Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

PRATHIMA SIVAPATHAM

Summary

Certified ISO Lead Auditor with 3.5 years of IT industry experience in risk assessment, cloud security, PCI-DSS, and compliance. Skilled in network security, risk assessments, and conducting audits for ISO standards. Expertise in application security, third-party risk assessment, and cybersecurity compliance. Knowledgeable in emerging threats and industry trends for policy development.

Overview

22
22
years of professional experience
1
1
Certification

Work History

Team Lead

COGNIZANT TECHNOLOGY SOLUTIONS INDIA LIMITED
08.2021 - Current
  • Directed and implemented security Governance, Risk, and Compliance initiatives for the client
  • Specialized in risk framework assessments, cloud security, ISO 27001:2022 compliance
  • Executed firewall remediation tasks effectively
  • Performed comprehensive risk analyses adhering to the Information Security Management System guidelines
  • Ensured compliance with PCI-DSS and ISO 27001:2022 through meticulous evaluations
  • Experienced in carrying out evaluations of third-party risks to recognize, assess, gauge, and monitor information security hazards related to the Cardholder Data Environment (CDE) connected with external services
  • Demonstrated expertise in managing third-party risks effectively
  • Collaborated with clients on continuous improvement of PCI Framework processes
  • Experienced in conducting PCI-DSS assessments to aid clients in reviewing the PCI compliance status of their service providers
  • Assessed information security risks, vulnerabilities, and compliance with PCI standards
  • Collaborated with the Business Information Security Officer (BISO) and leaders from the Centre of Excellence (CoE) to ensure that organizational practices are aligned with business objectives and the evolving threat landscape
  • Engaged with a diverse range of stakeholders, including business leaders, auditors, customer security officers, legal, HR, and IT teams, to comprehend security requirements and risk scenarios
  • Implemented comprehensive risk management principles informed by business context and risk appetite, identifying, assessing, and responding to risks effectively

Lead - Email and Digital Operations Specialist

FIDELITY INVESTMENTS PRIVATE LIMITED
10.2005 - 05.2021
  • Supervise a team of ten representatives, ensuring that all essential metrics and performance standards specified in the Client Service Level Agreement are not only achieved but also exceeded
  • Successfully facilitated the transition of the Release Management Process from the client’s premises
  • Coordinate Change Advisory Board (CAB) meetings to discuss release schedules with the team and identify any potential challenges
  • Strategically organize the release of project deliverables and oversee the release life cycle
  • Launched Rewards and Recognition programs aimed at boosting team performance and motivation
  • Take responsibility for meeting quality and timeliness metrics monthly, which includes reporting, collaborating with the Quality & Service team to conduct root cause analyses, and implementing improvement strategies
  • Perform monthly revenue forecasting based on team performance data
  • Manage Release Management responsibilities, which include scheduling, planning, and supervising the software development and delivery process
  • Facilitate communication regarding project-related tasks such as plans, timelines, and requirements among various teams involved in releases
  • Identify risks that could disrupt the release schedule and implement management strategies; work closely with relevant development teams to create automation tools essential for software development and deployment
  • Ensure that releases are carefully planned in accordance with requirements while updating various email formats, including newsletters, announcements, and seminar invitations
  • Upon the completion of one or more changes—developed, tested, and packaged for deployment—Release Management is responsible for executing these changes efficiently

Team Executive

FIRST SOURCE (Formerly ICICI ONESOURCE)
02.2003 - 04.2006
  • Directed and implemented security Governance, Risk, and Compliance initiatives for the client
  • Specialized in risk framework assessments, cloud security, ISO 27001:2022 compliance
  • Executed firewall remediation tasks effectively
  • Performed comprehensive risk analyses adhering to the Information Security Management System guidelines
  • Ensured compliance with PCI-DSS and ISO 27001:2022 through meticulous evaluations
  • Experienced in carrying out evaluations of third-party risks to recognize, assess, gauge, and monitor information security hazards related to the Cardholder Data Environment (CDE) connected with external services
  • Demonstrated expertise in managing third-party risks effectively
  • Collaborated with clients on continuous improvement of PCI Framework processes
  • Experienced in conducting PCI-DSS assessments to aid clients in reviewing the PCI compliance status of their service providers
  • Assessed information security risks, vulnerabilities, and compliance with PCI standards
  • Collaborated with the Business Information Security Officer (BISO) and leaders from the Centre of Excellence (CoE) to ensure that organizational practices are aligned with business objectives and the evolving threat landscape
  • Engaged with a diverse range of stakeholders, including business leaders, auditors, customer security officers, legal, HR, and IT teams, to comprehend security requirements and risk scenarios
  • Implemented comprehensive risk management principles informed by business context and risk appetite, identifying, assessing, and responding to risks effectively

Education

Bachelor of Arts - Economics

Bangalore University
01-2000

Skills

  • Risk management
  • Cloud security
  • ISO compliance
  • Firewall remediation
  • Risk assessment
  • Third-party risk
  • Audit reporting

Certification

Certified Information Security Management System Auditor/Lead Auditor, ISO/IEC 27001:2022, DNV, 60694909-149162858

Timeline

Team Lead

COGNIZANT TECHNOLOGY SOLUTIONS INDIA LIMITED
08.2021 - Current

Lead - Email and Digital Operations Specialist

FIDELITY INVESTMENTS PRIVATE LIMITED
10.2005 - 05.2021

Team Executive

FIRST SOURCE (Formerly ICICI ONESOURCE)
02.2003 - 04.2006

Bachelor of Arts - Economics

Bangalore University

Similar Profiles

  • Jerusha Roy Festus

    Jerusha Roy FestusJerusha Roy Festus

    Content and Brand Specialist at Cognizant Technology Solutions India LimitedContent and Brand Specialist at Cognizant Technology Solutions India Limited

    View Profile
  • Anubhab Das

    Anubhab DasAnubhab Das

    Associate at Cognizant Technology Solutions India Private LimitedAssociate at Cognizant Technology Solutions India Private Limited

    View Profile
  • Harish Karnati

    Harish KarnatiHarish Karnati

    Sr Manager Projects at Cognizant Technology Solutions India Private LimitedSr Manager Projects at Cognizant Technology Solutions India Private Limited

    View Profile
PRATHIMA SIVAPATHAM