Milind Kawale
Pune
Summary
CISA certified professional with over 14 years of experience in Banking and Finance, IT and Security Governance domain. Currently serving as a Senior Information Security Manager in the CISO Cell at Bank of Maharashtra. Proficient in implementing and managing compliance programs, conducting audits, and developing robust security policies and driving information security awareness initiatives.
Overview
13
13
years of professional experience
1
1
Certification
Work History
Senior Information Security Manager
Bank of Maharashtra
Pune
10.2018 - Current
- Provided in-house support for ISO 27001:2013 implementation.
- Executed IT compliance programs for information and cyber security requirements (ISO 27001 standards, CERT-In, NPCI, RBI).
- Handled internal and external IT and regulatory compliance audits.
- Ensured compliance with RBI and other regulatory information security requirements and frameworks.
- Developed and maintained Information Security Policies, including Information Systems Security Policy, Cyber Crisis Management Plan, and Cyber Security Policy.
- Drove and executed information security awareness activities for employees and customers.
- Conducted risk assessments and suggested corresponding risk treatments.
- Conducted internal audits of in-house applications and ISMS.
- Reviewed and updated bank policies and procedures according to ISO 27001:2013, RBI guidelines, and CSITE advisories.
- Implemented and tested business continuity and disaster recovery plans, conducted internal audits, and reviewed business continuity procedures.
- Monitored enterprise IT policy compliance and recommended effective IT security controls.
- Conducted third-party audits and vendor risk management.
- Supported external certification audits like ISO 27001 and PCI-DSS.
- Participated in information security risk management initiatives.
- Provided monthly, quarterly, and yearly compliance reports to the Board and regulatory bodies.
Information Security Manager
Bank of Maharashtra
Pune
12.2014 - 09.2018
- Defined stakeholders, responsibilities, resources, risks, constraints, and assumptions.
- Created Configuration Items, RACI Matrix, Dependency Matrix.Monitored project progress, created dashboards, and reported to top management.
- Approved Project Portfolio Status Reports and created Standard Operating Processes.
- Developed and maintained Incident Management system.
- Monitored incident management effectiveness, recommended improvements.
- Ensured IT teams followed incident management processes.
- Coordinated with Unix, DBA, EFT Switch, Network teams for issue resolution.
- Managed antivirus updates and ISO 27001 audits.
- Implemented and enhanced monitoring controls.
- Conducted CSOC process evaluation, gap analysis, and RCA.
- Developed Information Security policies and procedures.
- Evaluated and adopted new technologies for CSOC operations.
- Managed CSOC operations including QRadar SIEM and cyber-attack advisories.
- Managed ISO 27001 audits, PCI DSS, RBI compliance.
- Prepared compliance reports and security checklists.
- Liaised with external auditors and ensured compliance.
- Reviewed Vendor SLA and managed Vendor Risk.
- Monitored Privilege Access/Identity Management (PAM/PIM).
- Managed Data Center & Disaster Recovery operations.
- Conducted IT risk assessments and reviewed BCP policy.
- Coordinated disaster recovery planning, testing, and regulatory compliance.Conducted ISMS internal audits and awareness sessiono
- Conducted training sessions on Information Security, Cyber Security, User Access Management, and Change Management, Incident Management
- Collaborated with vendor and engineering teams for accurate process migration.
Security Consultant
Wipro Technologies
Bengaluru
02.2011 - 11.2014
- Managed end-to-end SIEM solution using RSA enVision for MasterCard
- Interfaced with customer network security operations, stakeholders, and incident response teams
- Created custom filters, ad-hoc reports, and coded SQL query filters, correlation rules, views
- Assisted in incident determination, ticket handling, and incident response
- Implemented Security Best Practices primarily in Windows and Unix platforms
- Integrated various platforms and security devices to SIEM solutions.
Education
M.Tech in Electronics and Telecommunication -
Bundelkhand University
01.2013
B.E. in Electronics and Telecommunication -
SGB Amravati University (JDIET College Yavatmal)
01.2010
Skills
IT and Security Management Skills:
- Data Center & Disaster Recovery Management
- IT Risk Assessment & Compliance
- Business Continuity Planning (BCP)
- Information Security Management System (ISMS) Audits
- Information System Security Policy (ISSP)
- IT Risk Management & SLA Review
- Privilege Access/Identity Management (PAM/PIM)
- Cyber Security Operations & Incident Response
- ISO 27001-2013 Standards Compliance
- PCI-DSS Audit Preparation & Compliance
- Vulnerability Assessment, Penetration Testing, Patching & Management
- Threat Analysis, Network Security
- Incident Management, Change Management
Technical Skills
Programming Languages: C, C++, Core Java, Python
Databases: MySQL, PL/SQL, Oracle
Tools: IBM QRadar SIEM, Trellix Endpoint Security, Trellix Data Security, ARCON, CA Service Desk and Helpdesk Manager, Symantec Antivirus, Palo-Alto & FTD Firewall, Cisco Iron Port, Active Directory, Bluecoat, Juniper switch, IBM BigFix, ForeScout, VMware Horizon client
Certification
- Certified Information Security Auditor from ISACA
- Certified Information Privacy Professional from One Trust
- Oracle Cloud Infrastructure 2023 AI Certified Foundations Associate
- AI for Business Leader from Cloudera
Skills
- Leadership
- Team Management
- Problem-Solving
- Analytical Skills
- Good Communication
Personal Information
- Date of Birth: 05/23/88
- Nationality: India
Hobbies and Interests
- Travelling
- Reading
- Cooking
Timeline
Senior Information Security Manager
Bank of Maharashtra
10.2018 - Current
Information Security Manager
Bank of Maharashtra
12.2014 - 09.2018
Security Consultant
Wipro Technologies
02.2011 - 11.2014
M.Tech in Electronics and Telecommunication -
Bundelkhand University
B.E. in Electronics and Telecommunication -
SGB Amravati University (JDIET College Yavatmal)
Similar Profiles
MEHAK BOORAMEHAK BOORA
Probationary Officer at BANK OF MAHARASHTRAProbationary Officer at BANK OF MAHARASHTRA
Narendra SapkaleNarendra Sapkale
Credit Officer at Bank of MaharashtraCredit Officer at Bank of Maharashtra
NAVNEET SINGHNAVNEET SINGH
Branch Manager at Bank of MaharashtraBranch Manager at Bank of Maharashtra
Remya RRemya R
Credit Manager at Bank of maharashtraCredit Manager at Bank of maharashtra
Vaibhav SuryawanshiVaibhav Suryawanshi
UI Developer at Xcaliber Infotech Private LimitedUI Developer at Xcaliber Infotech Private Limited