Manager Management
Resume:
Sheraz Chaudhry
Tel: 845-***-****
*** * ********** ****, ******, NY, 10954
**************@*******.***
RISK MANAGEMENT AND COMPLIANCE
OBJECTIVE
To obtain a challenging position that will allow for growth and a chance to use my education and job exper ience.
SUMMARY OF QUALIFICATIONS
Highly accomplished, business-driven risk management and compliance professional. 13 years outstanding work experience in the field of
Information Technology. Experience working in a client facing role and build relations hips with key stakeholders and senior management. Polished
professional with superior leadership abilities, and exceptional communication skills.
EDUCATION Masters of Business Administration - New York Institute of Technology
Bachelors of Science Electrical Engineering - University of Engineering and Technology Lahore
STATUS US Citizen
TECHNICAL SUMMARY
Hardware Switch NIC Cards Hubs Video Cards
Box hill CD-ROM's Printers Floppy Drives
CD Burner Patch Pane l Modems RAM upgrades
Tape Drives Repeaters Scanners Bloomberg
T-1 ISDN Routers KVM Switch
Software SAP W IN2K, WIN2K3 Oracle Reuters-Market Data
SQL/ IIS TCP/IP W INS/DHCP Exchange Server 5.5/2003
W INS Adobe Peoples soft MS Office 2010
Bloomberg Active Directory W ebmail MS Works/Project
E Backup Utility SNA SMS ARC server for window NT
Compliance
ISO 27000 CISA PCI-DSS RCSA (Self-Assessment)
Techno Staffing, Inc. New York, NY April 2012 to Present
Information Security Analyst
Remediated control deficiencies identified by testing newly implemented or upgraded controls for appropriate design and operationa l efficiency.
Ensured compliance with Security Policies, Procedures and Standards, recommend improvements and enhancements to these standar ds as
needed.
Developed and maintained risk control matrix (RCM) to ensure reduced risks, control efficiency and gen eral compliance.
Track outstanding control and audit issues, corrective actions plans, risk acceptances and data collection activities pertain ing to legal/regulatory
requirements.
Prepared reports on audit findings and made recommendations for correcting u nsatisfactory conditions, improving operations and reducing the
compliance cost.
Develop and create Policy based practical procedures for remediation of threats and possible/probable vulnerabilities for cur rent and future
exposure of internal resources.
W orked closely with internal/external auditors in gathering and providing evidences of followed standard procedures for each p rocess and following
up on suggested corrective actions.
Generated weekly metrics reports regarding outstanding issues for manageme nt review.
Investigated issues relating to change record documentation, performing a trace history to identify its origin.
Provided recommendations on business cases, action plans and deliverables to ensure compliance requirements were met .
June 2009 – Jan 2012
Morgan Stanley Smith Barney, New York, NY
Assistant Vice President/Risk Mgmt. /Compliance Coordinator
Ensuring IT managers are adhering to pre-defined procedures and are in par with the Information Security standards.
Coordinate the development of the procedure manuals.
Assist and monitor the self-assessment process (RCSA), audit/business -monitoring activities, and maintain supporting documentation for
participating operational sites.
Collected evidence for RCSA test controls recording findings for audit review.
Scan creation, monitoring, reporting and tracking remediation for internal and external Global Citigroup Infrastructure by coordinating with
appropriate BISO and GISO.
Handling requests for specific network based scanning for worms and virus
Track outstanding control and audit issues, corrective actions plans, risk acceptances and data collection activities pertain ing to legal/regulatory
requirements.
Facilitate and communicate MSSB information security standards, TI audit compliance policies, and management awareness.
Follow up and reconcile security reports and incidents via the SIRT compliance process.
Provide training and guidance for staff to build an understanding of compliance requirements and work with managers to integrate compliance
policies into the BAU operation.
Coordinate COB/DR activities and deliverables.
Engaged in management of IT initiatives/Projects and identification of associated risks for IT Infrastructure and Financial Applications. Developed
an internal standard process to identify risks in the initial project planning phase.
Act as a liaison between IT Management and External Auditors and ensure succ essful audits.
