Manager Data
Resume:
SANDEEP AICH
* ******** **., *************, **, 08648; Phone: 908-***-****; EMAIL: ***********@*******.***
“Driving results through IT Risk and Resiliency Management in global financial firms” Profile:
Information Technology executive with 25 years of proven track record in leadership positions at global banks in IT risk mitigation and risk advisory roles. o IT Risk - Successfully represented Prudential with the Fed regulators which resulted in no MRAs for Technology Risk and Resilience and a clean bill of health for the IT infrastructure of the company. Successfully built an end to end process and a team to execute IT Risk Reviews of all the Franchise Critical Applications globally within Citibank. o Virtualization - Invigorated corporate change in IT infrastructure management and administration by introducing and architecting the framework, policies and procedures for virtualized platforms in a global bank. This resulted in a paradigm shift in infrastructure rollout strategy within the company leading to a cost saving of 219 Million Euros. Established all processes and controls for virtualized products including data and access management that were adopted globally across the enterprise. o Disaster Recovery - Designed and executed a rock solid disaster recovery strategy resulting in Fed Whitepaper compliance. This strategy has been tested and found resilient in real world scenarios by shielding the business from technology outages.
Education, certifications and memberships:
o Columbia University, NY - Master of Science in Technology Management - 2007 o Bachelor of Engineering in Electronics & Telecommunications – Shivaji University, India - 1992 o ISC2 – Certified Information Systems Security Professional - CISSP o ISC2 – Certified Cloud Security Professional - CCSP o ISACA – Certified Information Systems Manager - CISM o ISACA – Certified in Risk and Information Systems Control - CRISC o ISACA – Certified Data Privacy Solutions Engineer - CDPSE o ISACA - Cybersecurity Fundamentals Certificate - CSXF o Cloud Security Alliance – Certificate of Cloud Security Knowledge - CCSK o DRII – Certified Business Continuity Professional – CBCP o CompTIA - Security+
o IEEE – Member
Professional experience:
January 2015 to Present Vice President (Global IT Risk and Resilience) Prudential
Provided global leadership, operational coordination, oversight and consulting across business units with regard to IT Risk and Resiliency assessments and reviews.
Developed an IT Resiliency Risk Management function by applying a holistic quantitative and qualitative approach to Technology Risk and Resiliency across the enterprise.
Successfully represented Prudential with the Fed regulators which resulted in no MRAs and a clean bill of health for the IT infrastructure of the company.
Created the full framework and template of Key Risk Types, Risk Topics, Risk Description, Risk Rating, Sub Risks, Sub Risk Description, Risk Range Thresholds, Control Topic, Control Descriptions, KRIs and frequency of KRIs for risk within the company. 2
Developed an Independent Quality Review Process for reviewing runbooks and architecture for mission critical applications as well as reviewing test plans and results for critical technology components.
Championed and established an independent analysis process for technology outages. Developed a SOP for analyzing root causes of High Impact IT Change Tickets, Severity 1 Outages resulting in a DR invocation, IT application/system component level fail over or disaster recovery data center site fail over. The success or failure of recovery actions during outage events are compared against prior test results and application architecture reviews to identify gaps in the system architecture.
Proven track record of developing and maintaining senior-level stakeholder relationships while working collaboratively with development, production and infrastructure teams and offering risk opinions.
Offered leadership and guidance in data governance and data protection including key regulatory programs
Provided advisory services in shaping next generation controls, and engaged with Internal Audit, Legal and Compliance and other groups as necessary to support reviews of the enterprise control environment.
Provided oversight in design and execution of key operational controls to ensure ongoing operating effectiveness.
Spearheaded key initiatives across Production Services to strengthen key controls.
Managed risk assessment processes to help technology teams, control partners, and business stakeholders understand the state of technology and data control suite while collaborating to prioritize and remediate identified gaps.
June 2013 – December 2014 Senior Vice President (Operational Tech. & Risk Mgmt.) Citibank
Successfully built an automated end to end process to execute “IT Risk Reviews of all the Franchise Critical Applications” in the company with a goal to meet an OCC (Office of the Comptroller of the Currency) directive (Initial end date of June 2014 was accelerated to February 2014 due to the successful pace of the project). Phase 2 of the project was initiated to analyze Gold and High Critical applications.
