Work Preference
Summary
Overview
Work History
Education
Skills
Certification
Websites, Portfolios and Profiles
Awards
Interests
Timeline
Receptionist
Archana Jothi
Open To Work

Archana Jothi

Chennai

Work Preference

Job Search Status

Open to work
Desired start date: Open to discussion

Desired Job Title

VP Information SecurityEquivalent Senior leadership Role

Work Type

Full TimePart TimeContract Work

Salary Range

₹5500000/yr - ₹7500000/yr

Important To Me

Work-life balanceFlexible work hoursWork from home optionCareer advancementCompany Culture

Summary

An Information Security and Cybersecurity leader with 18+ years of experience, currently serving as AVP - Information Security, leading and partnering with business and technology stakeholders across enterprise security, cyber risk management, and governance in regulated environments.My leadership approach is business-aligned and outcome-driven, focused on translating cyber risk, information risk, and control gaps into clear, actionable insights. I specialize in security strategy, risk assessment, governance frameworks, audit readiness, regulatory compliance, and control maturity, ensuring security is embedded into business processes rather than operating in silos.As a CISA and COBIT certified professional, I bring deep expertise in IT risk management, information security governance, internal and external audits, controls assurance, policy development, incident readiness, and continuous improvement. I have led enterprise risk initiatives, audit programs, and security transformation efforts, with a strong emphasis on operational resilience and sustainability

Overview

18
18
years of professional experience
5
5
Certification

Work History

AVP INFORMATION SECURITY

Nationstar(NSM) Mortgage Private Ltd.(Mr.Cooper)
Chennai
10.2023 - Current
  • Provided executive oversight of the annual functional budget, aligning financial investments with enterprise risk, compliance, and control priorities, while driving measurable cost optimisation.
  • Directed the strategic implementation of GRC tooling, standardising risk and control processes, reducing manual dependencies, and improving regulatory reporting efficiency across the organisation.
  • Enabled executive visibility of cyber risk posture by partnering with the Group CISO to deliver strategic risk updates and progress reports to senior leadership.
  • Managed a team of 50+ by providing guidance, setting goals and objectives, delegating tasks, and monitoring performance.
  • Designed and institutionalised enterprise-wide risk and performance metrics across digital and compliance initiatives, improving executive visibility, accelerating decision-making and increasing control effectiveness by 25%.
  • Coordinated cross-functional teams to deliver large-scale projects within agreed-upon timelines.
  • Drove process optimisation initiatives that improved operational efficiency while reinforcing compliance and risk controls
  • Established a KPI-driven governance framework for compliance programs, enabling real-time executive reporting and driving a 40% improvement in remediation tracking and accountability..
  • Launched a high-potential manager development initiative that improved leadership bench strength, increased internal promotion rates, and enhanced retention of critical talent..
  • Managed relationships with key stakeholders, facilitating productive negotiations and securing lucrative contracts.
  • Coordinated with the IT department to streamline data management processes, improving data accuracy by 30%.
  • Championed automation of high-volume manual processes, reducing processing time by 75%, and improving control reliability.
  • Orchestrated the successful integration of new technology systems, enhancing operational productivity.
  • Conducted detailed performance reviews, identifying areas for improvement and driving team excellence.
  • Investigated reported incidents to recognise and implement operational improvement requirements.
  • Developed comprehensive training programmes, enhancing staff capabilities and supporting career progression.

SENIOR MANAGER-INFORMATION SECURITY

Nationstar(NSM) Mortgage Private Ltd.(Mr.Cooper)
Chennai, India
05.2016 - 09.2023
  • Responsible for the overall management of the offshore Information Security department which includes budget management, resource planning, execution of strategic initiatives, and hiring, training, and motivating of team members in multiple geographic locations.
  • Analysed operational metrics to identify optimisation opportunities and implemented process enhancements to improve productivity and service delivery.
  • Conducted information security awareness training programs for all employees of the Organisation, contractors, and approved system users.
  • Worked on Application User Access Management, ITGC controls, Regulatory Compliance, Change Management, GRC, SAS 70 Type I and Type II Audit Support, SSAE 16, SOX 404, Internal Audit, Security Administration, Identity and Access Management, Security Operations, ServiceNow, and SailPoint.
  • Prepared comprehensive project status reports for senior leadership, providing actionable insights on progress, risks, and mitigation plans.
  • Participated in recruitment initiatives by interviewing potential candidates and selecting suitable hires.
  • Mentored junior staff in the organisation's business processes, customer service standards, and quality assurance protocols.
  • Coordinated with internal departments to ensure the successful execution of projects according to timeline and budget constraints.
  • Cultivated work environment focused on personal responsibility, continuous improvement and delivering high-quality results.
  • Implemented innovative in-house strategies that increased brand awareness by 50% and drove revenue growth.
  • Streamlined project management processes, reducing project completion times by 10% and enhancing team collaboration with a supportive 24/5 team.

