Summary
Overview
Work History
Education
Skills
Custom
Timeline
Generic
Manisha Lakhwani

Manisha Lakhwani

Bengaluru

Summary

Technical consultant specializing in application security assurance, secure SDLC, and risk assessment. Proven expertise in security governance, vulnerability management, and cloud security controls, with successful delivery of risk-based improvements and compliance with ISO 27001, PCI DSS, and GDPR standards. Skilled in conducting penetration testing, managing remediation efforts, and validating evidence to enhance security postures. Experienced in collaborating with cross-functional teams to align security architecture with business goals, supporting cloud migration and modernization initiatives.

Overview

6
6
years of professional experience

Work History

Technical Consultant

IBM
01.2025 - Current
  • Delivered end-to-end application security assurance, governance, and secure SDL code reviews daily.
  • Completed risk-based security assessments and go-live assurance reviews for releases.
  • Reviewed security requirements across application, information security, operational, and data protection domains.
  • Performed component-based security assessments for applications, APIs, and cloud services.
  • Partnered with architects, engineering teams, and stakeholders on solution intent and designs.
  • Collected and validated evidence from pre-production environments before production deployment.
  • Reviewed penetration testing scopes, reports, and remediation closure for security findings.
  • Identified control gaps, documented findings, and recommended risk-based improvements to security posture.
  • Produced security assurance reports covering compliant controls, risks, and remediation actions.
  • Validated security controls throughout cloud migration and modernization lifecycle activities.
  • Maintained audit evidence and governance documentation in Confluence and enterprise governance platforms.

Associate 2 - Technology Risk & Governance

PwC
11.2024 - 01.2025
  • Supported technology risk and governance initiatives using compliance control assurance processes.
  • Assisted security control reviews, compliance assessments, and risk reporting in regulated environments.

Information Security Risk Analyst

HCL Technologies
10.2021 - 10.2024
  • Supported global banking client with security risk assessments and control assurance.
  • Conducted application risk assessments and security control reviews against enterprise standards.
  • Performed control assurance reviews across IAM, privileged access, ISMS, and regulatory needs.
  • Executed security governance activities using ServiceNow IRM and RSA Archer workflows.
  • Reviewed security controls for cloud-hosted applications across GCP environments.
  • Collaborated with auditors, stakeholders, and technology teams during control audits.
  • Identified control gaps, tracked remediation actions, and issued security recommendations.
  • Conducted SOX and information security risk assessments for business-critical applications.
  • Supported vulnerability remediation and risk reduction through structured risk management.

Business Analyst

HCL Technologies
10.2021 - 04.2022
  • Gather business requirements and prepare functional documentation, user stories, and RTMS artefacts.
  • Create and maintain test cases and define test scenarios for delivery.
  • Participate in UAT and SIT testing, backlog management, and stakeholder updates.
  • Handle defect management and coordinate communication across involved stakeholders.

Deputy Manager II - Wealth Management

ICICI Bank
10.2020 - 06.2021
  • Managed high-net-worth client relationships, facilitating investment and portfolio tasks to enhance client engagement.
  • Provided tailored financial solutions to address client needs and elevate service quality.
  • Contributed to revenue growth and raised client satisfaction through proactive support.
  • Managed daily operations, delegating tasks to team members to optimise productivity and efficiency.
  • Resolved customer complaints professionally, ensuring high satisfaction levels and fostering client loyalty.

Education

MBA - Finance & Marketing

ICFAI Business School
Pune
01-2020

BBA - Finance

Kamla Raja Girls College
Gwalior
01-2018

Skills

  • Application security assurance
  • Secure SDLC
  • Security governance
  • Risk assessment and control
  • Vulnerability management
  • Penetration testing
  • Remediation management
  • Cloud security governance
  • Information security controls
  • Security architecture review
  • PCI DSS compliance
  • GDPR compliance
  • ISO 27001 standards
  • Evidence validation
  • Stakeholder management

Custom

  • ServiceNow IRM/GRC Implementation Training
  • ServiceNow Integrated Risk Management (IRM) Training

Timeline

Technical Consultant

IBM
01.2025 - Current

Associate 2 - Technology Risk & Governance

PwC
11.2024 - 01.2025

Information Security Risk Analyst

HCL Technologies
10.2021 - 10.2024

Business Analyst

HCL Technologies
10.2021 - 04.2022

Deputy Manager II - Wealth Management

ICICI Bank
10.2020 - 06.2021

MBA - Finance & Marketing

ICFAI Business School

BBA - Finance

Kamla Raja Girls College

Similar Profiles

  • Sairam RSairam R

    Technical Consultant at Freelance Technical ConsultantTechnical Consultant at Freelance Technical Consultant

  • parag aroteparag arote

    Technical Consultant at Tata Consultancy ServicesTechnical Consultant at Tata Consultancy Services

  • Simran DhokeSimran Dhoke

    Technical Consultant at Swift Staffing SolutionTechnical Consultant at Swift Staffing Solution

  • Todd MartinTodd Martin

    Technical Consultant at Rainbow TechnologiesTechnical Consultant at Rainbow Technologies

CREATE PROFILE
Manisha Lakhwani