Post Job Free
Sign in

Information Security Project Manager

Location:
Naperville, IL, 60540
Posted:
May 26, 2023

Contact this candidate

Resume:

Asad Tanwir

**W*** Greenbriar Drive

Naperville IL 60540 Cell: 224-***-**** email: *********@*****.***

Executive Summary

Offer 20+ year of expertise in driving enterprise capabilities by leading IT vision, strategy, and large-scale project initiatives. Excel at transforming enterprise applications, infrastructure, service management, data engineering and analytical systems. Manage change effectively, influence business buy-in, and align technology/initiatives with organization strategic objectives. Track record of quickly maturing security posture, turning around troubled operations, and orchestrating large-scale programs. Manage budgets up to $15M

Core Qualification

Governance, risk management and regulatory compliance

Information security program management

Policy development and implementation

Assessment and evaluation of information security controls

Driving process improvement

Vulnerability management

Policy/program development

Cross-functional team management

Supervision and training

Skilled negotiator

Complex problem solving

Security awareness and education

Incident Response

Milestone Management

PROFESSIONAL EXPERIENCE

Achievement Highlights:

Led teams across broad technical, financial and business disciplines. Focused teams on business objectives and tracked progress to ensure project milestones were completed on time, on budget and with the desired results.

Managed large migration phases of the projects I've coordinated, Open Air and NetSuite

Managed Migration from on-prem to Cloud AWS for SAPS4 Hana

Successfully migrated on-prem infrastructure to AWS Cloud

Led ISO27001 Audit and Mitigated risk factors through careful analysis. Anticipated and managed change effectively in rapidly evolving global business environments.

Defined processes and tools best suited to each project. Moved between agile and waterfall approaches depending on project specifics and client goals, creating detailed project road maps, plans, schedules and work breakdown structures.

Accountable for all aspects of global IT including Strategy, Business Applications, Data Centers, Networking, End User Support, Service Desk, Vendor Management, Architecture and Security

Honored at IBM in 2011 in recognition of outstanding project results.

Senior Infrastructure Project Manager

JLL (Real Estate) (Aug 2020 - Current)

Infrastructure / Security

oMananged Team of consultant and internal employee in Data Center

oBuilt Enterprise Security PMO

oManaged ISO/SOC audit yearly

oManaged SNMP V3 upgrade project stie which contains routers, switches, Riverbed, Wireless Controllers, UPS, PDUs, Netbotz, Console Server and Palo Alto firewalls.

oWorked with team to develop Change Management framework for IT and Enterprise Security

oManaged Vulnerbaility patch management companywide, including working with teams across the organization to incorporate security initiatives

oManaged Worked with a cross functional team to develop more complete security protocols for the companies user facing products.

oManaged major initiative to bring uniformity across cloud environment infrastructure

oManaged deployment of CrowdStrike to provide the company enhanced security

oManaged 3rd pary vendor to do an assessment on company wide wireless controllers and provide report based on the assessment to improve current configuration.

oManagend Company wide changemanagement in Data center through a proper CAB approval process.

oHired a 3rd party vendor to help with F5 best practices to assess the current F5 configuration and create a report for best practices

oDecommisioning the Big fix tool and implementing SCCM through out the company for software/patch managemnt

oManaging upgrade of entire switches in Data Center with 3rd party vendor. Implementing the project in 3 phases (staging the switches, implementing Spine Switch in phase 1 and Leaf in Phase 2)

oLed the project migrating secondary data center Disaster and Recovery to Azure

Senior Project Manager

Clarios (Retail) (Dec 2019 – Aug 2020)

Information Security

oDeveloped and implemented information security policies and standards, mapped to industry standards (ISO27001) and SOX

oDrove security roadmap and projects companywide, including working with teams across the organization to incorporate security initiatives into quaterly goals

oPartnered with stakholders company to establish, implement, and maintain a Governance, Risk Management, and Compliance Programs mitigating risk, and improving security posture.

