Summary
Overview
Work History
Education
Skills
Accomplishments
Software
Certification
Timeline
Generic

Dhananjay Sawant

Cyber Security GRC Lead Consultant
Pune,Maharashtra

Summary

Experienced Cyber Security GRC Lead Consultant with a demonstrated history of working experience in the IT industry, specifically in Third-Party Vendor Risk Management (TPRM), IT Infrastructure Management, risk assessment, information security, and test automation. Recognized consistently for performance excellence and contributions to success in business development. Certified ISO 27001:2013 ISMS Lead Auditor with strong IT professional with a Master of Science (MSc) focused in Computer Networks from Middlesex University, London.

Overview

3
3
Languages
4
4
Certifications
4
4
years of post-secondary education
10
10
years of professional experience

Work History

GRC Lead Consultant

Infosys Ltd.
Pune, Maharashtra
10.2017 - Current
  • Performing Third Party Vendor Risk Assessments to identify information security risks associated with vendor solutions.
  • Conducting vendor risk assessments annually to ensure vendors are adhering to security requirements.
  • Leading a team of four people managing areas such as TPRM, Training and Awareness, Policy Exceptions, and Policy Management.
  • Providing inputs to prepare dashboards of all the assigned tasks and present the security posture to Senior Management.
  • Enhancing the internally designed cybersecurity framework to match the business needs by providing inputs.
  • Leveraging Service Now GRC modules such as Vendor Risk Management, Policy, and Compliance (Policy Management, and Policy Exception), Risk Register on a day-to-day basis.
  • Using tools such as BitSight to assess the external security posture of vendors.
  • Raising Policy Exception requests and getting them reviewed and approved by CISO.
  • Conduct phishing simulation activity using Cofense PhishMe tool across the organization as a part of training and awareness program.
  • Creating and publishing newsletters fortnightly to spread awareness among the employees.
  • Handling security-related incidents by resolving the issues faced by end-users.
  • Enhancing process flows by reporting issues to Service Now team.
  • Hands-on experience as a Salesforce Admin which includes User Access Management, Log Monitoring, Test Data Management.
  • Assisting in Change Management activities within a structured process framework.
  • Conduct post-implementation tests and reviews to assess the performance related to the change request.
  • Validating that appropriate tests and evaluations are performed before high-risk changes are approved.
  • Smoke Testing to make sure every critical functionality is intact after changes are deployed to production.
  • Identified delivery risks for ongoing projects, developing strategies to avoid delays.
  • Involved in testing of various integrated interfaces which includes integration of Salesforce with CloudSense (CPQ), Aria (Billing), and ServiceNow (IT service management tool).

Senior Test Engineer

Capita India Pvt. Ltd.
Pune, Maharashtra
10.2016 - 06.2017
  • Identified delivery risks for ongoing projects, developing strategies to avoid delays.
  • Enhancing test frameworks and develop automated tests using Java and Selenium WebDriver to ensure consistency of the application.
  • Making use of DevOps software development practice to automatically run test suite after every deployment.
  • Integrating automated test cases into Maven & Jenkins build system.
  • Executing tests & generating incident reports using TestNG.
  • Analyze and verify best automated and manual test approaches.
  • Administering test and session planning with schedules and estimates.

IT Consultant

Smartelligent Systems Pvt. Ltd.
Pune, Maharashtra
06.2013 - 09.2016
  • Evaluated diverse organizational systems to identify workflow, communication and resource utilization issues.
  • Compiled research data and gave professional presentations highlighting finds and recommended optimizations.
  • Identifying security risks in several web applications and providing inputs during risk analysis.
  • Administering, maintaining, supporting and troubleshooting 40+ workstations including server hardware, desktop units, notebooks, laptops, monitors, smartphones, local and networked printers, network and other communication devices associated with all desktop/server hardware.
  • Following the change management process to implement changes in the infrastructure.
  • Fetching logs from system and server and providing it to internal auditors.
  • Delivering regular Security Awareness Sessions at organizational level as well as project level.
  • Creating & assigning User roles and permissions in applications and Windows 2012 R2 ADDC server.
  • Monitoring local back-ups of Windows ADDC and CentOS application servers on a daily basis.
  • Leveraging WHM (Web Host Manager) panel for managing customers' accounts.
  • Maintaining security of internal LAN.

