Summary
Overview
Work History
Education
Skills
Accomplishments
Languages
Personal Information
Certification
Timeline
Generic

Arunkumar A.

Chennai

Summary

IT Project Manager with extensive experience at Ford Technologies, focusing on Cyber Security and Governance Risk & Compliance (GRC). Proficient in vulnerability management and risk assessment, leveraging tools such as Cisco Kenna. Achievements include streamlining compliance processes and enhancing team collaboration, resulting in improved security metrics and operational efficiency.

Overview

22
22
years of professional experience

Work History

IT Project Manager

Ford Technologies Service Private LTD
Chennai
10.2011 - Current
  • Cyber Security Services – ITGC Audit, Cyber Security assessment & Consultation, GRC (Governance, Risk & Compliance), Vulnerability management, support for the IT Assets.
  • Conduct regular vulnerability assessment for various Business units, Infrastructures and cloud assets within organization.
  • Maintaining risk register for exception/risk accepted vulnerabilities for all business units.
  • Perform Dynamic application security testing and windows/Lunix patch management.
  • Investigating alerts from tools like Hackerone, Cycognito and Censys for Attached Surface Management.
  • Providing detailed vulnerability report and continuous follow ups for security advisories with Threat intelligence team.
  • Perform detailed risk assessment for the critical vulnerabilities.
  • Integrate vulnerability to Risk tool like CISCO Keena for evaluate risk for the vulnerabilities detected by tools.
  • Preforming risk assessment emerging technologies like Cloud-computing and Robotic process automation.
  • Performing Threat Modelling for the infrastructure, applications, and supports the team on the development and implementation of solutions.
  • Collaborate with business/ product teams in implementing the agreed controls to ensure compliance with Enterprise Information Security Policies and Standards.
  • Perform Risk Assessments to uncover risks, and support applying remediate actions in various business processes.
  • Perform internal audits/ assessments to assess and evaluate security and control compliance across various business/ product teams.
  • Co-ordinating and educating the IT team for timely completion of Self assessment process for IT controls.
  • Monitoring and ensuring SOX Self assessment(SCRP) sign-off.
  • Assess and manage the control gaps working closely with business/ product teams to implement a Corrective Action Plan and ensure sustenance of the implemented corrective actions.
  • Maintaining an enterprise security and control knowledge base and information store, share and cascade security and control knowledge and information as necessary and promotes security and control awareness throughout the enterprise.
  • Management reporting of key security and control metrics/ KPI.
  • Awarded the EMPLOYEE OF THE QUARTER during 3Q’12 for on time completion of self assessment.

Program Manager

Unisys Global Service
Bangalore
08.2010 - 10.2011
  • Monitoring compliance testing status and reporting to the management.
  • Monitoring SOX documents uploaded to portal on timely manner.
  • Monitoring and ensuring SOX quarterly sign-off.
  • Validating testing results for the various Key Control objective: Accounts Payables, Project Status Review, Change Management, Access to Data and Program, Patch Management, Password Management, Separation of Duties.
  • Working with process owners for Root Cause Analysis on findings and ensure timely closure of findings.
  • Working with process owners for updating process document on need to basis.
  • Tracking Business continuity status for all the projects.
  • Tracking test status for all the locations.
  • Preparing KPI reports on weekly basis and reporting to the management.
  • Working with security officers, accounts managers for KPI action items.
  • Maintaining Business Continuity related documents in the portal.
  • Performing ISO 27001 audit for various locations.

Asst Manager

IBM Daksh Business Process Services Pvt. Ltd.
Bangalore
12.2007 - 08.2010
  • Performing compliance testing of application development & maintenance and application management service contracts.
  • Execution/compliance Testing for IT SOX for various Key Control objective: Project Management Planning, Change Management, Access to Data and Program (Data Privacy and Security), Patch Management, Password Management, Separation of Duties, Workplace Security.
  • Performing remediation testing for the findings identified in the compliance testing.
  • Performing compliance testing of Account Payable Utility, Export Regulation Office.
  • Execution test plan, giving recommendation for improvement of test plans, findings analysis and remediation.
  • Working with process owners for Root Cause Analysis on findings and ensure timely closure of findings.
  • Preparation of Audit reports and undertaking analysis to assist for Management Self Assessment.
  • Performing compliance testing of Separation of Duties, Data Privacy and Access Controls.
  • Educate partners and project managers as part of Action plan.
  • Successfully initiated & implemented on new audit criteria for efficiency and effectiveness on internal control system.
  • Initiated for preparation of high level process documentation/flows on Application Development Maintenance.
  • Awarded the EMPLOYEE OF THE MONTH during MAR’08 towards smooth transition.
  • Awarded the EMPLOYEE OF THE MONTH during July’08 towards effective handle team and smooth deliverables on first quarter of transition.
  • Top Performer Award for the year 2008.