oDeveloped and maintained security control frameworks and guidelines to ensure consistent applications of security controls

oPartnered with engineering and development team to prioritize information security projects, backlog, and implementation within an agile environment

oPerformed risk assessments and control gap analysis, managing associated remediation plans to minimize risk

oPartnered with leaders across IT, Engineering, HR, and Legal to ensure Information security efforts received appropriate prioritization and resources

SAP Cloud Migration

oConsolidated multiple project related SAP Migration from on prem to Cloud and SAP integration vendor Invoice Automation project for finance team

oManaged integration between SAP and 3rd party software KOFAX

oMigrated Clarois data from Johnson Controls data center to their own data center.

oManaged SDLC with 3rd party vendor to make sure all the developments/testing get completed in time. Used hybrid methodology waterfall and agile

oSuccessfully lead the Project on multiple implementations of BW S/4 Hana for EMEA Region application $5M

oEnd to End Implementation of Salesforce integration with SAP system

oMigrated on prem server to VM WARE solution

oEnd to End Implementation of Sales force integration with SAP system

oManaged upgrade infrastructure project for the Data Center

Operational Excellence

oEffectively implemented and streamline security technical workflow process, Using Lean Six Sigma Methodology DMAIC process.

oProactively led the Security team researched, developed and implemented SAP security controls. For the Compliance purpose SAP ITGC and SOX

oManaged Hyper-care tickets through Service now

oStrength in building consensus, and ability to work across stakeholder levels.

oRefined the PMO Playbook by introducing new process, procedures and templates

oManage 5 IT departments, supervising 100 employees with full P&L responsibility

oCollaborate with executive team to design strategies to utilize state of the art technology to enhance business.

oResolve escalated system issues utilizing in house staff and third-party consultants

oResearch, negotiate and prepare IT consulting contracts for third party applications.

Senior Project Manager

AST LLC (Consulting) (Aug 2018 Dec 2019)

Information Security

oPartnered with stakeholders companywide to establish, implement and maintain an information security program improving control efficiency and reducing risk

oLed complex, cross-functional security and compliance initiatives, including. Designing and maintaining a vulnerability management program, Rapid 7, assessments and audits, information security training and awareness, SOX, user access controls 3rd party and customer security assessments, incident response, and penetration tests

oLed ISO27001 Project End to End with HR, Finance and Marketing Operations and IT from setting up policies, procedures to change management and setting up security metrics and controls

oImplemented Change / Incident management System (JIRA) for IT Helpdesk.

oDeveloped a risk-based information security roadmap and managed associated projects

oDeveloped and implemented information security polices, standards and guidelines based on key information security objectives and mapped to industry standards (ISO27001)

oAssessed regulatory and compliance requirement (PCI,ISO) successfully

oLed the ISO27001/ SOX Audit for 2019 with internal auditors and external auditors

Infrastructure Program Initiatives

oManaged Financial Reporting for CFO / Controller with NetSuite, Open Air and Microsoft Power BI.

oManaged M&A for AST LLC bought Serene Inc. Migrated ERP Data, to NetSuite from Intuit. Migrated Active Directory to AST (all the migration ran in background and cut over was done over the weekend with out and downtime or disturbance)

oManaged IT initiative for upgrade current infrastructure/security related needed at the company

oManaged and planned IT 3 years CAPEX and yearly expenditures with CFO.

oManaged projects effectively depending on the need of the project between Agile, Waterfall and Hybrid

oMigrated Production environment from on-prem Datacenter to AWS Cloud

oManaged the team to upgrade the current Firewall on all sites

oManaged the AT&T to team to upgrade the MPLS on all the sites

o

Operational Excellence

oResearch, negotiate and prepare IT consulting contracts for third party applications.

oIncreased understanding of financial performance through use of metrics, data visualization and executive scorecards.

oAchieved multi-million-dollar cost savings in operations management through

omeasurement, analysis, and process improvements

oImplemented Change / Incident management System (JIRA) for IT Helpdesk.