IT Manager

Smartway Pharmaceuticals Ltd.
London, United Kingdom
05.2012 - 06.2013
  • Guided organizational technology strategy and roadmaps.
  • Demonstrated familiarity with latest hardware, software and networking technology, as well as industry trends.
  • Identify and evaluate business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
  • Guided implementation of company-wide enterprise security strategy for network and hardware, disaster recovery, data protection and endpoint protection.
  • Oversaw daily performance of computer systems and immediately responded to operational issues to keep network up and running.
  • Conferred with executives to advise and plan for short-term and long-term IT system upgrade needs.
  • Communicated with executive team and CEO to maximize development efficiencies and resolve technology issues.
  • Troubleshooting a network of 50 Computers, 2 servers onsite and multiple computers at remote locations.
  • Analyzed architecture design, scoping, implementation, testing and deployment needs to define project requirements.
  • Led technology selection and rollout, focusing on organizational planning, provider contracts and supplier service-level agreements.
  • Managed network and system performance, conducting troubleshooting, security patching and maintenance.
  • Liaised effectively with others to promote on-going network design, reevaluation and optimization that scaled with company growth.

QA Engineer

Calsoft Inc.
Pune, Maharashtra
11.2011 - 03.2012
  • Performing SOAP GUI Testing, Regression Testing, Functional Testing, Documenting Test Cases, Test Cases Execution, Bugs filing in HP Quality center / Woggle and tracking them until closure.
  • Working on different NAS scenarios testing (Manual and Automation) for CIFS, NFS and iSCSI protocols.
  • Hands-on experience with Data Replication, Data Migration, Samba, FTP, NVRAM, Snapshots scenarios on Mercury and Titan NAS servers.
  • Worked on Test-Bed setup for NAS testing.

Programmer

Cognizant Technology Solutions
Pune, Maharashtra
12.2007 - 01.2009
  • Working in a team of Manual Testing covering GUI Testing of Web based CREAM application.
  • Carrying out Functional Testing to check correct functionality of the system.
  • Using SQL and UNIX box to fire queries and run batch processes, respectively.
  • Analyzing SRS documents, writing Test Cases, Test Case Execution.
  • Filing bugs in Mercury Quality Center & tracking them until closure.
  • Attending client calls and mailing daily status reports to the Team Lead / Manager.

Education

Master of Science - Computer Networking

Middlesex University
London, UK
01.2010 - 04.2011

Bachelor of Computer Applications - Computer Engineering

Symbiosis International University
Pune
07.2004 - 04.2007

Skills

Third Party Vendor Risk Management

undefined

Accomplishments

  • Received 4 awards for collaborating with team of 36 in the development and integration of modules for Australian based telecom giant Telstra.
  • Awarded for leading the new team and for resolving business process issues related to TPRM.

Software

Service Now (Orlando)

SNOW GRC modules (VRM, Risk Management, Policy and Compliance)

BitSight

Cofense PhishMe

CPQ Salesforce

JIRA

Github

Java

Selenium, Cucumber, Maven, Jenkins

Windows 10, Server 2019

CentOS

Certification

Purdue University - Applied Cybersecurity Essentials Hybrid Intensive

Timeline

Purdue University - Applied Cybersecurity Essentials Hybrid Intensive

02-2021

ISO 27001:2013 ISMS LA, DNV-GL

01-2020

Training - CompTIA Security+

01-2020

Training - Nessus: Malware and Vulnerability Assessment

01-2020

GRC Lead Consultant

Infosys Ltd.
10.2017 - Current

Senior Test Engineer

Capita India Pvt. Ltd.
10.2016 - 06.2017

IT Consultant

Smartelligent Systems Pvt. Ltd.
06.2013 - 09.2016

IT Manager

Smartway Pharmaceuticals Ltd.
05.2012 - 06.2013

QA Engineer

Calsoft Inc.
11.2011 - 03.2012

Master of Science - Computer Networking

Middlesex University
01.2010 - 04.2011

Programmer

Cognizant Technology Solutions
12.2007 - 01.2009

Bachelor of Computer Applications - Computer Engineering

Symbiosis International University
07.2004 - 04.2007

Similar Profiles

CREATE PROFILE
Dhananjay SawantCyber Security GRC Lead Consultant