Information Security Risk Management

NIVEDITA KAMAT

CISA, CISSP, ISO, Agile Scrum Certified

Phone: 925-***-**** Email: ********.*****@*****.*** PROFILE

Certified Information Security and Program Management professional with over 10 years of experience specializing in Identity Access Management (IAM), Governance, Risk, and Compliance (GRC), and Security Risk Management. Proven ability to lead cross- functional teams and execute multi-million-dollar security projects with a focus on cybersecurity, data governance, and internal audit management. Demonstrated expertise in SOX, ISO compliance, and security control frameworks. Adept in utilizing tools such as JIRA, Confluence, Smartsheet, Azure DevOps, and Lucidchart to drive project success.

AREAS OF EXPERTISE

Identity Access Management (IAM)

Governance, Risk, and Compliance (GRC)

Data Privacy & Intellectual Property Protection

Internal Risk & Audit Management

Program & Project Management

Security Control Implementation (SOX, ISO, NIST)

Cybersecurity Strategy & Frameworks

Vendor Management & Security Assessments

Agile & Scrum Methodologies

Cross-functional Team Leadership

PROFESSIONAL EXPERIENCE

APPLIED MATERIALS

Technical Program/Project Manager

08/2024 – Present

Lead global information security and physical security controls across lab environments.

Drive process improvements in cross-functional teams, enhancing security protocols.

Collaborate with external vendors to develop and implement lab security training.

Facilitate global workshops for lab owners, ensuring comprehensive security control remediation.

Provide strategic oversight on project timelines, resources, and budget, ensuring timely execution and cost eƯiciency.

Proactively manage risks through comprehensive risk management strategies, mitigating potential threats and ensuring seamless execution.

Function as the primary point of contact for all stakeholders, maintaining continuous status updates and alignment across teams. LAM RESEARCH

Program Manager

03/2018 – 07/2024

Managed complex Data Governance and Identity Access Management (IAM) programs, ensuring compliance with SOX and ISO standards.

Drove execution of cross-functional security projects, utilizing JIRA, Confluence, and Azure DevOps for project tracking.

Led security-related technical projects involving in-house product deployment, improving overall security posture.

Coordinated internal and external audits, partnering with auditors to ensure compliance and address risks.

Collaborated with business owners to ensure adherence to SOX and ISO 27001 requirements.

Provided regular updates and conducted steering committee meetings to ensure alignment on security initiatives.

PROTIVITI

Experience Consultant

07/2016 – 02/2018

Led remediation eƯorts for a top-five commercial bank’s Branch Banking Audit, ensuring alignment with risk management frameworks.

Developed and implemented SOX IT General Controls for financial reporting across multiple IT environments, ensuring CIA Triad of data.

Conducted detailed risk assessments and provided remediation plans for identified deficiencies in audit findings.

Delivered consultative guidance for improving security controls and audit outcomes across various client environments.

DELOITTE

Advisory Consultant

01/2014 – 06/2016

Assisted clients with financial statement audits and IT control assessments to ensure Sarbanes-Oxley (SOX) compliance.

Planned and executed Internal Control Audits for multiple industries, including financial services and technology sectors.

Mentored junior consultants and developed process improvements for identifying and mitigating control ineƯiciencies.

Coordinated eƯorts between onshore and oƯshore teams to deliver exceptional client services and ensure audit success.

MUTUAL OF OMAHA

IT Intern - Project Management

05/2013 – 08/2013

Designed a risk assessment manual to categorize IT projects based on critical management-identified factors.

Developed a project training manual and contributed to reporting on resource utilization.

EXPICIENT

Associate Consultant

01/2011 – 08/2012

Created and executed automated test plans to ensure high-quality software releases, contributing to a Zero-Defect Product.

Collaborated closely with cross-functional teams to uncover software issues and drive resolution.

EDUCATION

Master of Science (MS) - Management Information Systems University of Nebraska, Omaha

Specialization: Project and Security Risk Management

Post Graduate Diploma in Business Management (PGDBM) Indus Business Academy

Specialization: International Business Management

Bachelor of Engineering (BE)

Visvesvaraya Technological University (VTU)

Specialization: Electrical and Electronics Engineering CERTIFICATIONS

Certified Information Systems Security Professional (CISSP)

Certified Information Systems Auditor (CISA)

ISO 27001 Lead Implementer

Certified ScrumMaster (CSM)

Contact this candidate