SENIOR ASSOCIATE

Cognizant Technology Solutions India Pvt Ltd
Chennai
05.2012 - 03.2016
  • Collaborated with Risk, Compliance, and Legal functions to develop and implement comprehensive audit strategies aligned with regulatory requirements.
  • Advised and influenced senior stakeholders on risk, control, and process optimisation, ensuring timely closure of control gaps.
  • Implemented the planning and reporting of audits, reviews, and investigations, with high standards of accuracy and actionable recommendations.
  • Executed IT governance initiatives by implementing policies, standards, and control requirements aligned with COSO, COBIT, and ISO/IEC 27001 best practices.
  • Provided expert consultancy to business units on process reengineering and regulatory change management.
  • Conducted a Gap Analysis Review (identification of process and control gaps with respect to the ISO 27001 standard) for mapping existing client processes, policies, and additional internal requirements to ISO 27001 for major biopharmaceutical industry clients.

SENIOR SOFTWARE ENGINEER

iGate Global Solutions Pvt Ltd
Bengaluru
09.2007 - 05.2012
  • Reviewed the process narrative, Test of Design (TOD), and Test of Effectiveness (TOE) for applications as per the standards of the client.
  • Performed quarterly system access reviews for client-regulated assets (all application and database accounts) as part of the SOX assessment cycle.
  • Owned end-to-end project execution independently, ensuring timely delivery, quality standards, and stakeholder alignment.
  • Interacted with the Application Owners to resolve compliance issues and followed up on the remediation actions until closure.
  • Managed external audit engagements, partnering with Big 4 firms including KPMG and Ernst & Young to ensure audit readiness, timely evidence submission, and successful compliance outcomes.
  • Performed periodic audits on accounts across SOX/Non-SOX applications, network domains, servers, and databases.
  • Acted the role of 'Additional Business Internal Reviewer' to review and approve the SOX assessments done by the application owners.
  • Drove governance processes, including risk assessments, control testing, issue tracking, and control attestation exercises.
  • Partnered with Line 2 (Risk & Compliance) to ensure alignment across risk frameworks and regulatory expectations.
  • Implemented continuous improvement of control design and performed assurance checks to ensure control effectiveness.

Education

MASTER OF COMPUTER APPLICATIONS - Computer Applications

Avinashilingam University for women
04.2007

Skills

  • ITGC controls, SOX Audit, Assessment, First /Second Line of Defence
  • Risk management
  • Project management
  • GRC tooling
  • Budget management
  • Cybersecurity awareness
  • Process improvements
  • Stakeholder engagement
  • Performance monitoring
  • Cross-functional collaboration
  • Team building and training
  • Operations management
  • Regulatory compliance
  • Leadership expertise
  • Data-driven decision-making
  • Innovation fostering
  • InfoSec Governance
  • Strategic Leadership

Certification

  • Certified Information Systems Auditor, ISACA
  • COBIT 2019 Foundation, ISACA
  • ITIL V3 Foundation, EXIN
  • ISO 27001 ISMS Lead Auditor, BV
  • Program and Project Management, IIT Kanpur

Websites, Portfolios and Profiles

LinkedIn:

www.linkedin.com/in/archana-jothi-228105168

Awards

  • Cheerleader Awards
  • CSR & Volunteering Awards
  • POSH ACT Committee member

Interests

Certified Yoga Trainer

Timeline

AVP INFORMATION SECURITY

Nationstar(NSM) Mortgage Private Ltd.(Mr.Cooper)
10.2023 - Current

SENIOR MANAGER-INFORMATION SECURITY

Nationstar(NSM) Mortgage Private Ltd.(Mr.Cooper)
05.2016 - 09.2023

SENIOR ASSOCIATE

Cognizant Technology Solutions India Pvt Ltd
05.2012 - 03.2016

SENIOR SOFTWARE ENGINEER

iGate Global Solutions Pvt Ltd
09.2007 - 05.2012

MASTER OF COMPUTER APPLICATIONS - Computer Applications

Avinashilingam University for women
Archana Jothi