Soumit Das

• Coordinating the security finding remediation of Project Security, Payment Security, User Identification and Authentication, Access Control and Provisioning, Privilege Access, Data in Transit and Rest, Data Protection, Security Testing, Application Gateway Protection, Anti-DDoS, and Security Event Monitoring, etc.
• Overseeing the non-compliance remediation across business, infra, and API platforms.

Adobe - Risk Assurance and Advisory:

• Identified root causes of significant findings in automated controls and communicated risk mitigation strategies to senior management.
• Assessed effectiveness of 55 ITGC controls in SAP environment, delivering comprehensive results to senior audit management.
• Served as SAP subject matter expert for inquiries from internal stakeholders and external auditors.
• Leveraged Power BI to enhance efficiency in control assessments.

• Managed a team of 3-4 consultants, delivering short and midterm audit engagements to onshore.
• Supported the IT SOX audit of the entire SAP ERPs and databases for Shell.
• Collaborated with Shell IT Assurance team to mitigate findings prior to audit closure.
• Developed critical risk and control placemats for the Workday Change Management process at Shell.
• Coordinated with IT Support, Developer, and Operations teams at Ned Bank and prepared RACM for Access, Change, and IT operations.
• Led a team of two auditors to evaluate IT risks across key business processes at Rentokil.

• Assessed key SAP ITGC controls: Debug Edit, Direct Profile assignment, Secure Code Review, Active Directory, Table changes, User Access, SOD, Sensitive Access, Patch Management, and shared monthly KPI report with process owners and Sr. Compliance Management.
• Leveraged Power Query and Power BI to manage large databases of leavers' population to assess the effectiveness of weekly Active Directory controls.
• Analyzed real-time data analytics in Sumo Logic, and shared recommendations with the SAP Basis team on the deletion of overrunning OS logs.