Ishita Bansal
Senior Security Consultant
New Delhi
Summary
A resourceful, CIPP-E, CCNA – Routing & Switching, JNCIA-JUNOS, JNCIA-IDP, JNCIA-FWV, JNCIS-ENT and JNCIS-SEC certified and result-driven professional, offering close to 12 years of progressive experience in Cyber Security, Information Security, Data Privacy and Risk Management and fortitude to achieve results. Demonstrated expertise as a consultant for global corporations within IT, Operations, and Compliance, with a background in Information Technology Risk Management. Expert in accomplishing multiple tasks concurrently and ensuring to provide good-quality deliverables.
Overview
11
11
years of professional experience
11
11
years of post-secondary education
7
7
Certifications
Work History
Senior Security Consultant
Ernst and Young GDS
Gurgaon
08.2017 - Current
- Threat Modelling : Executed Application Risk Assessments and Application Controls Review. Conducted threat modelling and secure architecture reviews of over 100+ applications. Worked on leading technologies such as SAP, Salesforce, AWS, Azure while assessing applications.
- Data Privacy: Well-versed in providing recommendations about compliance with data protection laws including GDPR, and Company policies and guidelines with respect to data protection. Adept in managing escalated queries from all parts of business and resolving them by developing effective solutions. Involved in development of GDPR gap assessment questionnaire and GDPR Privacy metrics.
- Risk Management : Conformed to due processes while making policy changes and streamlined regular policy management operations. Identified risk areas and conducted risk-based audits/assessments, initiated necessary actions to mitigate risks identified in audit reports and provided recommendations for process improvement in order to mitigate associated risks, to meet internal audit requirements and to ensure compliance, adequacy and reliability of internal controls and procedures. Strong reputation of assessing, controlling, and mitigating risk in accordance with policies and procedures besides establishing and monitoring risk management registers efficiently.
Information Security Engineer
Computer Sciences Corporation
Noida
06.2014 - 08.2017
- Level-2 Technical Assistance Engineer for configuring, implementing and troubleshooting network issues.
- Understand customer network environment and design firewall change plan to make connections work.
- Skillfully resolved network related errors with Juniper SRX branch end devices and troubleshooted network security issues on customer networks in coordination with other engineers.
- Coordinated with managers and leadership team to streamline process improvement opportunities and develop an adoption plan.
Systems Engineer
Infosys Technologies Limited
Pune
07.2011 - 06.2014
- Handled and resolved critical and high priority network issues and troubleshooting on Juniper IDP/IPS under production via remote desktop connection, phone or e-mail.
- Configured and troubleshooted all types of NAT, IDP/IPS and UTM features like Anti-virus, Anti-spam, URL filtering and Screening.
- Replicated customer's network scenario in lab to understand Packet flow and various challenges and problems faced by customer.
- As a Support Engineer, provided 24*7 network support and adhered to SLAs while escalating tickets.
- Documented system configuration, mapping and processes.
- Analyzed security logs to determine and alleviate network threats.
- Collaborated with executive team to define business requirements and systems goals
Education
B.Tech.(Computer Science) -
Jaypee University of Engineering & Technology
Madhya Pradesh 06.2007 - 07.2011
Senior School Certificate (Class12th) -
DPS Vasant Kunj
New Delhi 04.2005 - 03.2007
Secondary School Certificate (Class 10th) -
Welham Girls' School
Dehradun 04.2000 - 03.2005
Skills
Threat Management
Corporate Network Security
Data Privacy
Process and Compliance Review
EU General Data Protection Regulation (GDPR)
Risk Management
Governance, Risk and Compliance
Cyber Security
Privacy Impact Assessment
Network Security
IT Security
Designing security controls
NIST
ISO 27001:2013
Certification
Certified Information Privacy Professional (CIPP)
Technical Skills
- Threat Modelling
- Privacy Assessments, Risk Management
- VPN, Firewalls, IDS/IPS, Routing/Switching
Timeline
Senior Security Consultant
Ernst and Young GDS
08.2017 - Current
Information Security Engineer
Computer Sciences Corporation
06.2014 - 08.2017
Systems Engineer
Infosys Technologies Limited
07.2011 - 06.2014
B.Tech.(Computer Science) -
Jaypee University of Engineering & Technology
06.2007 - 07.2011
Senior School Certificate (Class12th) -
DPS Vasant Kunj
04.2005 - 03.2007
Secondary School Certificate (Class 10th) -
Welham Girls' School
04.2000 - 03.2005