Summary
Overview
Work History
Education
Skills
Certification
Personal Information
Additional Information
Timeline
Generic

Monalisa Roy

Hyderabad

Summary

Experienced Information Security professional with 11+ years in IT Industry specializing in compliance, risk management, and security business processes. Skilled in IP Consulting, Data Loss Prevention, Anti-Virus Exceptions, Secure Share Point Access, and Enterprise Architecture Management. Strong background in Incident and Change management, with expertise in SLA adherence. Effective communicator with exceptional problem-solving and time management abilities. Familiarity with ticketing and monitoring tools including Service-Now and ARM.

Overview

13
13
years of professional experience
4
4
years of post-secondary education
2
2
Certifications
1
1
Language

Work History

Information Security Analyst

Wells Fargo International Solutions Private Ltd
Hyderabad
07.2020 - Current
  • Following established guidelines, responding to requests concerning access, processing, and requesting status
  • Ensuring Line of Business (LOB) adherence with RBAC methodology
  • Create, document & maintain procedures to manage user access properly and efficiently to ensure that customer has appropriate access to the tools to support the business in an efficient way
  • Acting as approver for wholesale banking access requests which includes verifying if requests are following RBAC methodology if not checking for exception approvals before granting access to users
  • Documenting and resolving complex problems regarding IAM applications and providing monitoring of customer transactions through IAM applications to ensure all transactions are processed
  • Identify and Document Segregation of Duties Scenarios and compose applicable access control rules
  • Analyze risk and grant access for individual/System IDs accordingly
  • Participating in manual Creation/Deletion task of service/individual accounts in different application servers
  • Taking Team level initiatives, managing team’s data, achieving Targets
  • Sending work reports to higher management
  • Providing response and resolution to tickets with-in agreed SLA
  • Responsible for validating ticketing tool matrices and help in updating matrices with required changes
  • Achievements: Received multiple appreciations from business management for showing professionality accountability and for quality of work
  • Also part of pilot teams in providing ideas to possibility of leveraging MyIT for purpose of handling escalations.
  • Enhanced system protection by designing and deploying intrusion detection systems.
  • Championed a culture of continuous improvement through regular evaluations of existing security measures against established benchmarks and metrics.
  • Managed relationships with third-party vendors to ensure timely delivery of essential security products and services.
  • Developed clear documentation of policies, procedures, and guidelines related to information security management within the organization.

Senior Team Member - Global Access Management

BA Continuum Solutions Pvt Ltd (A non-banking subsidiary of Bank of America)
Hyderabad
07.2020 - Current
  • Worked in Identity and Access Management [IAM], under process called as (GIS - Global Access Operation Team [Enterprise Platform & Access Services])
  • Perform tasks purely based on Remedy, WINORS, OIM [Oracle Identity Management] & ARM [Access Request Management] In-House Ticketing tool
  • Perform user ID [human and non-human] administration (addition, modification and deletion) on various platforms such as Windows, Mainframe & Midrange based on information contained on access administration forms, or pre-defined role based Access Control definitions
  • Windows administrations tasks are performed using ADUC [Active Directory Users and Computers] and ARS [Active Roles Server] - web based management tool
  • Midrange and Mainframe administrations tasks are performed using CONTROL-SA and IIQ Creation of UNIX\Windows groups, share creations and users account in respective domains
  • Password Synchronization, Password reset for desired domains, User provisioning for Shared Drives and Folders & Creating New shares through Active Directory
  • Ensure effective authentication methods are used to restrict system access to both users and platforms Aggregating and analyzing risk events reported by business units related to access provisioning and de-provisioning Performing root cause analyses on identified risk events to recommend improvements to prevent these risk events from re-occurring in future
  • Report to Principal Risk Coordinators with identification of key risk indicators in their business units
  • Analyzing identified trends in key risk indicators reported to Risk Management Assist Operational Risk department in preparing reports to Operational Risk Forum, Risk Committee, Senior Management Team and Risk and Compliance Committee.
  • Developed strategies to help team reach its goal.
  • Played pivotal role in successful completion of high-priority projects by effectively managing resources and delegating tasks
  • Maintained detailed records of all projects undertaken, ensuring timely reporting on status updates for stakeholders at all levels of organization
  • Fostered positive work environment by promoting open dialogue, addressing concerns in timely manner, and recognizing achievements of individual team members
  • Championed best practices within team, leading by example through adherence to company policies and procedures
  • Developed comprehensive training program for new hires, resulting in reduced time to full proficiency
  • Optimized resource utilization within team by monitoring workload distribution, identifying bottlenecks, and reallocating resources as needed for maximum efficiency
  • Served as escalation point for complex issues or disputes within team, providing decisive leadership and guidance to resolve conflicts effectively
  • Identified areas for improvement within team, implementing targeted strategies to address gaps in skillsets or knowledge
  • Developed strategies to help team reach its goal.
  • Allocated tasks to staff members daily.