Process Specialist

Ford Business Services Center
Chennai
04.2003 - 11.2007
  • Managing the Electronic Data Interchange process (SBI & EDI).
  • Handled ISO & GAO audit.
  • Involved with the project team for migrating SAP(FI) to SAP (MM).
  • Done ACR (Access Control review) to reduce the risk associated with IT applications.
  • Business specification and process flow designed for migration process.
  • Business test case written and tested in the test environment.
  • Matching manual supplier invoices with the corresponding invoices raised through Payable system processed for payment.
  • Generate sample invoices on the daily volume of transactions to identify errors if any (Price vs Receipt verification).
  • Prompting confirmation on price and quantity from respective buyer and the purchase initiator.
  • Generating default supplier’s list and take necessary action.
  • Raising Debit/Credit note to the supplier towards financial error.
  • Business specification and process flow designed for the work flow changes made to do effective audit.
  • Business test case written and tested in the test environment.
  • Methodology on identifying default suppliers has been suggested which has resulted in control check for finding out default suppliers.
  • Tracking system designed in MS-Access for Debit/Credit note raised on various suppliers to expedite in calculating financial error rate and identify sampling percentage.
  • Automation of approval attachment process was suggested and implemented, resulting in reduction of 15 man hrs per week.
  • Awarded the EMPLOYEE OF THE MONTH during MAR’04 towards consistent and sustaining good metrics.

Education

Master of Computer Applications (MCA) -

Bharathidasan University
01.2004

Bachelor of Commerce -

Hindu College, Madras University
01.2001

Skills

  • Fortify on Demand
  • Tenableio
  • OWASP standards
  • NIST compliance
  • FOSSA management
  • RSA Archer platform
  • Cisco Kenna

Accomplishments

  • EMPLOYEE OF THE QUARTER, 09/30/12, For on time completion of self assessment.
  • EMPLOYEE OF THE MONTH, 03/31/08, Towards smooth transition.
  • EMPLOYEE OF THE MONTH, 07/31/08, Towards effective handle team and smooth deliverables on first quarter of transition.
  • Top Performer Award, 12/31/08, For the year 2008.

Languages

  • English
  • Telugu
  • Tamil

Personal Information

Date of Birth: 04/24/81

Certification

Certified Information System Security Professional (CISSP)

Certified Risk information security certification (CRISC) , USA in 2017

Certified Information System Auditor (CISA), USA in 2007

Timeline

IT Project Manager

Ford Technologies Service Private LTD
10.2011 - Current

Program Manager

Unisys Global Service
08.2010 - 10.2011

Asst Manager

IBM Daksh Business Process Services Pvt. Ltd.
12.2007 - 08.2010

Process Specialist

Ford Business Services Center
04.2003 - 11.2007

Master of Computer Applications (MCA) -

Bharathidasan University

Bachelor of Commerce -

Hindu College, Madras University

Similar Profiles

  • Srinivas Villa

    Srinivas VillaSrinivas Villa

    Senior Software Engineer at Service Lee Technologies Private LimitedSenior Software Engineer at Service Lee Technologies Private Limited

  • Dan Graham

    Dan GrahamDan Graham

    Demand Analyst at Ford North America Electronic Service Group FORD COMPONENT SALESDemand Analyst at Ford North America Electronic Service Group FORD COMPONENT SALES

  • Balaji B

    Balaji BBalaji B

    Functional Safety Engineer at Ford Motor Private LimitedFunctional Safety Engineer at Ford Motor Private Limited

  • Sumaiga Sugunesan

    Sumaiga SugunesanSumaiga Sugunesan

    Analyst Data Steward at AstraZenecaAnalyst Data Steward at AstraZeneca

  • Gayathri V

    Gayathri VGayathri V

    CS Associate at AmazonCS Associate at Amazon

CREATE PROFILE
Arunkumar A.