Abhilasha Yadav

Part of cyber security audit team. Handling government sector projects

Involved with audit of deliverables : Change Management, ITGC, security AUDIT, IMS, BCP.

Documentation of Policies and Procedures as per ISO 27001:20013 and ISO 22301:2012 controls and requirements.

Risk Assessment and Treatment Evaluation as per ISO 27001 and ISO 22301.

Designed business continuity framework, including the corresponding policies and procedures based on ISO 22301

Conducted Business Impact Analysis, Risk Assessment and prepared risk treatment plans.

Prepared checklists based on ISO 22301 and CBDT policies and procedures to ensure compliance.

Conducted Internal Audit as per requirement of ISO 27001 and ISO 22301 requirements and advisory for closure of findings.

Analysis of problematic areas to provide recommendations and solutions.

Determined areas for improvement and implemented processes to alleviate problems.

Assessing needs for projects and made proposals to senior management.

• Responsible for Information Security Compliance for the RBS Group Client.
• Participated in the ISMS implementation & compliance of the frameworks of ISO 27001 standards.
• Performed internal audit activities on critical systems identified in the SOX frameworks.
• Highlighted non-conformity findings from internal audits to senior management & provide corrective suggestions.
• Involved in UAT testing of to be on boarded applications & identify the security risks to the Application Development teams
• Performed analysis of the Vulnerability of Windows, Unix servers & databases & application before it's implemented on live environment
• Risk assessment of all newly developed applications from the administrative & business perspective & captured them in Compliance registers.
• Review High privilege admin access used by the business operations and ensure the monitoring of the actions performed by the staff.
• Periodical review of the application administration to mitigate the risk. Responsible for workflow Management.
• Ensuring the project is executed as per schedule within time and quality constraints.
• Responsible for project documentation and maintenance of trackers.
• Setting up workflow, guidelines and procedures to ensure all requirements are taken care of.
• Creation of Department Shared drive using DFS. Generic mailbox creation and administration. Public folder creation and administration.
• First and second level Support to users for issues with DL, PF and mailboxes.
• NDR investigations
• Coordinated with auditing team on the access restrictions on Share drives and Public Folders. Lotus Notes account creations and administration.
• Worked on MS-Exchange server and provisioning access to the users. Provided training to the new joiners in the team and to make sure they get into production in a short time frame.

• ID Administrator for UNIX servers, databases and applications; Operational Security Coordinator to maintain proper access to the system and application.
• Preparing / generating reports on different platforms like UNIX on the basis of request for audit support.
• Assisted in the execution of technical meetings with customer for requirement gathering; troubleshooting all kinds of problems. Extended high-end technical support at sites and ensuring high customer satisfaction levels through promptly addressing client’s problems.
• Provided full access to sites during periodic maintenance & faults / alarms and rendering technical support.
• Worked on Active Directory – Managed user’s LAN Account and home drive. (Also using VBScripts) Moved user profile from one domain to another domain.
• Worked on mailbox permission. Responsible for security group creation.
• Involved with creation of Shared Drives and Top Level Folder.
• Involved in UAT testing of boarded applications & identify the security risks to the Application Development teams Spearheaded work as ID Administrator / Operational Risk & Security Coordinator, Operational Security Coordinator to maintain proper access to the system and application Prepared & administered reports on different platforms like UNIX on the basis of request for audit support and managed ID administration Provided Shared Drive Certification for Asia-Pacific region and maintained a scorecard for all the applications used in Asia-Pacific Region for proper access & identity Troubleshooting for Password resets, unlocking the account and the troubleshooting the problems clients face in logging in to applications of servers
• Produced accurate and timely collections reports, facilitating measurement, decision-making and engagement with customers.
• Taught employees how to control risks at front line.
• Performed in-depth research and investigations and recommended strategies to resolve problems and prevent further concerns.

• Worked as support executive for British Telecommunications Process.
• Listened to customers' questions and concerns to provide answers or responses.
• Built strong relationships with field operations team to support business development opportunities and improve service.
• Assigned and designated job territories to customer care staff according to performance and history.
• Devised recommendations to streamline and simplify customer support system and improve response time.
• Resolved issues through active listening and open-ended questioning, escalating major problems to manager.
• Monitored front areas so that questions could be promptly addressed.

• Spearheaded software installation, hardware maintenance and maintenance of software packages (FoxPro & Visual Basic-6.0)
• Supervised the internet facility & windows troubleshooting and managed maintenance of LAN & WAN, Windows NT 4.0 Server & Linux Server for e- mail
• Network Printer’s Monitoring
• Network Installation and Configuration for all regions
• Provided assistance for technical support team including other branches
• Systems & Network Administration
• Installation, Configuration, Administration and trouble shooting of network operating System
• Assign privileges to users and groups
• Internet access configuration
• Automated everything using a software(VBasic, foxpro) right from raw materials till packaging department
• Reduced huge amount of time for printing Medicine Tags which was earlier done manually by workers
• Arranged for systems for various department, and internet services and did
• LAN and WAN connectivity
• Trained people across departments