Summary
Overview
Work History
Education
Skills
Websites
Certification
Languages
Accomplishments
Timeline
Generic
Arpana Gupta

Arpana Gupta

Bangalore

Summary

A result-oriented professional with over 15+ years of rich cyber security, risk management & compliance experience in BFSI & ENU domain

Proven track record of designing and implementing robust security solutions to protect organization’s data from evolving threats and ensure compliance with industry standards

Overview

19
19
years of professional experience
1
1
Certification

Work History

Information Security Manager

American Express
Bangalore
02.2020 - Current
  • Info-sec Regulatory compliance – APAC: Consists of the work done to support Asia pacific & Japan region with respect to information security regulatory compliance & audit – includes Regulatory compliance, Exam support, Audit support (Scope: Amex operations in APJ – Key market being Singapore, Taiwan, Japan, Thailand, Hongkong & Indonesia)
  • Identification of key risk and controls for Projects before going into production
  • Support regular security audits and assessments to identify weaknesses and recommend appropriate remediation measures
  • Collaborate with cross-functional teams to identify and address security vulnerabilities and risks in systems, networks, and applications
  • Manage and oversee the organization's information security program, including risk assessment, vulnerability management, and incident response
  • Develop and implement information security policies and procedures to ensure compliance with industry standards and regulations
  • Lead incident response efforts, including conducting investigations, coordinating with internal teams and external stakeholders, and implementing corrective actions
  • Develop and implement information security policies, procedures, and guidelines to ensure the confidentiality, integrity, and availability of data and systems
  • Provide guidance and support to employees on information security matters, including awareness training and incident handling.

Manager-Cyber Risk

Deloitte India
Bangalore
07.2018 - 12.2019
  • Prepare and present comprehensive reports and recommendations to senior management and stakeholders regarding cyber risk posture and mitigation strategies
  • Perform risk assessment for IT infrastructure and applications
  • Contribute towards global quality management and process improvement exercise
  • Lead a team of cyber risk analysts and specialists to assess and monitor the organization's cyber risk exposure
  • Develop and implement cyber risk management strategies and frameworks to mitigate potential threats and vulnerabilities.

Manager

Pwc SDC Kolkata
Bangalore
06.2018 - 07.2018

Associate Consultant - Cyber Risk

Wipro Technologies
Bangalore
11.2010 - 05.2018
  • Participated in requirement gathering and analysis to understand client needs and objectives
  • Worked closely with project managers to ensure timely delivery of projects within budget and scope
  • Collaborated with cross-functional teams to develop and implement security solutions framework
  • Managed and executed security related projects, ensuring adherence to quality standards and project timelines
  • Managed engagement related to SOC 2, ISO 27001, PCI DSS, ISO 22301, Risk Management, including vendor risk management, SAP GRC, SOX Testing & Archer
  • Design Audit Management Solution using Archer core solution & document Information security standards, process documents & procedures inline with the clients Information Security Policy.
  • Provided guidance and support to clients on best practices related to the project scope.
  • Analyzed data from multiple sources to develop recommendations for business solutions.
  • Prepared reports summarizing progress, risks, and issues associated with projects.
  • Created presentations outlining key findings and recommendations based on customer feedback.

Technical Consultant

ANZ
Bangalore
10.2008 - 10.2010
  • Accountable for the management of platform security across ANZ's Microsoft Windows Environment
  • The role ensures the platform is well-secured, Granular access control, virus free and continually patched to mitigate known vulnerabilities.

IT Engineer

CMC Ltd.,
Bangalore
02.2007 - 10.2008
  • Perform Risk Assessment for Deutsche Bank on their SOX Applications
  • Perform Technical Analysis for the Applications that are used by Deutsche Bank.

Sr.Technical Support Associate - Level2

IBM
Bangalore
05.2005 - 02.2007
  • Resolve complex technical issues related to software, hardware, and network connectivity
  • Provide technical support and troubleshooting assistance to customers via phone, email, and chat.

Education

Bachelor of Engineering - Electrical & Electronics

Jawaharlal Nehru National College of Engineering
Shimoga, Karnataka
07.2004

Skills

  • Regulatory Compliance
  • Managing external audits based on ISO 27001, SOC2, PCI DSS
  • Application Risk Assessment
  • Data Security / Privacy Laws
  • 3rd party Risk Mgmt (TPRM)
  • Compliance Management
  • Intrusion Detection
  • SAP GRC
  • Archer
  • Cloud Security

Websites

Certification

  • NCFM DEPOSITORIES MODULE certified
  • RSA Archer Administrator Certified
  • ISO 22301 CLIP certified
  • ISO 27001 LA certified
  • CCSK Certified

Languages

  • English
  • Hindi
  • Kannada
  • Konkani
  • Tamil

Accomplishments

  • Received Employee for the year Award in Wipro
  • Was one of the top 4 women to be selected for IGNITE Leadership Program from Harappa University, in Amex

Timeline

Information Security Manager

American Express
02.2020 - Current

Manager-Cyber Risk

Deloitte India
07.2018 - 12.2019

Manager

Pwc SDC Kolkata
06.2018 - 07.2018

Associate Consultant - Cyber Risk

Wipro Technologies
11.2010 - 05.2018

Technical Consultant

ANZ
10.2008 - 10.2010

IT Engineer

CMC Ltd.,
02.2007 - 10.2008

Sr.Technical Support Associate - Level2

IBM
05.2005 - 02.2007

Bachelor of Engineering - Electrical & Electronics

Jawaharlal Nehru National College of Engineering

Similar Profiles

CREATE PROFILE
Arpana Gupta