oVendor Management SLA monitoring onshore and offshore team for ERP and IT Server/Network/Desktop Support Team

oManaged Access provision for the entire SharePoint Roles and Security

Migration to Cloud

oMigrated the entire file system to Microsoft SharePoint in Cloud

oServed as escalation contact point for Major Incidents from IT Side

oManaged team and Project Managers provided guidance and directions to other professionals

oSharePoint Migration to Cloud from on premise server drives

oManaged Implementation and go-live to ERP system NetSuite and Open Air

oManaged ERP Team for DATA INTEGRATION project with NetSuite and Open Air

Senior Project Manager

Chicago Faucets (Manufacturing) (April 2017 to July 2018)

Enterprise-Wide Cross-Functional Initiatives

oProject lead in re-definition and implementation of Enterprise-wide change and event management process and procedures. Duties included managing cross-functional teams to ensure development of new processes, systems, and documentation in support of strategic goals

oManaged cross-functional teams to implement information security initiatives companywide, continually enhancing the risk posture of the organization

oImplemented plan for the IT for next 5 years’ road map (which involves ERP SCM supply chain management upgrade and Infrastructure upgrade)

oDeveloped the IT operating model which includes partnering with the business, delivering new application functionality, and providing IT services to the business

Information Security

oDirected vendor security risk assessment program, conducted technical risk evaluation of software, installed systems and networks

oManaged staff performance and build security teams focused on addressing specific security risk-consistently delivering on time and on budget.

oSupervised teams focusing on governance, risk management and compliance, the assessment and evaluation of information security controls, and the mitigation of information security related business risk to strengthen internal controls and improve business performance

oServed as a leader assisting team in employing proper information security resources and controls to maximize the efficiencies and minimize risk

oWorked with Subject Matters on the IT Security issues and setup process and procedures to be followed to minimize the issue

Infrastructure Initiatives

oIT team successfully migrated phone system to VOIP cloud-based vendor from in house CISCO

oNegotiated all contracts with the managed service providers that support Chicago Faucets applications and infrastructure footprint

oManaged SAP Upgrade/support project with outside vendor

oManaged the project for migration of Antivirus Security from Kaspersky (server based) to Trend Micro (cloud)

oImplemented/Managed Disaster recovery and redundancy for the Infrastructure Environment as per ISO27001

Senior Project Manager

Roquette America (Manufacturing) (July 2015 April 2017)

Information Security

oResponsible for leading one or more project teams in delivery of Information and Network Security projects

oManages and communicates project status to project management office management and leads, directs and guides Security projects

oSupervised and participated in implementing governance frameworks to Industry standards (ISO27001)

oCreated corporate information security quarterly reports using detailed security metrics for reporting companywide

Cross-Functional Program Initiatives

oDeveloped work program timelines, and directed the daily progress of fieldwork, informing supervisors of engagement status and managing staff performance

oSuccessfully lead the Project in implementation of ERP6.0 EHP7 Logistics, MM and SD modules

oManage EDI project with 3rd party vendor Effective Data

oAssisted in policy development, implementation, gap analysis, and remediation planning

oProactively manage Infrastructure staff management include hiring, training, knowledge transfer, coaching, mentoring, succession planning, and budget management of IT Infrastructure functions.

oDevelop a change strategy and conducted training needs analysis

oManaged team across multiple locations on SAP Implementation

oManage IT budgets and assist in forecasting future projects.

oCreated a learning strategy for rollout

oCompleted role impact analysis in the IT area

oSuccessfully established cultural change and retrained staff

oOversaw all business readiness activities, issues and risks

oImplemented a reporting program to track the benefit of the new system

oDesigned several surveys to gauge staff feedback on the effectiveness of the change strategies

oDevelop a workshop to train staff and communicate key lessons

Senior Project Manager

CPS/MBM Company (Retail) (November 2013 to July 2015)

ERP Implementation

oSuccessfully lead the Project in implementation of NetSuite Cloud ERP End to End Project Implementation and Go Live

oResponsible for Team of 20+ consultants in implementation

oManaged 24/7 Multi Distribution Center environment from network, Access Point, Point of Sale and Shipment

Information Security

oManaged cross-functional teams to implement information security initiatives companywide, continually enhancing the risk posture of the organization

oSupervised and participated in user access audits and remediation plans, customer responses and audits, business continuity and disaster recovery plans, information security awareness, vendor risk management program, internal audits, incident response, and ensuring remediation of violations and potential breaches.

