Ajay Bamzai
Watford
Summary
We are responsible and ensure our effort are prioritized with right balance and ambition to achieve company’s vision and goals.
Leadership Role As a part of leadership team in UK EMEA responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. As a manager Information Security, ensuring in identifying threat vectors in the process of developing, implementing new technology, business cases and day to day Operations and ensuring mitigation plan are 100% implemented. Assure adherence to Risk & Control, Compliance standards, direct support to Global IT Risk. Ensuring Infosec policy policy/standards are followed with due diligence in all projects. Develop periodic goals and to manage and motivate team members towards the goals set, high performance team with awards and ongoing training as per latest technologies. Problem Management Relationship Management Conducting Infosec mentoring secession for Cyber security awareness across engineering centre. Motivated Team Lead possessing excellent leadership and planning abilities. Focused on delivering high-quality products on tight schedules. Monitors, trains, and encourages employees to improve skills and meet demanding targets. History of successfully developing and managing strong teams through proactive training and issue management. Dedicated Team Leader with expertise in quality assurance initiatives, issue resolution and interpersonal communication. Proficient with project management, personnel training and production scheduling. Sets example for work ethic, punctuality and quality.
Overview
15
15
years of professional experience
1
1
Certification
Work History
Team Lead Manager
Mastercard
London
03.2023 - Current
- Company Overview: Working with Mastercard, Pune–Manager, Information Security Governance and Compliance
- ISO27001- Program Lead - Financial services covering Application and Infrastructure
- Leadership endorsement
- Scoping
- Gap Assessment
- External Audit - Stage 1 and Stage 2
- Audit Closure
- Audit Report
- Working with Mastercard, Pune–Manager, Information Security Governance and Compliance
- Provided leadership and guidance to team members, ensuring that tasks were completed on time and to a high standard.
- Developed strategies to increase team productivity and improve customer service levels.
- Conducted performance appraisals for team members, providing feedback and identifying areas of improvement.
Manager
Mastercard
Pune
09.2019 - Current
- Company Overview: Working with Mastercard, Pune–Manager, Information Security Governance and Compliance
- Global Governance Programs: SOX/Policy framework, Implementing ISO27K Controls across DC’s
- Hands-on experience in Global /Infrastructure Compliance programme
- Compliance & enforcement of Managed Infrastructure Services Improvement
- Audit Program – Supporting IA team for Internal review with functional SME
- Work with other leaders within technology management and three lines of defenses to assist in timely addressing control gaps, identifying potential opportunities for improvement, and advising on control designs for large complex programs (e.g., cloud, API, third-party vendor oversight, data governance)
- Ensure appropriate security risk management and compliance, which includes risk mitigation strategies
- Develop and implement security policies procedures, standards, and training
- Routinely communicate security trends, strategies, and incident data to senior management and make formal presentations to support business objectives
- Working with Mastercard, Pune–Manager, Information Security Governance and Compliance
- Created monthly reports for senior management summarizing operational performance metrics.
- Established processes to ensure efficient workflow throughout the organization.
- Resolved conflicts between employees by providing guidance on company policies and procedures.
- Initiated new projects that resulted in increased productivity across all departments.
- Ensured compliance with all applicable laws, regulations, industry standards.
- Assigned tasks to associates to fit skill levels and maximize team performance.
- Coordinated cross-departmental projects to ensure timely and successful completion.
Manager
Western Union
Pune
06.2017 - 07.2019
- Company Overview: Working with Western Union, Pune–Manager, Information Security Risk Assessment
- International Projects Handled
- Project Implemented in Western Union (APAC/EMEA/NA/Russia)
- WU Digitalization – Transformation from R3 Platform to cloud AWS Amerigo Platform
- Sprints series DMI Agent migration in middle-east countries and migration into KYC Integration for APAC/Middleast/Australia/UK based Kiosk
- Coordination with TVM -Threat Vulnerability Management team for scan results and getting back to developers for severity 4 & 5 remediation before going for approval from UAT to PROD
- Involved in Denver Datacentre migration from physical DC to AWS Cloud
- Working with Western Union, Pune–Manager, Information Security Risk Assessment
Manager
Airtel India
Mumbai
12.2015 - 07.2017
- Company Overview: Working with Airtel India, Mumbai–Manager, Information Security, Risk Assessment
- Project Handled in Airtel India
- Secure WIFI 3415 using secure LDAP encryption for secure, assisting in installing RSA feature for secure access and VDI feature
- Monitoring and reviewing
- Symantec DLP Cloud Solution-Perform local scanning, detection, and real-time monitoring for a wide range of events on Windows 7, Windows 8, Windows 8.1
- Monitor confidential data that is being downloaded, copied, or transmitted to or from laptops and desktops
- This includes: - Applications: Outlook - Cloud Storage: Box, Dropbox, Google Drive, Microsoft OneDrive - Email: Outlook, Lotus Notes - Network Protocols: HTTP/HTTPS, FTP - Removable Storage: USB, MTP, CF and SD cards, eSATA, FireWire - Virtual Desktops: Citrix, Microsoft Hyper-V, VMware
- Penetration testing with vendor Earnest and Young for Web based Application like E-Fresh/E-credit and network devices and with quarterly review of report and presentation to Board Members
- Working with Airtel India, Mumbai–Manager, Information Security, Risk Assessment
Information Security Officer
