Satyajeet Deo

• Perform risk assessments of Banking applications, Cloud services, IT infrastructure and services. • Conduct threat modelling for applications, thick client, mobile, APIs, web services and Cloud infrastructure. • Identify vulnerabilities in the design stage of the SDLC cycle. • Review Security controls in SDLC cycle. • Track open risks and follow-up with business for closure. • Managing stake holders for risk tracking and control implementation.

• Conduct internal ISO27001 Audits for functions and software development projects. • Perform Risk Assessment for recommend controls to the concerned party. • Review of security controls in SDLC cycle for projects. • Leading security incident management team. • Development of policies, procedures, guidelines and templates for IT Risk Management. • Conduct automated vulnerability scanning of systems and applications. • Ensure compliance with MSA /MWA by projects.

• Prime responsibilities were to conduct ITGC audits and internal audits for IT processes including Program Development, Change Management, User access management, Computer operations (IT services and Infrastructure). • Carry out Test of control design and Test of operative effectiveness of ITGC for Management Assessment for SOX ITGC attestation audit engagements • Conduct SAS 70 Type I and Type II audits. • SOX Control testing

• Conduct Vulnerability Assessment and Penetration Testing • Conduct Information Security Audits and ISO 27001 compliance audits. • Technical Review of Application, Network and Systems for evaluating and suggesting Security Controls. • Auditing Projects for Security Controls in SDLC. • Internal IT Control Assessment engagements based on Client requirements

• Windows Administration of Win Server 2003 • Patch Management using WSUS • Implementing Policies, OU and Domain structure. • Internal VA/PT • Working on Trend Micro Anti-Virus.

Computer Networking, VLSI Designing , Power Electronics, Communication.