
  • ● Perform root cause analysis on the new security trends and present through analysis on the impact of these
  • third party trends to the bank
  • ● Conduct training session on third party information security to new hires.
Third Party AuditsInformation SecurityRisk ManagementCompliance Standards

Tech mahindra

Senior Tech Associate

Apr 2010Dec 2010 · 8 mos · Hyderābād Area, India

  • Overview:
  • Worked as a Sr. Tech Support Associate with Verizon International which includes first line desktop and helpdesk
  • support the US clients.
  • Responsibilities:
  • ● 1st and 2nd line desktop / helpdesk support for all US Clients and Stake holders.
  • ● Providing technical support for all desktops and Laptops.
  • ● Troubleshooting all desktop related issues related to Microsoft Products viz. Outlook, Lync, OCS, Live Meeting etc.
  • ● Configuration, reinstallation and troubleshooting Lotus notes and Outlook.
  • ● Setting up users via Active Directory / Exchange Server, configuring new users with group policies
  • ● User account management through Active Directory Systems.
  • ● Handling calls on all user account password resets and related issues
  • ● Support to all Communications Software. E.g. MS Communicator, MS Outlook, Lotus Notes Connect, MS
  • LiveMeeting,
  • ● End to end resolution with Remote Desktop connection and Installation of various Software and add-ons on remote.
  • E.g. MS Office.
  • ● Troubleshooting basic VPN related issues.
  • ● Installation, troubleshooting and configuration of Routers, Modems and printers.
Technical SupportHelpdesk SupportTroubleshooting

Ibm

Senior Tech Associate

Dec 2007Mar 2010 · 2 yrs 3 mos · Pune, India

  • Overview:
  • Worked as a Sr. Tech Support Executive with Talk-Talk International which includes first line desktop and helpdesk
  • support the US clients.
  • Responsibilities:
  • ● Assisting with hardware/software installation.
  • ● Providing remote support service (In a helpdesk environment) and troubleshooting system related issues.
  • ● Understanding the scope of applications supported, diagnose application/data problems and ad- dress where
  • possible.
  • ● Handling provisioning issues like cease, re-provide and upgrades.
  • ● Managing and troubleshooting issues related to Outlook and Outlook express.
  • ● Troubleshooting password related issues and setting up internet connections.
  • ● Identifying issues with hardware internet tools like modem, router, cables and ADSL filters.
  • ● Assisting customers with configuration of various modems and routers.
  • ● Dealing with the escalated queries, technical issues and requests in regards to any customer query.
  • ● Handling calls from customers regarding issues with Broadband and mobile telecommunications Technology,
  • resolving technical queries with any hardware purchased by the customer.
Technical SupportRemote SupportTroubleshooting

Education

David memorial High School

GM Sanghi Degree college

Osmania University — Hyderabad

Osmania University, Hyderabad

Bachelor of Commerce - BCom — Commerce and accounting

Stackforce found 100+ more professionals with Third Party Risk Management & Information Security

Explore similar profiles based on matching skills and experience

Aashni Priya

Aashni Priya

GRC Analyst

at MobiKwik

India2 yrs 6 mos exp
ComplianceRisk Management
VN

Vishwak N.

Information Technology Security Manager

at Everise

Bengaluru, India11 yrs 8 mos exp
Compliance ManagementIT OperationsIT Security OperationsIncident ResponseProject Management
AC

Ayush Chhabra

Accumulated Expertise

at Career-Wide Experience

North Delhi, India0 mo exp
Information SecurityRisk Management
Akshat Sanwal

Akshat Sanwal

Security Analyst

at Zoom

Bengaluru, India6 yrs 6 mos exp
MD

Madhuri Deb

Security & Privacy Advisor

at Landmark Group

Dubai, United Arab Emirates12 yrs 3 mos exp
Application SecurityCloud SecurityCybersecurityData PrivacyGovernance
Shashank K.

Shashank K.

Co-Founder

at Redacto

Bengaluru, India14 yrs exp
Data PrivacyData Security
Shalini S.

Shalini S.

Assistant Manager

at Deloitte

Bengaluru, India5 yrs exp
CybersecurityData AnalysisRisk Management
Bhavana Maishale

Bhavana Maishale

Security Professional

at IBM

Bengaluru, India9 yrs 1 mo exp