Roshan Telecom
Dubai
06.2014 - 12.2015
- Company Overview: Working with Roshan Telecom, Dubai – Information Security Officer
- Implementation Risk assessment and Internal Audit
- IT Security POC Penetration Testing/Vulnerability Check
- Change Management compliance as per information security guidelines
- Strict adherence to InfoSec guidelines – Policy/Standards/Baselines
- Drive Centralization and automation of security tasks across the organization
- Working with Roshan Telecom, Dubai – Information Security Officer
Asst Manager
IDEA Cellular Ltd
Pune
03.2010 - 04.2014
- Company Overview: Working with IDEA Cellular Ltd – Asst Manager, Information Security
- IT Security – Penetration Testing for Internal & External threats, being part of IP security to assist in internal and external audit against IP Security policy for secure access/Secure applications/Secure networks
- Conduct, Review and provide direction to all Security Calendar Activities like TCP/IP scanning, ID Validation, Health checks, Logs review, Anti-Virus management, Patch Management
- Conduct, Review and provide direction to Monitor health of IT Security processes like Antivirus and Patch management and take corrective action as required
- Drive Centralization and automation of security tasks
- Drive Enterprise wide projects related to Security Tools Implementation and risk assessments and leading a team of technical people & provide guidance on the ongoing projects
- Risk- Sensitize all cross functional departments/management and users and system administrators for incident response procedures, causing delayed response and evidence can be corrupted or lost, greatly increasing the potential impact of an incident
- Working with IDEA Cellular Ltd – Asst Manager, Information Security
Education
B-Tech - computer engineering
01.2004
Skills
- Strong leadership, interpersonal skills, relationship building, and negotiation skills are required, with a strong track record of building strong internal and external relationships
- Project planning and multitasking
- Demonstrate ethics and values to generate high team trust
- Problem Solver: Ability to develop effective solutions to problems at hand
- Ability to engage with global stakeholders from diverse business units, and build long-term relationships
- Proactive, structured, and collaborative approach, and ‘ownership,’ learning, and growth mindset
Certification
- CISA, 05/01/18
- CISM, 05/01/21
- CISSP, 05/01/17
- AWS Cloud Security, 02/01/18
- ISO27001:2022, 04/01/24
Coreexpertise
- Audit life cycle and engage stakeholders on control requirement, Issue management and end to end mitigation plan and closure.
- Finding Management: Working with control owner on acceptance and mitigation plan and updating leadership of findings and remediation status with corrective action plan duly documented.
- Control testing and continuous monitoring of technical controls to ensure what ‘we say is what we do’.
- Responsible for providing guidance and oversight of the first line of defense.
- Auditing at enterprise level as well as product level covering non-technical/technical controls.
- Leading Technical control like Change Management, Access Management, Network controls, SDLC controls, BC-DR, Vulnerability management using OWASP top 10 principles.
- Datacenter specific Audit – Physical and logical Access, CCTV review, periodic access review and validations and periodic maintenance of utilities.
- Cloud: Control gap assessment of services/application hosted over cloud infrastructure covering access management/logging and monitoring, BC-DR, Cryptography.
Projectscompleted
- Enterprise level audit of Core datacenters (03) in US.
- Service level audit of service/application as per contractual obligation covering RTP Hub- Real time payment – APAC/LAC region.
- Zaap services covering Pay by account and pay by bank hosted from APAC datacenters.
- FCS – Financial crime solution services hosted from Europe datacenters.
- Core Financial services hosted from US based datacenters.
Governanceandcompliance
- As SME well versed in Policy framework/Risk Assessment/Auditing Methodologies and approach to information security policies and standards and familiar with GRC tools.
- Deep understanding of control framework ISO27001/SOC1&2/PCI DSS/ISAE3000.
- Strong articulated based approach and consensus building skills with control owners.
- Facilitate cross-functional review and controls across multiple business units.
- Experience in delivering presentations and engaging with senior leadership.
- Knowledge of laws, regulations, policies and ethics as they relate to cyber security and ITSM (e.g. GDPR, FBA, CBA, PFMI).
Degree
Graduate Degree, B-Tech in computer engineering, 1st Division (74%), 2000-2004
Languages
- English
- Hindi
- Kashmiri
Currentposition
Team Lead Manager, Mastercard, London, England, 03/01/23
Personal Information
- Total Experience: 15+ years
- Passport Number: K9919898
- Passport Expiry Date: 12/31/23
- Date of Birth: 10/20/85
Accomplishments
- First ISO27001 Certification for MasterCard for 03 DC's in US.
- Lead ISO Audit for Financial Crime Solutions.
Languages
Hindi
First Language
English
Upper Intermediate (B2)
B2
Timeline
Team Lead Manager
Mastercard
03.2023 - Current
Manager
Mastercard
09.2019 - Current
Manager
Western Union
06.2017 - 07.2019
Manager
Airtel India
12.2015 - 07.2017
Information Security Officer
Roshan Telecom
06.2014 - 12.2015
Asst Manager
IDEA Cellular Ltd
03.2010 - 04.2014
B-Tech - computer engineering
Similar Profiles
Susan VinsonSusan Vinson
Customer Relationship Management Specialist at MasterCardCustomer Relationship Management Specialist at MasterCard
Rafal TrepkaRafal Trepka
VP, Customer Solutions, Central Asia & Caucasus at MastercardVP, Customer Solutions, Central Asia & Caucasus at Mastercard
Juan Pablo AntonovichJuan Pablo Antonovich
Account Manager at MasterCardAccount Manager at MasterCard
Senthilkumar SelvarajSenthilkumar Selvaraj
Senior Lead Developer at MasterCardSenior Lead Developer at MasterCard
Rene GreblickiRene Greblicki
Co-Founder & Operations Manager at Boat Cleaning Services, ACI Marina TrogirCo-Founder & Operations Manager at Boat Cleaning Services, ACI Marina Trogir