Salomon Smith Barney - Citigroup, New York – NY Oct 2000 – June 2009
(Jan 2008 – June 2009)
Assistant Vice President/Risk Mgmt./Compliance Coordinator
Responsible for coordinating all entitlement reviews for three production environments.
Compiled all necessary documentation for evidence for risk control self -assessment for compliance.
Monthly reconciliation reports to ensure that inventories in the environment are registere d in all the corporate tools.
W eekly ePO (ePolicy Orchestrator) reporting used to measure anti -virus status for the entire Nextgen retail branch network.
Coordinate weekly meetings to ensure that corrective action is being taken on all outstanding invento ry and anti-virus issues.
Utilized TEARS (Technology Event Archival and Retrieval System) and ESM (Enterprise Security Management), in house tools, cre ated for daily
justification and reconciliation of event logs.
Prepared weekly dashboard for senior management
W orked with the operations department to develop and understand all testing necessary for successful DR execution involving d ata center testing.
W orked with the Business Continuity Department to assure the Crisis Management Plan and Business Conti nuity plans are aligned to the DR
procedures.
Provided day to day support which included problem analysis and resolution of hardware and software inventories.
Responsible for ensuring all CITMP related BAU documentation was generated and maintained as evidence of technical operational procedures.
Executed TRAM for the department, followed and on CAPs and compensating controls put in place to control and mitigate risk of non-compliant
issues discovered and reported
Salomon Smith Barney - Citigroup, New York – NY
(March 2004 – Dec 2007)
PCSS Operations and Control - Lead Backup Analyst
Responsible for backup operations for 500+ branches.
Coordinating with external vendor HP for replacement of ARCserve backup units in branches.
W orking with purchasing department for acquiring of backup units and tapes from multiple vendors.
Initiated and coordinated monthly tape replacements in 500 branches.
Training and managing staff responsible for monitoring and troubleshooting backup related issues.
As Relationship Manager (RM) coordinated with Business Information Security Officers (BISO) to initiate, plan and complete Th ird Party
Information Security Assessments (TPISA).
Involved with operations team in restoring critical data after servers rebuilds.
Collected annual budget data and reviewed departmental planning efforts for backups.
Established and monitored service parameters and instructions for the third-party administrators.
Salomon Smith Barney - Citigroup, New York – NY
(Oct 2000 – Feb 2004)
Technical Analyst Level II Support Desk
Provided technical phone support from end-to-end in the production environment as a single point of contact for branch production support in a
24/7 environment.
Provided end-user break/fix support for PC hardware/software and network connectivity
Addressed and resolved moderately complex incidents and requests received via telephone and email logging all requests in tracking system.
Contributed to self-help knowledge bases and documents typical requests resolution and work around procedures.
Completed follow up and follow through on all logged requests.
Conduct daily proactive checkouts to ensure stability of the environment.
Responsible for vendor SLA management
Volt – All State Insurance, New York – NY Sep 2000 – Oct 2000
Systems Administrator
Administrating Window NT4.0 network in a multi-domain environment.
Supporting Servers, Workstation and IBM laptops
Troubleshooting of network connectivity between workstation and servers.
Installing local and network printers.
Creating user domain accounts.
Creating user profile in exchange server 5.5
MPL Systems - Citigroup, Clifton – NJ March 2000 –Sep 2000
System Analyst level II support
Coordinate with branch manager to ship hardware and prepare documentation information needed for migration and con version.
Installed, configured, and maintained MS Exchange Servers 5.5 in the site.
Scheduled data migration and server conversion for many locations.
Create back up directories and cleaning space on the servers for data migration.
Assessed and resolved connectivity issues concerning installation, configuration, and management of NT 4.0 Servers with various networking
protocols such as TCP/IP, and NetBEUI...
Using SNA 2.0 and 3.0 manager servers.
Used ARC server manager to backup clients and server data pri or to conversion.
Connected remotely to SOT workstation, backup data and push data remotely to new workstation.
Rebuild servers remotely using 1.2 and 2.0
References: Available upon request.
Contact this candidate