ZAMEERAHMED NASIPUDI

• Overall managing IT team and supporting the technical issues (Network/Data/Application/Database) for the project. • Closely working with the Business Operation team to fulfill IT requirements & address technical escalation in projects and work towards improving Client VOC. • Maintaining 99 % uptime of IT Infrastructure and adhering to agreed SLA. • Participate in Planning IT Projects, Testing, and Implementation of IT BCP/DR to ensure redundancy in event of a disaster.

• Extensive experience in Designing, Implementing, and managing multiple security products/tools like Web Content Filtering, DLP, Endpoint Protection, IPS, Vulnerability Network Scanners, File Integrity Monitoring • Performing Assessments and conducting audits in line with ISO, PCI, SSAE 16, etc. frameworks to assure control adherence and improvement. • Provide Audit support for internal and external reviews e.g., pre-audit preparation activities, support data collection, responding to data/meeting requests, etc... Respond to security-related audit and review findings including developing and tracking action plans. • Responsible for the Patch Management process for PAN India, which includes publishing advisories for IT devices using TEM reports and ensuring compliance with timelines defined by CIO Office. • Handling incident management monitoring, alerting, and escalation of security incidents which are violating security policy/threshold which are detected by IPS, DLP, Web Content Filtering, and File Integrity Monitoring and physical environment to Management (looping HR manager). • Conducting analysis & understanding of the requirements from an information security perspective and reviewing the contractual requirements related to any change for any new or existing projects. • Ensure Information Security activity like ID Validation, Patch Management, Antivirus Management, Health Check, Vulnerability scan on OS (Windows, Non-windows), Middleware, and Applications have been executed as per the timeline and well documented. • Participated in Weekly/Monthly Reviews with performance teams and the management/client & preparing dashboards for IBM covering Information Security compliance metrics

• Currently overseeing Governance, Risk Management & Compliance (GRC) for an EU client utilizing IBM Cloud. • Facilitate, manage, and provide audit support for Internal/External/Client Standards (ISO 27001, SSAE16, etc.) & various Corporate Audits for primarily EU Clients (BFI) with applicable GDPR regulations. • Well-versed in applying the IT security controls NIST - 800-53 & ISO/IEC 27001:2013 to secure the environment. • Perform risk management for IBM/ Kyndryl and the client based on SOW/DOU and contracts. • Carry out periodic security assessments on various business critical applications/infrastructures and articulate technical findings for management review part of Risk Management. • Perform IT security risk assessments & systems analysis for varied On-Prem and Cloud deployment models. • Well-versed in Security controls management viz. Security Health Checks, Patch Management, Vulnerability Assessment, Risk Assessment, Self-Assessment, Regulatory controls, etc. • Encompassing and applying security best practices for process improvements, implementation of new tools, automation (Ansible playbooks, SATHC, IBM TEM, etc.), and integration with business processes. • Ability to assert and develop use-case logics to detect vulnerability exploitations using SIEM technology (QRADAR) / guiding SOC team in smoothly executing their run books