Summary
Overview
Work History
Education
Skills
Timeline
Generic

SANDESH AGARWAL

Third Party Supplier Risk Analyst
Agra

Summary

Focused individual with experience in Consulting, risk assessment, cloud security, internal audit, vendor/third party risk management, internal control review, risk & compliance, process improvement reviews and project governance Information Security Specialist with passion for aligning security processes and procedures with guidelines.

Overview

6
6
years of professional experience
5
5
years of post-secondary education

Work History

Technical Lead

Happiest Minds Technologies
Noida, UP
05.2023 - Current
  • Assisted with day-to-day operations, working efficiently and productively with all team members.
  • Participated in team projects, demonstrating an ability to work collaboratively and effectively.
  • Completed paperwork, recognizing discrepancies and promptly addressing for resolution.
  • Demonstrated strong organizational and time management skills while managing multiple projects.
  • Paid attention to detail while completing assignments.
  • Excellent communication skills, both verbal and written.

Senior Specialist

HCL Technologies Limited
Noida
05.2022 - Current
  • Excellent communication skills, both verbal and written.
  • Used strong analytical and problem-solving skills to develop effective solutions for challenging situations.
  • Analyzing risk areas associated with vendor solutions and propose mitigating controls as per ISO 27001 and NIST CSF.
  • Paid attention to detail while completing assignments.
  • Proved successful working within tight deadlines and a fast-paced environment.
  • Developed customized policies, procedures and controls, disaster recovery plans and technical documentation for applications, systems and infrastructure.
  • Communicated with project stakeholders to convey requirements of technical and process improvements.
  • Maintained and updated quality management system to facilitate procedure enhancements, revision changes and overall process control.
  • Planned and executed ISO engagements under direction of management team.
  • Interfaced with client before and during process of auditing activities.
  • Identified areas in need of critical improvement and implemented strategies to achieve targets

Cybersecurity Consultant

IDFC First Bank - Assets Branch
Agra
04.2021 - 05.2022
  • Leading multiple security risk assessments and audits across products, project delivery, internal and vendor/supplier.
  • Leading security risk assessments, presenting reports and working towards a closure of the risks assessed.
  • Identified process inefficiencies through gap analysis and devised process improvement plans.
  • Performing end-to-end vendor risk assessments manually as well as on GRC tools : Process unity & One Trust.
  • Created cybersecurity best practice communications to educate staff against known threats and potential vectors of attack
  • Designed company-wide policies to bring operations in line with Center for Internet Security (CIS) standards

Business Analyst(Risk & Compliance)

EYGDS India Private Limited
Gurgaon
11.2017 - 03.2021
  • Instituted contingency plans and business impact analysis, ensuring business continuity and disaster recovery.
  • Reviewing ISO 27001 certification, SOC2 reports, Vulnerability Assessment and Penetration Test reports.
  • Conducted risk assessment on ISO 27001 framework and worked on risk management till it's closures.
  • Has worked on multiple engagements wherein I was involved in drafting policies, process, guidelines and standard Operating Procedures for all business and support functions.
  • Managing IT audits and assessment for various clients in the organization and helping them to remediate the finding by proposing the best solution/ industry best practice.
  • Used critical thinking to break down problems, evaluate solutions and make decisions
  • Created plans and communicated deadlines to complete projects on time

Education

Bachelors of Commerce - Accounting And Finanace

Dayalbagh Educational Institute
Agra
06.2012 - 06.2015

MBA - IT OPS And Finance

Dayalbagh Educational Institute
Agra
06.2015 - 06.2017

Skills

    Risk identification

Risk Assessments

Risk evaluations

Symantec Endpoint Protection

Critical thinking skills

Project planning and development

Strategic planning

Timeline

Technical Lead

Happiest Minds Technologies
05.2023 - Current

Senior Specialist

HCL Technologies Limited
05.2022 - Current

Cybersecurity Consultant

IDFC First Bank - Assets Branch
04.2021 - 05.2022

Business Analyst(Risk & Compliance)

EYGDS India Private Limited
11.2017 - 03.2021

MBA - IT OPS And Finance

Dayalbagh Educational Institute
06.2015 - 06.2017

Bachelors of Commerce - Accounting And Finanace

Dayalbagh Educational Institute
06.2012 - 06.2015

Similar Profiles

  • Aarthy NagarajanAarthy Nagarajan

    Technical Product Lead at JP Morgan And ChaseTechnical Product Lead at JP Morgan And Chase

  • Subhiksha ArvindSubhiksha Arvind

    TECHNICAL DELIVERY LEAD at TelstraTECHNICAL DELIVERY LEAD at Telstra

  • Mayuri KudireMayuri Kudire

    HMI Consultant / Scrum Master & Technical Lead at IELEKTRON TECHNOLOGIES PVT. LTD.HMI Consultant / Scrum Master & Technical Lead at IELEKTRON TECHNOLOGIES PVT. LTD.

  • Riyaz MirRiyaz Mir

    Lead Technical Support Engineer at Promobi Technologies Pvt LtdLead Technical Support Engineer at Promobi Technologies Pvt Ltd

CREATE PROFILE
SANDESH AGARWALThird Party Supplier Risk Analyst