SUMANGAL VISHWANATH DANDGE
# Sovereign Residency, Building No.C2,Flat no.903, Phase 2 Rd, Behind Wipro Ltd.Hinjewadi Rajiv Gandhi Infotech Park, Hinjawadi,Maharashtra 411057
Add value to myself and to my organization by giving the best of my skills in a
competitive environment and achive a unique position in a managed organization
B.C.S. In April 2007 from MGM college of CS & IT Parbhani (Affiliated to Swami Ramanand Tirh Marathwada University )
Intermediate (Science) in march 2004 from Yashwant Mahavidyalaya Umari (Board of intermediate Education,Maharashtra)
SSC in March 2002 from Rly High School Purna(Board of Secondary Education, Maharashtra)
CMS Certified Network Specialist professional Track (CCNSPT) from CMS computer institute, Secudarabad includes the following modules
A+ (Hardware & Engineering)
N+ (Networking Technologies)
CCNA(Cisco Certified Network Associate)
MCSA(Microsoft Certified System Administrator)
lRHCE(Red hat Certified Engineer )
lVMWare Vpshere 5.1
lMCP(XP Professional) Certification in NOV 2008
l NIIT National IT aptitute test passed in 2005
lRAJYA PUTRASKAR passed in 1998 from South Central Railway
lSDF (SERVICE DESK FOUNDATION) in Nov 2008
lVMWare Vsphere 5.1 participation certification
A+ : Installation & Troubleshooting
N+ : Cabling,IP addressing,Network Maintaining and Troubleshooting
CCNA : Layers of OSI & TCP/IP, Configuration of Cisco Routers,IP Routing,Configuration of RIP, IGRP,EIGRP and OSPF
MCSA : Installation of of Windows 98/ XP/ 2000 and 2003 Servers and configuration of DNS
Active Directory and DHCPInstallation and Managing Microsoft Exchange Server 2003
Maintaining the Backup system data
RHCE : Installing and configuring Linux Server and other applications
Configuring Server (DNS,DHCP,NFS,NIS,SANBA)
Configuring Apache Server (Web Server)
Creating & Archiving files, directories and mount directories
Creating and managing users & groups and their permissions
Company: Screen magic Pvt LTD.
Role: Information security manager
Duration: Current Employee
Primary role is to lead the ISO 27001 certification, GDPR, HIPAA within organization. Information security standards for compliance on Data security which Include Operate the ISMS, Update the documentation, Review the risk assessment, Monitor and measure the ISMS, perform internal audits, perform management review, Perform corrective actions.
Detailed descriptions of responsibilities
1.Operate the ISMS :
a)Perform all the activities described in the ISMS policies and procedures.
b)complying with all the requirements in all ISO 27001 documents and producing the real records.
c)co-ordination with internal teams to make sure ISO 27001 practices are followed in organization.
d)Make sure that Screen-Magic is stringently following all data security practices.
e)Conduct regular trainings for data security practices.
2.Update the documentation:
Periodic review of documentation and records and recommend possible changes.
3.Review the risk assessment:
On account of changed circumstances, the threats and vulnerabilities will change and automatically risk associated also changes. In that context, Information Security Manager needs to review the risk periodically, do risk assessment, perform necessary changes, and update the documents.
4.Monitor and measure the ISMS:
Review ISMS objectives on periodic basis. Improvise the ISMS objectives with respect to new business needs and risk identified. Update ISMS systems and implement, review and monitor the performance in accordance with the business needs.
5.Perform internal audits:
Perform internal audits at regular intervals, review the ISMS and identify gaps and mitigate.
6.Perform management review:
Submit the report of ISMS with Top Management, discuss the progress, improvements, challenges etc.
Co-ordinate with External Certification body, schedule and conduct the ISMS surveillance audits at regular intervals.
8.Customer Communication –
a)Security RFPs - Fill up and submit the RFPs/Questionnaires requested by customers in due time
b)Inform customers about security incident as per SLA/Privacy policies
c)Customer Communication in regards with Data subjects request as per SLA
d)Get on call with customers to resolve/answer security related queries.
Lead the System & Network team at Screen-Magic. - IT Team Operation, Monitoring, and Management. Help-desk Monitoring. IT Escalation Management. Monthly MIS reports to Management
Meet SLAs of System and Network Team
Manage budgets for certification activities & IT teams.
Handle procurement/renewals of IT tools include IT quarterly budgeting, vendor selection, price negotiation, procurement, renewals.
Maintain trust sites of Screen-Magic products.
Write knowledge blogs on trust site regarding sm security compliances.
Help Tech team to comply with latest security breaches.
Legal: Reviewing customer/ 3rd party legal contracts and map the requirements with respect ISO and document and maintain.
Get on call with Customers for fielding Data security queries
Monitoring, Reports, Handling of Customer queries.
