Vivek Soni

AA***, Street No. **, New Town, Action Area I

Kolkata (700163)

Phone: +91-916*******

LinkedIn Profile: https://www.linkedin.com/in/vivek-soni-415488b7 Email Id: adheh4@r.postjobfree.com Skills and Technologies:

Operating Systems Windows, Kali Linux, Ubuntu, MAC OS Programming Language Python

Application & Tools Microsoft office, MySQL, Burpsuite, Hydra, John the Ripper Markup-Languages HTML(Notepad), CSS

Languages English, Hindi

Related Courses:

CISA (Certified Information Systems Auditor) by ISACA, USA.

Passed CRISC (Certified in Risk and Information Systems Control) Exam (ISACA), USA.

Passed 100W Cyber Security Practices for Industrial Control System by U.S Dept. of Homeland Security, USA

Passed 210W-09 Attack Methodologies in IT and ICS by U.S Dept. of Homeland Security, USA.

Completed CNSS (Certified Network Security Specialist) from ICSI,UK.

Completed PCI DSS Training from cybrary.it. Implementation knowledge of PCI DSS.

Completed the course module on “An Individual’s Right to Access and Obtain their Health Information” under HIPAA offered by Medscape, LLC, USA.

QMS (Quality Management System) Lead Auditor by bsi. Education:

Bachelor Of Engineering, Computer and Science Engineering Rajasthan Technical University, India: May 2012 with HONOURS.

Completed Penetration Testing, Incident Response & Forensics course from IBM.

Completed Information Systems Auditing, Controls & Assurance program from The Hong Kong University of Science & Technology and offered by coursera.

Completed the online program of Governance, Risk & Compliance from The University of Georgia and offered by coursera.

Completed Penetration Testing and Ethical Hacking course from Cybrary.it. Academic Projects:

Chat Application: It was developed under the guidance of Mr. Navin Sharma, Owner at # define Institute, Programming Language used: Front end- Java(J2SE), Back End- MS Access .It uses some multithreading features and JDBC connectivity to ensure chatting between server and client. Synchronization is the main concept. Also some features of JComponent were used to create a well-defined interface.

Hospital Management System: It was developed under Mr. Bharat, Professor, Department of CSE. Programming Language used: Front End: Visual Basics Back End: MySql. It actually allots beds for patients,in case of any emergency. It also keep track of inventory. I also included complaint management system to ensure proper hospitality to patients

Technical Experience:

Currently working as Deputy Manager at Bandhan Bank, Kolkata(HO). Also working as a part-time trainer for certification courses like CISA, CISM & CRISC and as a Teaching Assistant at Cybrary.it. Responsible for technical content development. Responsible for ITGC reviews, executing annual IT Audit Plan for the Bank in accordance with Internal Audit Standard. To undertake VAPT of OD, DB and application by use of tools like Burp Suite, Nemesis etc. IS audit according to the well-known standards of ISO 27001, NIST, PCI DSS and other best practices.

Worked as Risk Manager at SBI Life Insurance Co. Ltd, Patna from 15/07/2019 till 15/09/2020 Job Profile includes Internal Audit for ISO 31000, ISO 22301, Information Security Assessment in compliance with ISO 27001 for all the SBI Life branches of the region. Responsibilities include Maintaining Risk Register, RCSA activity, Risk Scenario Development, Risk & Information Security Awareness sessions, Sales Audit Activity, Implementation of ISO 27001 in a phased approach in all the branches of SBI Life including Regional Offices. Design, develop, planning and implementation of Information Security and Business Continuity framework across all the Regional branches covering 50+ major locations.

Worked as Consultant for ISO 27001, TL 9000, ISO 31000, ISO 22301 at Transolute Consultancy Pvt. Ltd from 5th March 2016 till 18th June 2019. Was responsible for information & network security design and development, policy

& procedure designing, performance management, business continuity planning, ISMS and compliance management. Well versed in designing internal controls and process audit checks for various operational areas and recommend cost control measures for improving bottom-line performance. Proficient in developing Business Continuity Plans, procedures, and Service Standards for Business Excellence. Experience in developing framework for Business Improvement Initiatives by Six Sigma Methodology (Define, Measure, Analyse, Improve and Control).Various Major clients include Apar Industries-Valsad(End to End Implementation ISO 27001, TL 9000), Credence-Pune(ISO 27001, PCI DSS) Sbi Life-Mumbai(ISO 22301, ISO 31000), Radsoft-Jodhpur(End to End Implementation of ISO 22301, ISO 27001) etc.

Worked as a Network Operation Centre (NOC) Engineer at Tata Teleservices Ltd., Hyderabad (India) June 2012 – March 2016

Responsible for Surveillance and fault management of key nodes like Home Location Register (HLR), Signal Transfer Point (STP) & Intelligence Network (IN) in Telecom industry. Planning & Optimization of Networks, creation, operation and maintenance, across all leading technology platforms. Worked on world class products like Alert Navigator,IBM TSRM(Tivoli Service Request Manager) and trouble ticketing systems. Experienced in planning and implementation of fixed line Switches, GSM switch, OSS & Value Added Services like Intelligent Network based Pre- paid, Post-paid, Premium rate, technical specification preparation. Strong competence in providing effective business solution and technical architecture to leverage technology in creating revenue opportunities. Maintaining operations to ensure superior service delivery to total client satisfaction. Industrial Training:

5 week industrial training at Tata Indicom, Jodhpur(Raj. Exposure obtained in the field of Technologies like CDMA, GSM etc.

6 months training of J2SE, Framework(Eclipse), C and CPP at #define Institute, Jodhpur(Raj.) Achievements:

Secure 1st position in Business Simulation Game from north zone in an event conducted by United School of Business in collaborationwith IIM Bangalore.

2 articles got published on Cybrary.it website. The subjects were: 1. Infrastructure Security

2. Cloud Security

Contact this candidate