Aug 2021 – Aug 2025 · 4 yrs · Mumbai, Maharashtra, India

• Principal Security Architect leading cloud security and compliance conversations with customers, partners and regulators in India and South Asia.

Apr 2021 – Jul 2021 · 3 mos · London Area, United Kingdom

• Heading the security, risk and compliance function globally for OakNorth. Accountable for risk governance, product security architecture and operations, security assurance, customer onboarding, supplier risk.

Jul 2019 – Mar 2021 · 1 yr 8 mos · London Area, United Kingdom

Oct 2017 – Jun 2019 · 1 yr 8 mos · Greater Delhi Area

• Security and Compliance specialist helping establish Amazon Web Services as a leading technology platform in India and South Asia in Public Sector (Education, Non-profit, Central, State and Local governments).

Jun 2016 – Oct 2017 · 1 yr 4 mos · Gurugram, Haryana, India

• Heading the Information Security, Business Continuity and Data Privacy functions reporting to the CRO.
• Accountable to the Operational Risk, Management Risk and Board Risk Committees as the 2nd line of defense.

Mar 2011 – May 2016 · 5 yrs 2 mos · Gurugram, Haryana, India

• Global leader for Information Security, Business Continuity and Data Privacy functions.

Sep 2009 – Mar 2011 · 1 yr 6 mos · Doha, Doha, Qatar

• As the 3rd line of defense - planning, executing and reporting the following audits:
• Information Technology (IT General Controls, InfoSec, BC/DR Planning),
• Physical Security,
• Consumer Banking,
• Channels (Branches, ATMs, Call Center)

Jun 2007 – Sep 2009 · 2 yrs 3 mos

• As member of the IT Effectiveness group within the Advisory Line of Service, led and participated in several projects ranging from information security institutionalisation, IT service management, management of IT initiatives, vendor quality-assurance, to business-process mapping. Clients include leading firms from Telecommunications, Healthcare, ITeS, Government, and Public-Sector Utilities space.
• As the security officer for PwC India, centrally managed the rollout of the ISO27001-compliant information security management system across PwC India (all locations, all lines of service).

Feb 2006 – Jun 2007 · 1 yr 4 mos

• Member of the global information security team that oversaw organisation-wide security and continuity practices. Supported business development through RFx responses and streamlining knowledge-management across Cognizant by creating a 'cookie-cutter' for proposals, creating an internal portal for the GIS team.
• Ensured readiness for external audits (ISO27001, SAS70) and customer reviews/site visits for key banking, financial, healthcare and pharmaceutical accounts.

Apr 2005 – Jun 2005 · 2 mos

• 2 month on-site internship with Barclays Capital, Singapore conducting a study on its Global Network Operating Standards and Procedures. Gained first hand knowledge of various ITIL processes, viz. Incident Management, Problem Management, Change Management, Configuration Management, and Release Management.

Aug 2003 – Jun 2004 · 10 mos

• Implemented bespoke top-secret communication software for the Indian Armed Forces.
• Developed a Java-based client-server application for automatic security updates.
• Researched on applied-security fundamentals such as firewalls, public-key cryptography.