Omair Parvez
Deputy Manager - Technology Consulting
Gurgaon,Haryana
Summary
An accomplished IT Security Professional offering over 7 years of experience with expertise in Information Security GRC, IT audits, IT general controls, third party risk management,IT Risk Assessment, ISO 27001 implementation, ISMS audits and project management.
Overview
3
3
Certifications
6
6
years of post-secondary education
8
8
years of professional experience
Work History
Deputy Manager
Protiviti Global
Gurgaon, Haryana
02.2021 - Current
- Responsible for conducting Information Security Assessment and Risk management in accordance with established standards such as NIST, COBIT, ISO27001/27005 etc.
- Improving the security control environment and minimizing the risk and impact of information security threats and
vulnerabilities through risk assessments - Identifies areas of IT risk and opportunities to improve IT business processes and provide recommendations.
- Testing of design & operational effectiveness of IT security controls implemented e.g. Network security, Application Security, Data Centres, Data security
- Responsible for performing various clients security audits around IT general controls testing along with financial audits (IFC) covering security controls
- Review of ISMS,BCMS policy & procedures, BCMS framework
- Developing control framework to minimize risk for client's IT applications and determination of automated and manual controls wherever applicable.
- Responsible for performing technical risk assessment for applications/platforms as per requirement.
- Responsible for preparing Audit Scope including Risk Control Matrix, Initial Data Requirement, Audit Committee deck and final report.
IT Compliance Analyst
Alight Solutions
Gurgaon, Haryana
05.2019 - 02.2021
- Perform all audit attestation activities relating to SSAE-18 SOC 1 & 2 audits ensuring work and deliverables in accordance with agreed upon time frames and organizational procedures, standards, and protocols.
- Maintains regular contact with external Auditors, internal management, and Service Delivery regarding status, issues and risks.
- Preparation and Maintenance of Audit Scope Document.
- Annual and Quarterly Reviews as well as SOC2 attestation.
- Internal measures to track timeliness and completeness.
- Participates in meetings with business unit to discuss test and/or audit scoping, testing progress and results.
- Managed effective action plans to respond to audit discoveries and compliance violations
IT ANALYST
Virtual Employee
Noida, Uttar Pradesh
03.2017 - 05.2019
- Responsible to analyze phishing and malicious website all around the globe.
- Responsible for detecting same hashes Apps as well as solving cases.
- Detection of Malicious Domains/Web Pages and further report for their suspension.
- Utilize forensic resource to understand event impacts and generate incident reports.
- Working with confidential tools for detecting security breach in Rough Mobile Applications.
- Perform initial investigations; identify attack vectors and mitigation tactics.(Risk Assessment).
- Collaborate with development team to identify, resolve, and mitigate events.
- Proactively provide feedback on operational processes and procedures.
- Document event analysis procedures and write comprehensive reports of incident investigations.
Cybersecurity Analyst-Team Lead
One 97 Communications, Paytm
Noida, Uttar Pradesh
04.2014 - 03.2017
- Develop plans to safeguard Paytm wallet against unauthorized use.
- Experience on Anti Phishing, KeyLoggers, Web Based Delivery , Vishing & DLP.
- Monitoring reports of amount added to the wallet from source to pay.
- Fraud prevention through unauthorized use of debit/credit cards on real time basis.
- Analysis of I.P address, number of suspicious accounts, bank accounts as well as analyzing the pattern of transactions.
- Primary analyst, identifying emerging and existing threats to Paytm wallet.
- Risk Assessment and Management for Desktop application.
- Expert in the technical, conceptual and content development of wallet collateral.
Business Acquisition Specialist
EasyPolicy
Noida, Uttar Pradesh
11.2014 - 04.2015
- To study insurance plans available on company's portal.
- Increase sale of plans available.
- Calculation of premiums as per individual.
- Expanded sales amongst the user's by consistently delivering goal surpassing results and ensuring complete user satisfaction.
- Evaluated performance and policies against metrics.
Education
Bachelor of Technology - Computer Science
Rajasthan Institute of Engineering And Technology
Jaipur 01.2010 - 10.2014
Higher Secondary Certificate - Science Education
St.Georges College
Agra 01.2009 - 01.2010
Skills
IT Audits and Compliance – ITGC Audits, Information Security Audits, Internal/External Audit
undefinedCertification
ISO 22301 Lead Implementer
Accomplishments
- Frequent participation in NULL | OWASP Meet.
- Participated in DEF|CON Lucknow 2015.
- Participated in“Cloud Security Alliance IIS Conference-2016”.
- Conference on “Ethical hacking & information security.
- Work shop on“Cloud Computing.
Timeline
ISO 22301 Lead Implementer
06-2021
ISO 27001 Lead Auditor
03-2021
Deputy Manager
Protiviti Global
02.2021 - Current
IT Compliance Analyst
Alight Solutions
05.2019 - 02.2021
IT ANALYST
Virtual Employee
03.2017 - 05.2019
Certified Ethical Hacker (C.E.H)
12-2016
Business Acquisition Specialist
EasyPolicy
11.2014 - 04.2015
Cybersecurity Analyst-Team Lead
One 97 Communications, Paytm
04.2014 - 03.2017
Bachelor of Technology - Computer Science
Rajasthan Institute of Engineering And Technology
01.2010 - 10.2014
Higher Secondary Certificate - Science Education
St.Georges College
01.2009 - 01.2010
Similar Profiles
Benita SeyBenita Sey
NA at Protiviti Global ConsultingNA at Protiviti Global Consulting
Vijay SinghVijay Singh
Contractor- Thought Leadership at Protiviti Global Business Consulting ServicesContractor- Thought Leadership at Protiviti Global Business Consulting Services
Achyuth ChenchalaAchyuth Chenchala
Consultant at protiviti global business consultingConsultant at protiviti global business consulting