Summary
Overview
Work History
Education
Skills
Certification
Interests
CORE COMPETENCIES
Timeline
Generic
Rohit Waywal

Rohit Waywal

Mumbai

Summary

Results-driven Information Security Analyst with 5 years of hands-on experience in Privileged Access Management (PAM), Database Activity Monitoring (DAM), and File Integrity Monitoring (FIM). Proven expertise in deploying and administering ARCON PAM, Imperva DAM, and Trellix FIM across enterprise BFSI environments. Skilled in regulatory compliance (RBI, IRDAI, UIDAI, PCI-DSS, ISO 27001), incident response, security auditing, and privileged session governance. Adept at collaborating with internal audit teams and supporting RBI CSITE examinations.

Overview

3
3
Languages
2
2
Certifications
5
5
years of professional experience

Work History

Senior Executive – Information Security

SMFG India Credit Co Ltd.
09.2023 - Current
  • ARCON PAM – Privileged Access Management
  • Administered end-to-end privileged access lifecycle management using ARCON PAM, enforcing least-privilege and zero-trust principles across critical IT infrastructure in a large-scale BFSI environment.
  • Configured access request workflows, role-based access control (RBAC) policies, and session recording rules, reducing insider threat risk and strengthening access governance.
  • Monitored and audited 100+ privileged user sessions daily, detecting policy violations and suspicious activity with real-time alerting and escalation.
  • Conducted monthly Privileged Access Management (PAM) audits and endpoint reconciliation, ensuring 100% adherence to access control policies.
  • Supported RBI CSITE, IRDAI, and UIDAI regulatory examinations by providing timely audit evidence, session logs, and compliance documentation.
  • Performed daily BAU troubleshooting, OS migration, DB clustering, and application upgrade activities on the ARCON PAM platform.
  • Maintained regulatory compliance in PAM, conducted monthly user access reviews, and managed vendor relationships including Purchase Requisition (PR) processes.
  • Imperva DAM – Database Activity Monitoring
  • Monitored and analyzed database activity across enterprise environments using Imperva DAM, identifying anomalous queries, unauthorized access attempts, and policy violations in real time.
  • Configured and fine-tuned security policies and alert rules, significantly reducing false positives while maintaining comprehensive coverage over sensitive financial data assets.
  • Led database security incident investigations — conducting root cause analysis, documenting findings, and delivering remediation reports aligned with RBI and PCI-DSS requirements.
  • Generated periodic audit and compliance reports supporting RBI CSITE, PCI-DSS, SOX, and internal audit requirements.
  • Trellix FIM – File Integrity Monitoring
  • Monitored critical file system activity across servers and endpoints using Trellix FIM, detecting unauthorized file modifications, deletions, and access attempts in real time.
  • Configured FIM baseline profiles and policies to establish trusted states for critical OS files, directories, and registry keys across Windows and Linux environments.
  • Investigated file integrity alerts and executed incident response procedures — performing root cause analysis and escalating confirmed threats per SOC runbooks.
  • Generated detailed file change audit reports to support PCI-DSS, SOX, and RBI CSITE compliance requirements, maintaining audit-ready documentation at all times.
  • Integrated Trellix FIM with SIEM platforms to correlate file change events with broader security telemetry, improving threat detection accuracy and response time.

Technical Engineer

Hitachi Systems India Pvt Ltd.
12.2022 - 09.2023
  • Delivered ARCON PAM administration and Level 1/2 support for Aditya Birla Capital, managing access provisioning, user creation, and service mapping.
  • Implemented Trend Micro Apex One endpoint security for SBI, configuring safelisting/blocklisting policies and automating daily report extraction.
  • Managed end-to-end access lifecycle for enterprise clients, ensuring timely provisioning, de-provisioning, and access reviews.

Technical Support Engineer

Jayaa IT Solution Pvt Ltd.
08.2021 - 12.2022
  • Provided ARCON PAM Level 1 support for ICICI Bank, handling user creation, service modifications, and password management for privileged accounts.
  • Managed ticketing workflows using Logical Access Management (LAM) and ServiceNow, ensuring SLA adherence for security incidents and access requests.
  • Generated log and activity reports for user service mapping, supporting audit and compliance requirements.

Education

B.E. - Electronics & Telecommunications

Lokmanya Tilak College of Engineering
Navi Mumbai
01.2021

HSC - undefined

Chandrabhan Sharma College
Mumbai
01.2015

SSC - undefined

St. Anthony's High School
Mumbai
01.2013

Skills

PAM Tools: ARCON PAM

DAM Tools: Imperva DAM

FIM Tools: Trellix File Integrity Monitoring

Endpoint Security: Trend Micro Apex One

ITSM / Ticketing: ServiceNow, Logical Access Management (LAM)

Certification

ARCON PAM Administrator

Interests

Yoga, Karate, Cricket

CORE COMPETENCIES

  • Privileged Access Management (PAM)
  • Database Activity Monitoring (DAM)
  • File Integrity Monitoring (FIM)
  • Incident Response
  • Security Policy Configuration
  • Session Recording & Auditing
  • Regulatory Compliance (RBI / IRDAI / UIDAI / PCI-DSS)
  • User Access Reviews
  • SIEM Integration
  • Vulnerability Assessment
  • Endpoint Security
  • SOC Operations
  • ISO 27001:2022
  • ServiceNow

Timeline

Senior Executive – Information Security

SMFG India Credit Co Ltd.
09.2023 - Current

Technical Engineer

Hitachi Systems India Pvt Ltd.
12.2022 - 09.2023

Technical Support Engineer

Jayaa IT Solution Pvt Ltd.
08.2021 - 12.2022

SSC - undefined

St. Anthony's High School

HSC - undefined

Chandrabhan Sharma College

B.E. - Electronics & Telecommunications

Lokmanya Tilak College of Engineering
Rohit Waywal