Need to submit the MIS reports on Every month - with following reports
1.Continual Improvement progress report of ISMS
2.MIS of system & network admin activities
3.MIS of legal related activities
4.SLA report of IT department
5.Call report of Data Security Customer interactions.
Company: Wipro Technology Ltd.
Role: Assistant manager
Duration: 7 yr
Identifying information security goals that meets business requirements. Checking whether there are adequate resources for achieving them, and whether the ISMS is properly integrated into the organization s processes. Annual review of the ISO 27001 ISMS Information Security Policy.
Monitoring changes in exposure of key organizational information assets to major threats, deciding acceptable levels of risk and ensuring that awareness of these threats are developed, as well as ensuring that the importance of complying with the ISMS is adequately communicated to the organization. Ensuring that procedures and controls are correctly implemented that are capable of promptly detecting and responding to incidents, as well as the review and oversight of information security incidents. The approval of major initiatives (such as individual initiative associated with the implementation of ISO 27001) to improve information security within the organization. Ensuring continuing compliance with the ISO 27001 ISMS Policy and reviewing these measures periodically. Ensuring that information security requirements continue to meet the business objectives. Ensuring that adequate steps are taken, on an on-going basis, to improve the ISMS.Plan and conducted Internal Quality audits. Internal/external audits such as ISO 270001, SSAE 16,PCI DSS 3.2 and client specific risk assessments . Implementation of various Data center developments and integration activities, including business case preparation and implementation/conducting of BCP and DR activities. Implement NAP/SNAC Enforcement for Antivirus compliance 100% compliance. Increase the Coverage of SCCM & SEP (100% coverage for the region). IT Finance, Procurement and Vendor Management. Implementation of IT infrastructure solutions as per business needs. Project management for IT related activities, and serves as a liaison with vendors/ service providers. Manage 1st and 2nd Line FTEs. This entails the effective management of IT infrastructure in a timely and professional manner and in accordance with service level agreements. Whilst established practices and processes, carry out work using own initiative, which will require frequent reactive and proactive communication with any staff member in order to give and receive updates on outstanding tasks and Incidents. Internal contact will be with all members of the business and the IT Service Desk team to ensure that work is completed accurately. External contact will be with hardware and software vendors and suppliers, as well as 3rd party companies that use services. To identify and resolve issues with applications, following agreed procedures and using application management software and tools to collect agreed performance statistics. To carry out agreed applications maintenance tasks. Provide technical expertise to enable the correct application of operational procedures. Organizing, planning, controlling and reporting IT infrastructure projects as assigned as per ITIL guidelines.
Data center infrastructure administration VMware, Windows server 2003/2008/2012 administration. Storage management (SAN), switches, routers, firewalls, telephony, and video conferencing (Life Size).
Organizing, planning, controlling and reporting IT infrastructure projects as assigned. Implementation of various Data center developments and integration activities, including business case preparation and implementation.
Implementation of IT infrastructure solutions as per business needs. Project management for IT related activities, and serves as a liaison with vendors/ service providers
Coordination with US infrastructure team - for network, projects, etc.
Assist in the monitoring and reporting on attained infrastructure service levels
Following procedures and methods for IT asset management and controls. Recommending new methods and technology solutions to meet local requirements. Coordinating with and supporting the IT Development team on technical problems and changes to be brought about in technical and operating environment. Assist in disaster recovery and contingency planning to tackle any business interruption issue. Manage, support and monitor day-to-day activities of Network Operations systems, Provide technical support, for voice & data communication. Set up new systems and services as required Coordination with US infrastructure team (for network, projects, etc.) Manage and maintain 30+ production servers, code migration, storage, IT purchases/ service contract - vendor evaluation, vendor certification, PO, coordination with US team. Successfully implemented IT infrastructure for 300+ users.
Company: PHINIX COMPUTERS.
Role: Service in-charge
Duration: 3 yrs
Maintained all H/W and N/W infrastructure on given projects and maintain CISCO 2851 router, make Video conferencing by using various cisco devices and give Horizontal internet connectivity to the related offices. Troubleshooting problems related to Operating system, Hardware, Internet, Applications, User profile, Creating & Deleting User Accounts on server2003, Working on File Server, adding pc in domain, verifying disk quotas, troubleshooting MS-Outlook, Lotus Notes, configuring MS-Outlook, Lotus Notes on Client End, Network related issues, Server related issues etc. with the co-ordination to related team, co-ordination with onshore team in some onshore based application. Handling S1 user calls, Blackberry troubleshooting, Active sync troubleshooting, Plan activity as per scheduled, guiding new Engineers, acting as escalation point for desktop Support, Create and update SOPs, Desktop Images.
Father's Name : Shri. Vishwanath Sakaram Dandge
Date Of Birth : 5 March 1986
Marital Status : Married
Language Known : English Hindi Marathi
Present Address : Flat no.C2-903
Sarthi sovereign behind wipro phase 2,
Sumangal V. Dandge