Shashank Chaturvedi

• Leading a 16-member team monitoring continuous policy monitoring for infrastructure and applications, strengthening Wells Fargo’s technology risk posture
• Developed and implemented a structured Application & Infrastructure Monitoring Governance Cadence for India and Philippines, improving regional oversight and aligning with enterprise controls.
• Elevated the Minimum Application Requirement (MAR) compliance rate from 70% to over 90% within two years through automation and metrics-driven process reengineering.
• Automated QA/QC workflows, improving audit-readiness, reducing manual effort, and increasing operational efficiency by 15%.
• Developed a team for the period of 3 years with hiring potent talent, skill development in technology risk evaluation, Quality review, Risk Reporting on Tableau and Power BI & Governing the risk mitigation effort.

The role multi-faceted with aspects of engagement with the India team and Primarily working with the US counter part. Both are described below

US centric work -

• Created engagement model for Chief Technology Office (CTO) risk mitigation team around consulting for maintaining healthy risk profile.
• Responsible for engaging with business portfolio's for consultancy around risk mitigation options which includes issue management , policy exception.
• Enhancing and running Minimum Application Requirement(MAR) Program for the CTO business portfolio's
• Improving current process to bring about transformation and automation opportunities
• Creating knowledge repositories for internal stakeholders and business partners

India Centric Responsibilities -

• Engaging with India business counterparts to run initiatives around risk mitigation opportunities
• Running knowledge forum for India level team
• Responsible to inducting new team members and helping them to learn Wells Fargo ways

• Security architect/advisor responsible for data protection, integrity, availability, and scalability for IT solutions developed at LCCI
• Drives architectural decisions related to delivery of security capabilities for multiple functions across LCCI
• Implemented BCM with in the time framework of 6 months
• Responsible for information security decisions for the GCC centre

• Security management for offshore delivery center involving documentation, implementation and operational support of the procedures
• Managing the security awareness, Audit support.
• Solution development around key areas such as regulation, standards, application and cloud security
• Cloud security assessment based on CSA star criteria and advisory on cloud security control
• Acted as regulatory risk focal providing consulting service to offering managers in order to comply with the global regulatory requirement around data privacy and cyber security.

• Managing large BCM engagement for Single point of failure & BCM framework design & consolidation of existing structure for a major ecommerce firm
• Managing large IT Sox engagement for a major process operation transformation & management firm
• Managed a engagement for application decommissioning risk assessment for a manpower providing in heavy engineering
• Managed IT security & data governance review for a analytics based company for a large group

● Performed Multiple ITGC & BCP reviews for Banking ,IT Manufacturing , Retails Clients across India
● Performed IT Sox review for US based storage and Data management company
● Performed Risk assessment for largest bank based in Australia
● Performed Configuration review for various client across industry
● Delivered Proposals for Key areas such as ISMS BCMS and ITGC reviews
● Performed Multiple IT Vendor review for a Leading bank in India & Global Swiss Bank.
● Responsible for performing security risk assessment globally and technology consulting for a major global FMCG Firm

● Performed Audit of one of the GSS center which covered the SOD at system level and BCP areas
● Performed IT asset management audit for EY Global
● Supported in EY global access management audit

● Audited test of design and effectiveness of IT process based on framework defined by the bank
● Performed specialized audit as per the regulatory requirement
● Identified Process improvement areas
● Key member of GRC platform selection

● Understanding client requirement for business continuity and providing strategy for disaster recovery
● Following compliance (IS0 270001, ISO 20001) for continuity services ,facing audits & process improvement
● Responsible for call tree testing, simulation test, walkthrough test for projects based in three locations
● Providing management inputs according to the state of Business continuity
● Organizing business continuity awareness week.

• Worked right from presales to project execution (client presentation describing the offering from MIEL)
• Designing the software security assurance model based on PDCA cycle
• Worked as a project SPOC handling project management and handling the application security by mapping
• Worked on a test bed for Vulnerability assessment
• Designed matrix to capture the KPI from the point of Technical security
• Control testing based on the COBIT to maintain SOX compliance