Summary
Overview
Work History
Education
Skills
Accomplishments
Timeline
OperationsManager
Richa Sharma

Richa Sharma

Information Security Specialist
Chandigarh

Summary

Information Security Specialist with expertise in information security policy, compliance, risk and incident management. High expertise in directing governance, risk and compliance management initiatives while establishing, implementing and enhancing key information security objectives. Proven ability to design and regulate critical security programs with in-depth operational supervision of incidents and emergency disaster recovery. Known for cross-functionally collaborating with diverse teams and communicating with stakeholders at all levels of a corporation.

Hands-on Experience leading all stages of system development efforts, including requirements definition, design, testing, and support. Outstanding project and program leader; able to coordinate and direct all phases of project-based efforts while managing, motivating and guiding teams.

Overview

17
17
years of professional experience
7
7
years of post-secondary education

Work History

Information Security Associate

United Nations-IOM
Valencia
05.2022 - Current
  • Provided comprehensive on-going leadership and support for variety of information security-related projects including sole leadership and strategic direction for information risk management while reporting directly to CISO.
  • Actively participated in various boards and committees to contribute to smooth business operations and growth.
  • Developed and implemented crucial security concepts while also conducting regular reviews and maintenance of security and business continuity documentation.
  • Established and integrated numerous security-related policies and guidelines including periodic controls and compliance.
  • Executed critical risk and business impact assessments and continuity and recovery management plans while addressing security and business continuity concerns.
  • Proactively reinforced challenging problem management/resolution such as revision of root cause analysis process and documentation.
  • Served as leader for several initiatives including development of laptop security check, anti-virus roll-out, change and problem management, launch of disaster recovery site and data leakage prevention.
  • Prioritized tasks to meet tight deadlines, pitching in to assist others with project duties.
  • Created and implemented security network framework across 20000+ devices

Security Consultant

Meta-Ethic Security LTD
01.2022 - 05.2022
  • Established, implemented, and continually improved information security controls, ensuring protection of organizational information assets
  • Contributed to developing framework for roles and responsibilities, covering information ownership, classification, accountability, and protection.
  • Developed, maintained, and disseminated up-to-date information security policies, standards, and guidelines
  • Engaged with stakeholders for policy approvals, training sessions, and dissemination activities, fostering culture of security awareness within organization
  • Participated in various projects, providing essential security requirements, performing assessments, and raising awareness of security framework among project teams
  • Ensured security programs adhered to relevant rules, regulations, policies, and standards, minimizing risks and audit findings
  • Implemented monthly security KPIs and metrics to monitor operational and security effectiveness.
  • Assessed security compliance, security program organization, policies, and procedures, general risks and vulnerabilities.
  • Developed reasonable and cost effective recommendations for security improvement.
  • Studied organization's security policies and made appropriate changes to improve protection.
  • Reduced security risks by providing efficient emergency response management.

Information Security Officer

Miracle Studios
01.2016 - 01.2022
  • Established and maintained organization's information security vision, strategy, program, and roadmap
  • Addressed security threats and vulnerabilities against business mobile and cloud web applications
  • Reviewed and updated security policies and supporting documents
  • Ensured suitability and adequacy of policies in addressing information security requirements
  • Identified tools and technologies within client landscape to enhance effectiveness of information security policies and standards.
  • Recommended improvements in security systems and procedures.
  • Reviewed violations of computer security procedures and developed mitigation plans.
  • Performed risk analyses to identify appropriate security countermeasures.
  • Conducted security audits to identify vulnerabilities.
  • Encrypted data and erected firewalls to protect confidential information.
  • Monitored computer virus reports to determine when to update virus protection systems.

Cabin Supervisor

Jet Airways
09.2006 - 12.2015
  • Worked well in a team setting, providing support and guidance
  • Attended workshops and trainings in customer service, conflict resolution tactics, and safety procedures to keep abreast of all new requirements and procedures
  • Clearly explained and demonstrated safety and emergency procedures to passengers prior to takeoff
  • Performed pre-flight safety checks to verify oxygen masks, life jackets and other emergency equipment in good working order
  • Greeted passengers, assisted with carry-on baggage storage and delivered onboard announcements

Education

Certified Information Security Manager (CISM) -

ISACA
04.2022 - Current

AZ-900 Microsoft Azure Fundamentals -

Microsoft
05.2022 - Current

AZ-500 Microsoft Azure Security Technologies -

Microsoft
05.2022 - Current

Certified in Risk and Information Systems Control (CRISC -

ISACA
07.2022 - Current

Bachelor Of Arts - Political Science

Shobhit University
07.2011 - 2014.07

Masters - computer application

Dr A.P.J Abdul Kalam Technical University
07.2021 - 2023.07

Skills

Cybersecurity risk management, risk assessments, vulnerability triage and security auditsundefined

Accomplishments

  • As an Information security and cybersecurity professional, I facilitate information security governance, risk, and compliance by implementing a robust GRC foundation for the organizations, including direct reporting to the information security steering committee and advisory board
  • I have over seven years of experience in cybersecurity,designing and enforcing security policies, procedures and processes and aligning security controls to protect computing infrastructure (on-premises and cloud) from security breaches and cyber-attacks
  • I am a certified information security manager (CISM) and certified in risk and information systems control (CRISC),with expertise in information security policy, compliance, risk, and incident management
  • I lead and manage information security projects, vendor security, SOC Team, and disaster recovery planning for my present and previous organizations, ensuring the organization-wide alignment of security policies and standards with business needs and best practices
  • I am passionate about enabling security governance, risk and compliance for organizations and their stakeholders.

Timeline

Certified in Risk and Information Systems Control (CRISC -

ISACA
07.2022 - Current

AZ-900 Microsoft Azure Fundamentals -

Microsoft
05.2022 - Current

AZ-500 Microsoft Azure Security Technologies -

Microsoft
05.2022 - Current

Information Security Associate

United Nations-IOM
05.2022 - Current

Certified Information Security Manager (CISM) -

ISACA
04.2022 - Current

Security Consultant

Meta-Ethic Security LTD
01.2022 - 05.2022

Masters - computer application

Dr A.P.J Abdul Kalam Technical University
07.2021 - 2023.07

Information Security Officer

Miracle Studios
01.2016 - 01.2022

Bachelor Of Arts - Political Science

Shobhit University
07.2011 - 2014.07

Cabin Supervisor

Jet Airways
09.2006 - 12.2015

Similar Profiles

CREATE PROFILE
Richa SharmaInformation Security Specialist