Team Member - GIS Service Delivery and Exception Management

BA Continuum Solutions Pvt Ltd (A non-banking subsidiary of Bank of America)
Hyderabad
03.2012 - 01.2015
  • Worked as part of Global Information Security (GIS) - Service Desk team providing Level1 IP Consulting, .EXE Blocking Exceptions, Data Loss Prevention, Anti-Virus Exceptions, Secure Share Point Access and Enterprise Architecture Management support
  • Responsibilities: Level 1 IP Consulting: Provided first level of Information Protection (IP) Consulting Services such as Data Loss Prevention (DLP), Executable File Download Blocking Exception Management, Anti-Virus Blocking exceptions and Interpretation of Information security standards, policies, and baselines for queries/requests that come in from various lines of business via mail/phone
  • DLP (Data Loss Prevention) Requests: Core Job responsibilities include processing Line of Business Risk Acceptance (DLP) Forms approved by Senior Vice President or Managing Director of respective LOB (Line of Business)
  • Based on information provided in form, Risk Assessment needs to be performed on prescribed tool which include various metrics like Mitigating Controls, Remediation Plan, Risk/Exposure of Noncompliance and submit approval to GIS Senior Manager for approval and upon receiving necessary approval users/teams need to be granted access via various Active Directory Groups
  • Also Provided phone and email support for access related issues
  • EXE Blocking Exception Requests: Providing/Unblocking exception to blocked websites with .EXE extensions which are blocked by default as per Bank’s proxy
  • Job role includes, reviewing business request, performing risk assessment and providing/granting end users with EXE blocking exception via Various Active Directory groups
  • AV (Anti-Virus Exclusions): Provided Anti-Virus exclusions on various Bank servers
  • Reviewing business case, performing Risk Assessments.
  • Were responsibilities held
  • Secure Share Point Access: Granting User access to secure share points on bank’s network, for storing very secure and confidential information
  • Identifying Business case and performing Risk assessment were core responsibilities
  • Enterprise Architecture Requests: handled Global Information security team’s Architecture and Design (EA) projects
  • This process would involve assigning projects to SMEs based on analysis of Technological description provided in request Like Dot Net development, Application hosting service provider, and Application server
  • Web Proxy Exception Requests: Processed Web proxy exceptions for user’s enterprise wide
  • Which includes process of granting access to blocked websites as per Bank’s proxy post Risk Assessment procedure
  • Content Filtering Exceptions: Provide Level2 and Level3 support for Content filtering exceptions (Blue Coat/McAfee Site Advisor) across enterprise
  • Overview policy changes post submitting RFC and active participation in CAB meetings.

Technical Support Executive

Mahindra Satyam
Hyderabad
03.2011 - 03.2012
  • Worked as Technical Support Executive providing support to Internet Service Provider
  • Responsibilities: Provide Technical Support to Verizon (ISP) Customers and also route them accordingly
  • Logging all those customer calls in proprietary tools of Satyam
  • Using troubleshooting techniques to identify products that are defective and Identify or provide input on unique or recurring customer problems
  • Ensure proper escalation procedures are followed as part of escalation matrix
  • Conducting team huddles with colleagues on weekly basis for improving quality and customer focus
  • Helping new agents to strive for better performance of queue.

Education

B.E - Information Technology

TRR Engineering College
Hyderabad
01.2006 - 06.2010

Skills

Information Security Managementundefined

Certification

Iso27001

Personal Information

  • Date of Birth: 07/17/88
  • Nationality: Indian

Additional Information

Certifications:

  • ITIL Foundation
  • Certified ScrumMaster (CSM)

Timeline

Information Security Analyst

Wells Fargo International Solutions Private Ltd
07.2020 - Current

Senior Team Member - Global Access Management

BA Continuum Solutions Pvt Ltd (A non-banking subsidiary of Bank of America)
07.2020 - Current

Team Member - GIS Service Delivery and Exception Management

BA Continuum Solutions Pvt Ltd (A non-banking subsidiary of Bank of America)
03.2012 - 01.2015

Technical Support Executive

Mahindra Satyam
03.2011 - 03.2012

B.E - Information Technology

TRR Engineering College
01.2006 - 06.2010
Iso27001
Itil – foundation – oct 2022
Monalisa Roy