AKASH ATITHYAN

Technology Risk Consultant – CyberArk / PAM

• Assessed and governed CyberArk (PAM) implementation across Dev, Test, Prod & DR environments.
• Performed risk reviews on Vault, CPM, PSM, PVWA, PSMP, AIM configurations and privileged account onboarding.
• Evaluated Master Policy, Safe design, Platform controls, LDAP/AD integration for compliance and security posture.
• Reviewed privileged access onboarding for Windows, UNIX, Databases and Network Devices.
• Conducted control testing on approval workflows, session monitoring and password rotation policies.
• Supported remediation of audit findings and strengthened PAM security controls.
• Partnered with engineering teams on upgrades, patch validation and vault hardening from a risk perspective.
• Provided advisory on IAM/PAM architecture aligned to regulatory and security standards.

Tech Risk Enterprise

• Present IT strategies, AI risk metrics, ITGC outcomes, and assessment summaries to the Board of Directors and GRC teams.
• Ensure compliance with GDPR, HIPAA, ISO 27001, PCI DSS and local data protection laws.
• Oversee penetration testing, risk assessments, and periodic security audits across global infrastructure.
• Lead incident response, disaster recovery, and business continuity planning.
• Conduct firm-wide cybersecurity training and awareness programs.
• Manage SSO, IAM, and privileged access across hybrid environments (CyberArk, Azure AD).
• Maintain vendor governance and contract compliance.
• Develop AI control frameworks and risk policies aligned with the EU AI Act, Colorado AI Act, and UAE AI Ethics Principles.
• Conduct cloud risk assessments (Azure/AWS), KQL-based analytics, and threat investigations using SIEM tools.
• Lead third-party and AI vendor risk assessments focused on data privacy, bias mitigation, and model transparency.
• Fidelity Investments - U.S. financial services firm managing client assets; operations in 20+ countries including UAE, U.K. Hongkong and India
• Key Achievements
• Spearheaded an AI Governance initiative covering 10+ business units, resulting in a 35% reduction in AI model bias incidents and improved regulatory readiness for the EU AI Act.
• Led SOC 1 and SOX control testing, achieving a 100% audit pass rate across all ITGC areas for FY2024.
• Improved SIEM threat correlation efficiency by 28% through optimized KQL queries and custom dashboards.
• Designed and implemented an AI incident response framework, now used as a Fidelity best practice across regional risk teams.
• Achieved zero non-conformities in internal ISO 27001 and GDPR audits during 2024 assessments.

CyberArk Implementation

• Deployed and administered CyberArk (Vault, CPM, PSM, PVWA, PSMP, AIM).
• Implemented PAM architecture integrating Windows, UNIX, DB & network devices.
• Configured Safes, Platforms, Master Policy, LDAP/AD integration.
• Led account onboarding, auto-discovery and approval workflows.
• Managed upgrades, patching, DR setup and vault maintenance.
• Delivered solution design aligned to client infrastructure and security requirements.

SIEM ALERTING / MONITORING

• Monitored SOC operations using Splunk, Azure Sentinel, Cortex XSOAR, and GCP Chronicle.
• Conducted cloud risk assessments and compliance checks across Azure, AWS, and GCP.
• Performed incident triage and threat hunting, analyzing phishing, malware, and insider threat cases.
• Automated containment and playbook execution using Cortex XSOAR.
• Delivered root-cause analysis reports to risk and compliance teams.
• Implemented and managed Data Loss Prevention (DLP) controls and policies to prevent data leakage across endpoints, cloud, and email channels.
• Led SailPoint IdentityIQ/IdentityNow implementation and ongoing access governance, including lifecycle management and periodic access reviews.
• Managed Microsoft Security platforms (Defender suite, Azure Identity, Purview) to strengthen enterprise security posture and compliance.
• Conducted security awareness sessions, stakeholder engagement workshops, and targeted training to drive adoption of security controls across business units.
• Wells Fargo - U.S.-based multinational financial services company managing over USD 1.9 trillion in assets, serving global banking, investment, and treasury clients.

• Client: Shell Oil Company
• Implemented and enforced PAM policies using CyberArk and RBAC to secure privileged access and reduce insider threat risks.
• Integrated PAM with IAM systems to centralize authentication and streamline provisioning across the organization.

• Client: Shell Oil Company
• Access Provisioning: This involves provisioning user accounts, assigning appropriate permissions, and configuring access controls according to established policies and procedures
• Tools used: Active Directory (AD), Microsoft Forefront Identity Manager (FIM), Privileged Identity Management (PIM), Shell scripting, and service account management.