Avijit Tewari

Leading as an AVP IT Infra, a business oriented information security function, responsible for providing vision, leadership, oversight and management of vendor, cyber security policies, procedures and practices. Ensuring and implementing industry best practice policies, procedures and practices that address physical security, cloud hosting, cyber security, data privacy, protection, business resumption and technology recoverability, prepare the organization to identify and respond to the range of threats from routine attacks to targeted business disruptions, as well as compliance with relevant laws and regulations. 2 • Conducting SAM Audit and others Audits (27K, RBI etc.) • Vendor management and vendor selection process for various cyber security projects • Conduct & gap mitigation for RBI banking guideline • Conducting Scanning WASA & Network based • IS audit internal & engaged with external audit. • Worked with management to update security manuals and address current concerns. • Implemented system recovery procedures to minimize losses should an attack occur. • Working with RBI audit guild line & deployment SOC as per RBI guidelines.

Associated with Ericsson India Global Services Pvt Ltd as Technical Security Consultant for MSDP Working & consultant projects like DU Dubai, Saudi Mobili, Jain Iraq etc. IT Security professional with around 10 years of experience in SIEM Solution, Infrastructure Design ,IT Implementation Planning and Management and hands on experience in Vulnerability Assessment, Security Risk Assessment, System administration, Monitoring, troubleshooting, Implementing Juniper ,Cisco, Nortel, Nokia,Checkpoint,HP Network and security devices ,expertise in patch management, network services and application servers. SPOC for IT Security Audit and Enterprise Security Audit. Design & preparing RFS, RFP and Enterprise Network & Security documents. Working also Project & People Manager and working on TG2, TG3, TG4, TG5 tollgates & Agile Methologies. Gap analysis of 27K ISO with objects controls & recommendation. Deployed Web Application Firewall (WAF)configurations; OS & Infra Hardening

Work closely with Global IT Security Team in US and managing the vendor team in APAC for protecting IBM Information Systems. Participate in the Architecture Review Board meeting from IT Security for evaluating Security risk for new Application/Infrastructure and providing consultation for appropriate security controls Performing and managing the quarterly user access validation for all Applications and Infrastructures to maintain least user privileges as per SOX 404. Periodic review of the Organizational ISMS policies and procedures and perform internal audits on the selected Controls and Statement of Applicability (SoA) in accordance with ISO27001: 2005 Review Security Waivers (Business Cases) to evaluate risk of Organization Assets / Information and approve/reject accordingly. Perform IT Security Investigation, Security Event Management and Compliance. 3 Heading Capex & Opex budgeting for IBM infra. Preparing & managing the annual budget and operating expenditures for network & infrastructure domain.