Rashmi Iyer

Operations Associate

Bengaluru, Karnataka, India20 yrs 7 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Expert in Risk Management and Compliance frameworks.
  • Proven track record in DevSecOps and Business Continuity Management.
  • Strong leadership in establishing security frameworks and policies.
Stackforce AI infers this person is a Cyber Security and Risk Management expert with extensive experience in DevSecOps and compliance frameworks.

Contact

LinkedIn

Skills

Core Skills

Risk ManagementComplianceDevsecopsInformation SecurityBusiness Continuity ManagementConfiguration Management

Other Skills

.NETAI toolsAgile MethodologiesAuditsAutomationBuild ManagementCC#ChefClearCaseContinuous IntegrationDevOpsDisaster RecoveryElastic Stack (ELK)GRC tools

About

A passionate and driven Global Program Manager and Cyber Security Lead at NXP. My core competencies include Risk & Compliance, Supply Chain Security and DevSecOps. I am committed to delivering innovative and secure solutions that meet the needs and expectations of our customers and stakeholders. I bring diverse perspectives and experiences to the team, as I have worked across different functions, geographies, and cultures. In my current role, I am responsible for establishing and maintaining a new supply chain security framework, as well as conducting audits and risk assessments for various solutions in the organization. I work on streamlining Risk Management and leveraging AI capabilities to accentuate Security processes. Expertise in establishing Business Resilience Programs at an enterprise.

Experience

20 yrs 7 mos
Total Experience
5 yrs 1 mo
Average Tenure
10 yrs 6 mos
Current Experience

Nxp semiconductors

3 roles

Sr. Manager Risk and Compliance

Apr 2022Present · 4 yrs 2 mos

  • ● Addressing Risk, Compliance & Audits across the enterprise.
  • ● Author and owner of multiple enterprise policies based on ISMS, NIST and Zero Trust.
  • ● Overseeing execution and quality of Business Impact Assessment using the Enterprise Risk Matrix for applications across the enterprise.
  • ● Drive risk assessments of solutions to identify security NFRs and their delivery.
  • ● Providing Risk Treatment plan and Mitigations. Performing security controls exception.
  • ● Administration of GRC tools.
  • ● Security Assessment of SaaS solutions and other Cloud Applications.
  • ● Facilitated Internal and External Security Audits. E.g. ISO27001, SoC2, IATF16949.
  • ● Using AI tools to automate Customer Audit Questionnaire.
  • ● Strategized and Implemented Ransomware Preparedness at the enterprise level.
  • ● Managing the Third-Party Risk Management for NXP Semiconductors. Established a techno-functional framework for evaluating vendor products for security risks.
  • ● Leading enterprise-wide efforts for IT-BCM activities, not limited to BC-DR Drills, Table-Top Exercises, supporting teams with planning and execution of drills; with specialization in executing assessments for manufacturing units.
  • ● Program Manager for driving Audits of NXP from both internal, external and customer Audits.
GovernanceRisk ManagementComplianceAuditsRisk AssessmentGRC tools+2

Business Information Security Officer (GRC & BCM)

Promoted

Jan 2021Present · 5 yrs 5 mos

Sr. TECHNICAL LEAD

Dec 2015Jan 2021 · 5 yrs 1 mo

  • Software Release Management and DevSecOps for Mobile Division.
DevSecOpsSoftware Release Management

Siemens technology services

DevSecOps Lead & Information Security Consultant

Nov 2009Nov 2015 · 6 yrs · Bangalore

  • Lead a team of five for DevSecOps activities.
  • → Successfully Implementation of Continuous Integration using Jenkins for all projects in the Division.
  • → Mentoring team members in various processes and policies.
  • → Setup various Reporting and Monitoring tools e.g., NCover for Code Coverage, Zabbix for Monitoring, Bugzilla for defect tracking.
  • → Achieved 50% Performance Improvement by Automating and running Parallel executions of Compilations, Unit Test and Smoke Test.
  • ● InfoSec Advisor and internal auditor for ISO27001 in the business unit.
  • → Authored ISO27K based policies for the organization.
  • → Strategized the process for identification of Critical CIs.
  • ● Schedule and drive security evaluations of applications.
  • → Weekly vulnerability analysis based on Nessus scan and fixing them. Overseeing of Security Patches.
  • → Manual and automated penetration testing of applications.
  • ● Authored and Implemented BCDR Plan for Business Unit.
  • ● As a part of InfoSec - Change Control Board negotiated terms and policies best suited for the Organization and at the same time achieved the requirement of Information Security.
DevSecOpsContinuous IntegrationSecurity EvaluationsISO27001Information Security

Philips

Sr. Systems Engineer

Sep 2008Oct 2009 · 1 yr 1 mo · Bangalore

  • Configuration Manager in Philips Healthcare
  • Automation of various housekeeping activities
  • Created a Build Dashboard which not only displayed results but also the ETA and other reports.
  • Smooth Migration of Source Control Servers.
Configuration ManagementAutomationBuild Management

Wipro technologies

Sr. Software Engineer

Jan 2005Jan 2008 · 3 yrs · Bangalore

  • Configuration Manager for couple of Projects during my tenure.
  • Streamlined Build and Release Management of few Legacy Products.
  • Migrated Builds from one Platform to a new one.
  • Migration of Source Control.
  • Automation for House Keeping Activities.
Configuration ManagementBuild ManagementAutomation

Education

Symbiosis Institute of Management Studies

PGDHRM — Human Resources Management and Services

Jan 2006Jan 2010

S.I.E.S College, Sion, Mumbai

Bachelor's degree in Computer Science — Computer Science

Jan 2002Jan 2005

Stackforce found 100+ more professionals with Risk Management & Compliance

Explore similar profiles based on matching skills and experience

Shabasy S

Shabasy S

Lead Software Engineer

at UST

Thiruvananthapuram, India15 yrs 2 mos exp
React.jsProject ManagementMicrosoft Azure
Mohammad Yeasin Arafat

Mohammad Yeasin Arafat

Assistant Manager (Hr & Admin, Accounts, People & Culture, Liaison, Events & Training)

at Bfinit a cosmopolitan place for clients & products

Dhaka, Bangladesh9 yrs exp
HR AdministrationTraining ManagementAccount ManagementOperations ManagementVendor Management
Howard Kelly

Howard Kelly

Founder & Director | Cyber Security, Technology, Data & AI

at Meliora

Hong Kong, Hong Kong SAR13 yrs 7 mos exp
Cyber SecurityRisk Management
Ankit Singh

Ankit Singh

Sales And Marketing Intern

at Prudent Corporate Advisory Services Ltd.

Greater Delhi, India3 mos exp
BankingTeam Management
Ravindra Shrivastava

Ravindra Shrivastava

Application Engineering

at Synopsys Inc

Acton, United States24 yrs 7 mos exp
Application EngineeringEmbedded Memory Design
Pratik G.

Pratik G.

Security Engineer

at eGain Corporation

Sunnyvale, United States5 yrs 1 mo exp
Cloud Security ArchitectureIAM Governance & Access ControlRisk Assessment & ManagementThreat & Vulnerability ManagementSecurity Controls Implementation & Validation
Mintu Kumar Chetry

Mintu Kumar Chetry

AVP & Head of Network Operations

at airtel

Bengaluru, India20 yrs 11 mos exp
Nikhil Sinha

Nikhil Sinha

Vice President Business

at Simplilearn

Bengaluru, India13 yrs 8 mos exp
Sales ManagementBusiness DevelopmentEntrepreneurshipOperations ManagementProcess Engineering