Sandhya AC

21+ years of experience working with a leading IT organization in India. Performed multiple roles including Project Manager, Service Delivery Manager, Lead Data Analyst, Team lead, Security Analyst mainly in the area of Governance, Risk and Compliance, Network Segregation, Identity and Access management. Passionate about empowering teams through training and mentorship. Look forward to opportunity to work on GRC area to apply my experience and knowledge.

RSA Archer 6, SailPoint 7.3, SunIDM, IBM Tivoli Identity Manager, CA Identity Manager, CA Siteminder, RSA Archer 6.0, Cyber Security, Certified SAFe Practioner, RSA Archer Certified Associate, STQC Certified Information Security Professional, Information Security Infrastructure Library (ITIL)

Domain Consultant

• Project Global Information Security, 01/2020 - 03/2021, One of the critical projects for a leading manufacturing company, any interruption to Service had a direct impact on the manufacturing unit of the customer. IAM Project started with transition of IAM operations to TCS team. After completion of the transition, team was responsible for complete IAM and Directory Services operation including ownership of priority issues. Joined with customer in the Agile journey to take up enhancements and development tasks along with operations., Led the offshore team to transition the IAM and Directory Services Operations for the critical project from customer team to TCS team. Service delivery was handled thereafter; main responsibilities being regular customer connect to provide status updates, publish Service Dashboards, ensure delivery as per agreed contracts, own and manage priority issues, manage customer feedbacks, offshore team management, TCS quality management. Also, responsible for Service Delivery of IAM services to provide additional authorizations to SAP systems and ensure compliance to SOX Audit requirements.
• Project Global Information Security, 10/2020 - 12/2020, Identity and Access Management solution was implemented in the customer environment using the SailPoint tool. This was a short term project to upgrade SailPoint from version 6.3 to 7.3p2., Worked as Project Manager for the project and successfully completed the upgrade and UAT. The responsibilities included project planning, regular status tracking and updates to customer, work with stakeholder and vendors to resolves issues faced, UAT, team management.
• Project Global Information Security, 08/2016 - 05/2019, A 3-year Global InfoSec program was introduced for a leading Banking and Finance customer to plan and execute the Information Security projects in a strategic way to enhance the overall security posture of the organization. Secondly, there existed an Information Security Team who performs various activities to ensure Security Compliance for the customer. The project also included support and enhancement of Governance, Risk and Compliance tool implemented in the Infrastructure., Started with PMO task to support the program manager handling the InfoSec Global program. Later took over additional tasks to support Information Security team in their weekly/monthly/quarterly activities related to InfoSec. Also supported the RSA Archer GRC tool which was transitioned to TCS team.
• Project SailPoint IDAM Application, 01/2016 - 06/2016, Moody’s, SailPoint IIQ 6.3 was installed for the Banking Customer to deliver the Identity and Access Management capabilities. SailPoint IDAM application project was intended to enhance the existing system to include additional business case, upgrade the existing system to 6.4P5 and enhance the capabilities, My role as a tester involved preparation of functional test cases for Access approvals, Automatic access fulfillment for roadmap application, provisioning de-provisioning, upgrade to 6.4P5, and other business requirements, test data. Performed unit testing and integration testing for the above-mentioned activities.
• Project Home Lending Information Security Audit Support, 03/2015 - 12/2015, Home Lending Imaging Services was scheduled to attend Internal Security Audit for the first time for the banking customer. This project was intended to support the customer in achieving the desired level of compliance from a security audit perspective with respect to Infrastructure system like Active Directory, BoKS Server control etc and ensure, the required documentations are in line with the audit standards and industry standards, As Security Analyst, I supported customer in identifying risks due to non-compliance of critical systems like Active Directory, BoKS Server control etc. Compliance was ensured through analysis, clean up and organization of Active Directory group and membership. identifying gaps in BoKS Server and coordinating with respective system owner to remediate the gaps. Also, Identification of potential audit deliverables, and preparation of documentation to meet audit requirements related to Access management, Release and change management.
• Project Information Security Governance, 11/2011 - 08/2012, Information Security Governance project for a leading manufacturing customer was intended to cover overall governance of the information security activities, As a Security Analyst, involved in Due Diligence activities for the transition of access management module from a competitive vendor; Preparation of questionnaire to understand the scope, stakeholders of Privileged Access Management module, Product assessment and Use-case creation in Lab, preparation of operating procedure document for the Access Management module after transition, Governance activities related to privileged access to critical systems which involved Servers, DBs using the CA Access Control Tool, Creating and maintaining BCP, RMR documents, handling any security incidents reported within project, participating in quarterly internal security audits and external audits (KPMG), periodic access reconciliation and Status reporting to TCS Security manager, conducting Security Awareness training.
• Project Identity Management Support, 08/2010 - 02/2011, IDM project is the identity management program for the media and communication customer which mainly focused on providing support to ensure high availability of the IDM System. The project also involved enhancement activities suggested by the clients to incorporate new customization and to improve the productivity of the system., My role involved support and enhancement for IAM solution implemented via SUN IDM tool. Also worked on Supporting the CA SiteMinder tool implemented for SSO.
• Project Information Security and Compliance, 08/2006 - 07/2010, Information Security and Compliance project was aimed at ensuring Information Security Financial information assets and to ensure regulatory and audit compliance. The main activities are divided into four streams: Governance and strategy, Threat Monitoring and Response, Identity and Access Management, Technology Compliance, I worked as a Security Analyst and Team Lead role for Identity and Access Management Module while implementing the IAM solution for the customer using the IBM Tivoli Identity Manager tool.
• Project Home Lending, 01/2006 - 07/2006, Home Lending Project is a module within the Consumer Banking project. As a part of the spin off from the parent company, the Bank project evolved to come up with a new AMP-Federal Savings Bank., I worked as a Business System Analyst for the Home Lending project. As a part of the Analysis and Design phase of the project, my major responsibilities involved interacting with clients to gather the requirements, to identify and analyze the technical requirements, to identify the design components, preparation of analysis and design document etc.
• Project Insurance System Support, 06/2004 - 12/2005, The banking and Financial Organization used ‘LANmark Administration’ system to maintain its Third-Party Distribution of Annuities. This project aimed at providing technical support to LANmark Administration., As a part of the project, I have worked as developer for Enhancements request which involved analysis, design, coding, test plan preparation, testing. Additionally, been the Project Process and Quality lead (PPQL) for 9 months.

• Date of Birth: 02/11/79
• Nationality: Indian