Introduced and championed a holistic review of critical IT platforms to uncover systemic issues.
IMPACT: 65 Franchise Critical Applications remediated. Remediation in progress for 48 applications.
Developed a global team of 14 to do reviews - Rutherford, NJ; Warren, NJ; Jacksonville, FL, India.
Standardized risk procedures and eliminated process breakdowns.
Created and introduced a frame work for using Cloud technologies to increase resiliency in the bank.
Developed a plan to increase adoption of IT infrastructure products that improve the resiliency and recoverability of IT platforms (Recover Point, VPLEX, Data Domain and Data Protection Advisor).
Created a multi-step quality process to ensure IT Risk analysis results are of the highest quality.
Created a full questionnaire with automated data pulls from various data sources to investigate and analyze the entire DR platform of the company.
Created and championed a full risk decision and categorization matrix for gaps discovered in IT platforms during the analysis.
Created a control mechanism and tracker to track progress and remediation of gaps (43% of all gaps uncovered remediated on time).
Managed the project to rollout IBM GDPS in the mainframe environment so as to setup 4-Site resiliency.
Provided Subject Matter Expertise in developing a model to analyze 3rd Party Vendor Technology Risk which was a key component of the OCC MRA.
Lead the effort to introduce a framework and standard for resiliency for IT infrastructure platforms.
Designed a model to execute full volume testing of applications as instructed by the OCC in the new MRA.
Created an “application supportability” matrix which provides senior management a bird’s eye view of the health of IT platforms in the company.
3
June 1999 - May 2013 Vice President (Technology Operations) Deutsche Bank
Compliance and Audit -
Worked with audit and compliance to lead an initiative to remediate issues found in the Monetary Authority of Singapore (MAS) audit by rolling out restricted powerbroker profiles for data and access management.
Infrastructure Product Acceptance - Responsible for providing the requirements, acceptance criteria and guidance for infrastructure product solutions delivered to the Global Technology division.
Midrange Manager - Head of Enterprise Midrange Support for Deutsche Bank in Americas managing a team of 20 direct reports
o My team supported ALL business units within the bank including Ultra Low Latency, High Frequency Trading and Client Reporting, Equities, Global Markets, Prime Services, Program Trading, Securitized product Group, Government Fixed Income Trading and Settlement, EQ and GM Research, Stock Loan, EQ and GM Risk, Fed White Paper infrastructure, Private Wealth Management, Money Transfer and bond trading businesses.
o Managed 4 cost centers for Midrange expenses for Americas. o Subject Matter Expert for the secure development environment. Designed and architected the secure development environment that enabled outside vendors to login into development environment without compromising the security of production boxes.
o Responsible for partnering and working directly with the CTO/Engineering/Architecture teams, technology partners and vendors to drive and lead the initiative in production support to rollout automation tools within the Bank including Blade logic, Netuitive, Affinity – Ganglia and PMRE.
IT DR -
o Successfully designed and delivered processes for Disaster Recovery (DR) for the Midrange environment at the bank resulting in a significant reduction in Mean-Time-Between Failures (MTBF) from days to minutes for the infrastructure.
o Processes proved to be robust and resulted in efficient recovery of infrastructure during hurricane Irene (2011). Deutsche Bank was recognized by the Business Continuity Institute (BCI) with the
“Most Effective Recovery of the Year” award. https://www.db.com/usa/content/en/2349.html
Compute Optimisation -
o Led the Compute Landscape Optimization (CLO) project to increase the density of compute environments resulting in a 35% reduction in datacenter costs for the company.
Virtualization -
o Global Virtualization Lead for production support at Deutsche Bank. o Successfully architected and delivered a virtualized platform to satisfy cost reduction initiatives in the datacenters through consolidation of all servers on a virtualized platform. o Net savings to the company due to virtualized services Euro 219 Million. o Provided the new strategic direction for all IT server implementations within the Bank.
Datacenter Migration -
o Managed the datacenter of Deutsche Bank (31 West, NY to Parsippany, NJ) with zero business impact. June 1992 - May 1999 Customer Service Manager IBM
Clients – Campbell Soup, Konica Business Machines, Alcatel, Hughes Systems, Coca Cola, SmithKline Beecham, Nestle, Pepsi.
Contact this candidate