KAMNA GULERIA
Mumbai
Summary
9 years of experience in Hospitality & Travel and Financial Services domains in various roles such as Lead SOX Auditor, Cybersecurity SME, and Change and Release Coordinator. Proficient in performing internal SOX compliance audits, IT General Controls (ITGC) , PCI DSS Compliance. 4.9 years of hands-on experience in implementing SOX compliance, primarily for US and Europe based clients, including SOX compliance IT control-based audits, Identity and Access Management and related functions such as IT audits and access reviews.
Overview
13
13
years of professional experience
1
1
Certification
Work History
Senior Consultant
Capgemini
Mumbai
07.2023 - Current
- Perform Bi-weekly ITGC SOX control testing, assess the effectiveness of controls
- Ensure corrective actions are taken effectively to correct deficiencies and provide management with status reporting
- Co-ordinate with internal stake holders/IT operations teams during SOX ITGC control assessment & remediation activities to gather/review evidence
- Follow-up with IT operations teams for closure of audit findings and documenting lessons learned
- Participate and assist internal and external auditors during annual SOX audit
- Conduct controls walkthrough with operational team to understand the control workflow
- Assist control owner in submission of exception letters to exception committee in case identified risk remediation is delayed or accepted
- Managed a team of five members, overseeing day-to-day operations, delegating tasks, and ensuring team cohesion and productivity
- Experience in testing below SOX ITGC controls: Access Management Control Testing, Change Management Control Testing, Oracle Password Configuration Review, Active Directory Password Configuration Review, SOX AD Groups Validation testing.
Consultant
Capgemini
Mumbai
07.2019 - 06.2023
- ITGC Testing: Perform User Access Provisioning, User Acess Deprovisioning, Privilege Access Review, Segregation of duties & Environment
- Conducted Change Management Testing
- Evaluate the work products that team members have provided and provide guidance on the given responsibilities
- User Access Review: Collect data regarding number of users provisioned and deprovisioned for the clients
- Review the process followed for the provision and deprovision of the users
- Collect, consolidate and validate evidence for the access granted and removed
- Create report for access review documenting the review and observations
- Evaluate the review results and devise a remedy plan
- Maintain the evidence and documentation for security compliance requirement
- PCI DSS: Coordinated with external auditors and assessors during compliance audits and assessment, providing documentation and evidence to demonstrate adherence to PCI DSS requirements and facilitating the resolution of audit findings
- Conduct Information security awareness, trainings and educational activities to stakeholders
- Assist assest owner in submission of exceptional letters to exception committee in case identified risk remediation is delayed or accepted
- IAM: Creation /Modification of User Account, Security Groups and Distribution List using Active Directory, Exchange
- Creation of mailbox for existing/ new user accounts
- Investigation on account lock out issues using AD and its RCA
- Shared mailbox, Distribution list creation, deletion on Exchange server
- Granting Network shared drive access to users or removal of access
- Preparing daily and monthly reports related to User Provisioning/ deprovisioning
- Experience in ticketing tool like Service Now.
Associate Consultant
Capgemini
Mumbai
04.2015 - 03.2016
- Change and Release Manager: Managed RFC (Request for Change Process) releases for disruption free change delivery
- Conducted assessment and impact analysis to control budget, schedule, and quality
- Coordinated with customer CAB (Change Approval Board) to plan release windows
- Facilitated go-live activities, executed deployment activities and checklists
- Published final list of projects planned for release in a specific deployment window
- Partnered and followed up with 4 application maintenance teams (SOA, Siebel, SAS, Prime Database) to deliver change requests on time
- Tracked production deployments, validated changes, and uploaded on SharePoint for central reporting and visibility
- Managed distributed delivery with customer teams in Norway and Sweden, and third parties for change planning
- Project Quality Lead: Maintain SOW’s (Statement of Work) and track budget against actual booking
- Reviewed SLAs and KPIs
- Oversaw resource utilization in accordance with agreed SOW capacity
- Prepared and presented monthly application reports covering comprehensive KPIs.
Associate Consultant
Capgemini
Mumbai
05.2012 - 03.2015
- Maintained Oracle SOA 11g for a financial services customer to ensure uptime of web services
- Monitored critical web services for 4 credit card banking customers
- Collaborated with customer SMEs throughout the SDLC
- Performed new code deployment in production to meet business requirements
- Derived the estimates for the Minor Development activities (MDAs) & Change Requests.
Senior Software Engineer
Capgemini
Mumbai
09.2011 - 04.2012
- Monitored the migration of Oracle SOA 10g to Oracle SOA 11g
- Responsible for application uptime and preventing outages of critical applications during migration
- Worked as Tool Specialist - central point of contact for all application rights and access requests
- Tools used: Team forge, TMS, Tortoise SVN
- Enabled simultaneous programmer working and source code management through Tortoise SVN tool
- Provided access related support to 300+ end users through ticketing tool TMS.
Education
Master of Business Administration in Marketing Management -
Sikkim Manipal University (Distance Learning Mode)
01.2015
Bachelor of Technology in Textile Technology -
Dr. B.R Ambedkar, National Institute of Technology Jalandhar, Punjab, India
01.2011
Skills
- IT General Controls ( ITGC)
- SOX Audit
- Team management
- PCI DSS Compliance
Certification
- ISO 27001: 2013 Lead Auditor ISMS Certification
- PCI DSS Implementor 4.0 by Intertek
- Oracle SOA Suite 11g Certified Implementation Specialist
- ITIL v3 Foundation Certified
- Splunk 7.x Fundamentals Part 1
- SC- 900 : Microsoft Certified : Security , Compliance and Identity Fundamentals
Awards
- Received Carnival Ninja Award for outstanding performance and lasting contribution in H2 2022
- Received Extra Miler award for the quarter
- Worked at Client side in Norway, Oslo for 7 months
- Worked as Co-head of Refreshment committee in Utkansh’09 (Culture Fest in NITJ)
- Winner of Cricket show match in 2007-2008 in Sports Day (NIT Jalandhar)
- Secured 51st Rank in “State Board in Matriculation Exam”
- Secured 2nd position in “Process Designing” in techNITi’08
- Participated in “Inter-NIT Basketball Championship 2007” held at MNIT Jaipur
Timeline
Senior Consultant
Capgemini
07.2023 - Current
Consultant
Capgemini
07.2019 - 06.2023
Associate Consultant
Capgemini
04.2015 - 03.2016
Associate Consultant
Capgemini
05.2012 - 03.2015
Senior Software Engineer
Capgemini
09.2011 - 04.2012
Master of Business Administration in Marketing Management -
Sikkim Manipal University (Distance Learning Mode)
Bachelor of Technology in Textile Technology -
Dr. B.R Ambedkar, National Institute of Technology Jalandhar, Punjab, India
Similar Profiles
Mohammed Rabic RiyazudeenMohammed Rabic Riyazudeen
Senior Applications Consultant at CapgeminiSenior Applications Consultant at Capgemini
V S S R K RAJU KATARIV S S R K RAJU KATARI
Senior Analyst at CapgeminiSenior Analyst at Capgemini
Shivansh GuptaShivansh Gupta
.Net Full Stack Developer at Capgemini.Net Full Stack Developer at Capgemini
Thierry MaurelThierry Maurel
Engagement Manager at CAPGEMINIEngagement Manager at CAPGEMINI
Priti SharmaPriti Sharma
Senior AVP (Senior Business Executive - Consultant), Audit and Governance at Wells Fargo International Solutions Private LimitedSenior AVP (Senior Business Executive - Consultant), Audit and Governance at Wells Fargo International Solutions Private Limited