Hi, I’m
Varun Batra
Information Security Lead
Gurgaon
Summary
Information Security Professional with 11 years of experience in Information Security deployment, Governance Risk and Compliance (GRC), Cloud Security Assessments and RSA Archer, have worked with geographically diverse teams in various industries, including information technology, pharmaceutical, Big 4 consulting and Product Technology companies. The following is the area of expertise :
• Information Security policy, standards and procedure
• Governance, Risk and Compliance - RSA Archer
• ISO 27001:2022 Audits
• Cloud Security Assessments - Azure, AWS, GCP
• Secondary Domain Controller Security Assessments
• Information Security Exceptions
• Information security Risk Assessment
• Information security Incident Management
• Information Security requirements review in MSA/Contracts
• Information security Compliance management and reporting
Overview
16
years of professional experience
6
years of post-secondary education
3
Certifications
Work History
Accenture India Pvt. Ltd., Gurugram
Information Security Lead
6 2022 - Current
Job overview
- Increased the adoption to 25% for Organization security policies and standards by reducing the Information Security Exceptions including review with multiple SME reviews i.e. IS Standards, IS Architecture, Client Data Protection teams and then performing risk assessment and final decision with IS Leadership.
- Performed Cloud Security assessments for the organization internally hosted Azure, AWS and GCP environments with complete end to end life cycle starting from kick -off, reporting, finding remediation and finding closure in RSA Archer which resulted in enhancing security compliance to organization policies and standards by 30% for various internal cloud tenants.
- Performed Secondary Domain Controller assessments for the organization internally hosted secondary AD domains with complete end to end life cycle starting from kick -off, reporting, finding remediation and closure in RSA Archer enhancing security compliance to organization policies and standards by 28% for various internally hosted secondary DCs.
- Conducting ISMS and Data Privacy Audits on ISO 27001:2022 framework both remote and onsite for organization internal offices and sites with complete end to end life cycle starting from kick -off , reporting ,finding remediation and closure in RSA Archer which helped the team in gap assessments before external ISMS assessments.
- HSSA, ISMS, SADF assessment finding remediation tracking and reporting to IS Leadership which helped increased the efficiency for finding remediation and closure by 20%.
TATA Consultancy Services, Gurugram
Information Security Manager
2016.03 - 2022.05 (6 years & 2 months)
Job overview
- Review of contractual security requirements pertaining from the customer Master Service/Statement of Work and drafting Security Controls Identification (SCI) document for listing all the information security controls applicable
- IT security Incidents management which includes incident investigation, incident analysis, report writing, suggest appropriate corrective action measures and drive closure
- Conducting ISMS Audits on ISO 27001:2013 framework with complete end to end life cycle from kick-off, reporting and NCR/finding closure
- Providing internal support for submitting the evidence for SOC2 audits planned for various client relationships
- Conducting IT security awareness sessions across the firm, advise and support business security risk and control activities which has reduced security incidents by 40%
- Preparing security training calendar and security emailers/security advisories for various customer accounts and this has helped to increase security compliance by 20%
- Conducting yearly Information security events with various quizzes & games to enhance security awareness and training among associates
- Response to Information Security RFP/SIGs/Questionnaire as per requirement
- Worked as individual contributor role for consulting on security governance and compliance management process
- Digitized User Access Management deployment for various client accounts within TCS for granting/revoking user accesses to physical premises, logical resources and then performing user access reconciliation.
TATA Consultancy Services, Mumbai
Information Security Consultant
2014.02 - 2016.02 (2 years)
Job overview
- Perform end-to-end security deployment of the customer accounts across TCS within access and compliance management tool with physical ODC configurations, logical/customer ID configurations in the GRC tool
- Performed user access grant/revoke management, user access reconciliations, logical and physical access configurations in the GRC tool
- Provided and maintained User System Access in compliance with the applicable policies and procedures; analyzed security requirements by evaluation of business strategies and requirements
- Ensured compliance to ISO 27001 standard controls, policies, & procedures, identified security gaps, conducted incident response analyses, developed and conducted training programs, and upgrade security systems
- Developed security awareness session, directed development of orientation & training programs.
LnT Infotech, Mumbai
Business Analyst
2010.02 - 2014.02 (4 years)
Job overview
- Responsible for analyzing client requirements, business artifacts maintenance, test deliverables, testing defects for product releases, review of releases and deployment of successfully tested code
- Created BRDs for the user business cases, developed screen wireframes, ensure alignment with development and testing teams which increased app usability by 20%
- Contributed in designing and developing test strategy, test plan, test cases and generating test reports, defect reports and product quality assurance documentation.
Kelly Services, Noida
Test Analyst
2009.02 - 2010.02 (1 year)
Job overview
- Testing the telecom network performance KPIs against the defined SLA and improved the network response time by 30%
- Defined the test case document and sanity checklist which reduced the UAT errors by 20%
- Interaction and resolution of issues with the Japanese and Korean customers which increased the CSI by 15%.
Education
Maharaja Agrasen Institute of Technology , New Delhi, India
B.Tech from Electronics & Communication Engineering
2004.08 - 2008.08 (4 years)
Shaheed Rajpal Dav Public School , New Delhi, India
High School Diploma
2002.08 - 2004.08 (2 years)
Skills
Information Security policy, standards and procedure
Certification
Security WBT
Accomplishments
B.Tech, Maharaja Agrasen Institute of Technology, Delhi, 2004-08, 73.03%
Socialinnovationproject
Arpan NGO, Donated old clothes, Conducted technical training classes for children to learn basics of computers as a part Maitree Initiative in TCS, Mumbai.
Extracurricular Activities
Awarded “On the spot award” for delivering application on urgent basis with quality. Awarded the “Knowledge Champion Award” in Assurance services. Awarded the “Employee of the month” award for meeting deadlines and getting 6 customer appreciations.
Timeline
Information Security Manager
TATA Consultancy Services
2016.03 - 2022.05 (6 years & 2 months)
Information Security Consultant
TATA Consultancy Services
2014.02 - 2016.02 (2 years)
Business Analyst
LnT Infotech
2010.02 - 2014.02 (4 years)
Test Analyst
Kelly Services
2009.02 - 2010.02 (1 year)
Maharaja Agrasen Institute of Technology
B.Tech from Electronics & Communication Engineering
2004.08 - 2008.08 (4 years)
Shaheed Rajpal Dav Public School
High School Diploma
2002.08 - 2004.08 (2 years)
Information Security Lead
Accenture India Pvt. Ltd.
6 2022 - Current
Security WBT
Lean Six Sigma – Green Belt WBT certified in TCS
Security Audit Management
Similar Profiles
Venkades Murali ArjunanVenkades Murali Arjunan
Service Delivery Ops Lead Manager at Accenture India Pvt. Ltd.Service Delivery Ops Lead Manager at Accenture India Pvt. Ltd.
Ashish ChoudharyAshish Choudhary
SAP Basis Team Lead at Accenture India Pvt. Ltd.SAP Basis Team Lead at Accenture India Pvt. Ltd.
Buddhita MehraBuddhita Mehra
Finance Process Sr. Analyst at Accenture India Pvt. Ltd.Finance Process Sr. Analyst at Accenture India Pvt. Ltd.