Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Rajkumar Ramasamy

Summary

Experienced Information Security officer working in the financial services and consulting industry. Have a multitude of skills in areas such as Information security related compliance, Internal audit, Risk assessments & Third party and vendor Risk Assessments, Governance and privacy compliance, Cloud security, DevSecOps, Incident management and Forensic Investigation

Overview

12
12
years of professional experience
1
1
Certification

Work History

Information Security Officer

Open Financial Technologies
03.2022 - Current
  • Developing and Implementing policies and procedures to protect sensitive data and systems from unauthorized access, use, disclosure, disruption, modification, or destruction, in line with standards such as ISO 27001, NIST 800-53, etc
  • Responsible for Information security operation for of the organization. Conducting management reviews, steering committees,analyzing compliance ,legal, statutory requirements required for products and organization
  • Implementing, managing, and maintaining Information security related compliances such as ISO 27001, PCI-DSS, SOC , GDPR, RBI SAR ,AUA ,CICRA .
  • Assessment and exultation of legal,regulatory ans compliance requirements as per business requirements,business location based ,type of product and data collected,stored, and processed.Such as Data protection ans privacy laws ( GDPR, DPDP)
  • Conducting periodic risk assessments, Internal audits and Third party risk management and identify potential vulnerabilities and aligning with the standards
  • Lead compliance audits and close of non-conformances and suggestions.
  • Information security SPOC for our external banking clients for Information security related queries and closure.
  • Managing incident response ,BCP and disaster recovery planning and execution
  • Hands on experience on CSPM,CWPP,WAAS,SAST and DAST,SCA ,SIEM , DLP,EDR/XDR , VAPT ,Configuration assessments
  • Recommend and Implemented security control for SaaS solutions , review vulnerabilities,source code bug report , container scanning, threat modelling and architecture reviews of cloud and on-prem data center . Hands on experience on AWS, GCP cloud Infrastructure
  • Educating employees on information security best practices

Manager - Information Security

Niyo Solutions Pvt Ltd
08.2018 - 02.2022
  • Managing overall information security of the company and act as single point of contact for the partner banks.
  • Implementing and managing ISO 27001:2013.
  • Implementation and management of PCI DSS v 3.2.1 and other regional compliance requirements (PPI) as per the RBI guidelines.
  • Performing source code reviews of the applications developed in-house through sonarqube.
  • Implement and maintain network security policy management (On premise, cloud & WAF).
  • Sec DevOps – Responsible for training, mentoring and advising on security best practices for the software development team.
  • Conduct operational risk reviews within the organization.
  • Establishing, promulgating and updating the information security policy / standards / baseline documentation.
  • Password management for across all applications.
  • Assist in building the cloud Security framework and architecture.
  • Performing vulnerability assessment and penetration testing & configuration audit for internal banking application.

Associate Consultant

BDO India LLP
03.2018 - 08.2018
  • Conducted IT general control review (ITGCR), Application control review (ACR).
  • Implement and maintain information security solutions to support ISO 27001. Conducted ISO 27001:2013 gap analysis.
  • Performing vulnerability assessment penetration testing for internal infrastructure.
  • Performing physical security check at the datacenter as per the client requirements and defined standards.
  • Recommended suitable mitigation controls vis-à-vis cost.

Technical Engineer - Information Security

iNurture Solutions Private Limited
03.2015 - 02.2018
  • Conducted firewall configuration reviews.
  • Performing vulnerability assessment and penetration testing for applications, public facing servers and network devices.
  • Identify, analyze and evaluate risk at endpoints, thin clients and desktops. Prepared and presented detailed technical report and management summary report.
  • Review existing corporate policies, alter, modify, replace and create policies for the organization in-line with the current requirements.

Associate Consultant

Valiant Technologies Pvt Ltd
11.2011 - 02.2015
  • Performed vulnerability assessment/ penetration testing for internal Infrastructure – audit included testing configurations of firewall,IDS,IPS, router, switches, web and mail servers and verifying.
  • Physical and environmental controls at the datacenter.
  • Identify, analyze and evaluate risk at endpoints.
  • Present findings to management.

Education

Master of Science - Cyber Forensics and Information Security

University of Madras
2017

Bachelor of Computer Applications -

University of Madras
2011

Skills

  • Compliance Evaluation
  • Governance & ISMS Management
  • Third Party Risk Assessments
  • Incident Management
  • Cloud Security
  • DevSecOps
  • VAPT, Appsec, Configuration Audits
  • Compliance & Risk Management

Certification

  • CISM
  • CISA
  • AWS Certified Security
  • PCI-DSS Implementer
  • ISO 27001 LA
  • CHFI
  • CCNA


Timeline

Information Security Officer

Open Financial Technologies
03.2022 - Current

Manager - Information Security

Niyo Solutions Pvt Ltd
08.2018 - 02.2022

Associate Consultant

BDO India LLP
03.2018 - 08.2018

Technical Engineer - Information Security

iNurture Solutions Private Limited
03.2015 - 02.2018

Associate Consultant

Valiant Technologies Pvt Ltd
11.2011 - 02.2015

Master of Science - Cyber Forensics and Information Security

University of Madras

Bachelor of Computer Applications -

University of Madras

Similar Profiles

  • Sai Krishna

    Sai KrishnaSai Krishna

    Data Analyst at Open Financial TechnologiesData Analyst at Open Financial Technologies

  • Aditya Shrotriya

    Aditya ShrotriyaAditya Shrotriya

    Compliance Manager at Open Financial Technologies Private LimitedCompliance Manager at Open Financial Technologies Private Limited

  • LISSY P K

    LISSY P KLISSY P K

    Senior Manager - Product Support at Open Financial Technologies Pvt LtdSenior Manager - Product Support at Open Financial Technologies Pvt Ltd

  • Madhuri Ekka

    Madhuri EkkaMadhuri Ekka

    Product Support Engineer at OPEN Financial TechnologiesProduct Support Engineer at OPEN Financial Technologies

  • Samuel Maeder

    Samuel MaederSamuel Maeder

    Information Security Officer at Lift BrandsInformation Security Officer at Lift Brands

CREATE PROFILE
Rajkumar Ramasamy