Soumendu Banerjee

• Security Architecture - Played a critical role in defining the strategic priorities of an Architecture Governance Forum for a significant Cyber Security function within the Bank
• Architecture Standards & Governance - Defined Architecture Governance Framework for new as well as existing security solutions in line with the Enterprise Architecture frameworks like TOGAF, AWS Well Architected etc. Also managed to integrate internal Bank standards/processes into the framework for a seamless adoption by the consumers
• Architecture Documentation - Designed many Architecture templates e.g. Reference Architecture, Logical Architecture, Guardrails & Constraints etc. to drive standardization within the function
• Architecture Guild - Managed Architecture Review Forum meetings for service design, solution review , template approvals, etc.
• Capability Maturity Assessment - Managed Capability Maturity Assessment for all security services. This included definition of a standard assessment framework , scoring methodology and then evaluation of Technical, Process and People maturity criterions to arrive at a quantifiable maturity index
• Governance Framework Tooling & Automation - Enforced and implemented the Architecture Governance Framework through an internally developed tool for consistent Architecture reviews and better documentation of Architectural decisions
• Team Scrum - Coordinated and facilitated best of Scrum practices to ensure team objectives delivery

• Email Security Policies (Implementation & Support) - Coordinated with business stakeholders to implement/manage Enterprise wide email security policies e.g. Enforced TLS, Policy Based Encryption, Blacklisting/Whitelisting etc.

• Enterprise Email Policy Governance & Recertification - Managed Annual Recertification exercises of existing security policies

• Standard Operating Procedures Documentation - Played a critical role in documenting process SOPs in line with internal documentation standards

• Tooling & Automation - Built an internal tool to track/automate recertification activities within the function

• Incident Management (only for email) - Coordinated with all relevant stakeholders within and outside the organization during any incident

• Mobile Device Management Security Policies (Implementation & Support) - Coordinated with business stakeholders to implement/manage Enterprise wide mobile security policies e.g. Containerization, Secure Web, Secure Email, Custom MDM profiles etc.

• Enterprise MDM Policy Governance & Recertification - Managed Bank wide iOS version upgrades for more than 25K mobile users

• Tooling & Automation - Worked with more than 50 local country support teams to streamline iDevice provisioning within the Bank

• Access Management - Performed access administration for over 400 internal applications

• Security Matrices - Managed yearly recertification of application security matrices

• Toxic Access Remediation - Coordinated and remediated Toxic Access within applications

• Orphan Account Discovery & Remediation - Project Lead for Orphan accounts discovery and remediation

• Team Lead (Mailbox, Application Onboarding etc.) - Managed central mailbox of Access Administration Team. Was also responsible for onboarding new applications to the central pool after appropriate vetting of prerequisite controls

Same roles and responsibilities as mentioned below for Tecnova as our client swapped it's outsourcing partner from Tecnova to HyperQuality in October 2012 inducting complete team in the new organization

• Access Management

• Server Monitoring

• Quality Assurance

• Management Reporting

• Service Desk

• Team Lead (Book of Work, Training, Roster etc.)

• Access Management

• Quality Assurance

• Service Desk