oSecurity Operations Management Platform: putting in a new platform in the SOC to help with incidents and events, metrics and reporting

oResponsible for partnership building and communication with IT Risk Security Management and all line of relevant business stakeholders

oBuild and maintain strong relationships with the Chief Information Security Officer (CISO) and team in support of long term roadmaps and program plans

oCoordinated IT risk assessment for more than 50 Database servers across the enterprise

Cross-Functional Initiatives

oAssisted in policy development, implementation, gap analysis, and remediation planning

oResponsible for Team of 20+ consultants in implementation

oCreated standard development processes that the team used to effectively deliver the design, coding, unit testing, and integration testing for the basic functionality and the custom development in a timely predictable manner.

oCreated standard weekly reporting processes that were used to deliver weekly status reports, project plan updates, and consultant resource plans.

oEffectively, Interface with several internal IT areas, as well as functions as the communication liaison to client community for NetSuite software related changes

oManage and track changes though the full lifecycle of the application development, ensuring internal/external controls and procedures are adhered to

oEffectively review, manage and report all software changes on a daily/weekly basis

oProactively manage and coordinate planned outages of production and Non-Production systems

oEnsure scheduled changes take place and are completed successfully, in accordance with ITIL change request

oProvide training and Q&A support to IT and clients for any issues or questions related to software change release process or required tasks

oEnsure the quality of all work products by reviewing deliverable, operating procedures and standards, and other key materials related to software changes and implementations

oTracked and developed project schedules and timelines

oPerformed Implementation Management, Strategic Consulting and Advisory functionalities including issue resolution and drive de-escalation activities for Service Delivery, Change Management, Incident Resolution and Service Management

Senior IT Project Manager

RealTech AG (Consulting, JCI) (July 12 to November 2013)

Information Security

oDeveloped, designed and implemented SOP for external security monitoring service provider. Activities included process flows, roles, and responsibilities definition.

oManages and communicates project status to project management office management and leads, directs and guides Security projects

oWorked directly with IT Senior management, Security Architecture and IT Risk Compliance subject matter experts in the development and implementation of IT security standards/policies/procedures and guidelines.

SAP ERP Implementation

oSuccessfully lead the Project on multiple implementation of ERP application $5M

oExperience in managing team onshore/offshore SAP technical team

Operational Excellence

oEffectively implemented and streamline security technical workflow process; Using Lean Six Sigma Methodology DMAIC process.

oProactively led the Security team researched, developed and implemented SAP security controls. For the Compliance purpose SAP ITGC and SOX

Infrastructure Initiatives

oSuccessfully completed migration of BW System from HP-UX to Microsoft 2012 Platform

Cross-Functional Initiatives

oStrength in building consensus, and ability to work across stakeholder levels.

oAdvise and mentor team members with inquires related to software, best practices, policies and procedures

oCreated standard weekly reporting processes that were used to deliver weekly status reports, project plan updates and consultant resource plans

oPartner with end-users and managers to analyze, re-engineer, and implement functional updates. New enhancement made client add new products on their website which resulted in increase 20% sales

oTracked and developed project schedules and timelines

Project Lead

IBM (Consulting, S2P Account) (February 2011-July2012)

SAP Implementation

oLead a Team of Technical and Functional consultants on the implementation of SAP ECC6.0. on time implementation/budget implementation saved company$2M

Information Security

oFacilitated collaborative discussion between cross functional teams in the development and implementation of new access-controls.

oAssisted in implementing compliance objectives companywide including policy compliance, record retention, identity Theft Red Flag, and PCI

oCreated corporate information security quarterly reports using detailed security metrics for reporting company wide

oWorked directly with IT Senior management, Security Architecture and IT Risk Compliance subject matter experts in the development and implementation of IT security standards/policies/procedures and guidelines.

oDirected vendor security risk assessment program, conducted technical risk evaluation of software, installed systems and networks.

oSpearheaded a campaign to develop and implement new KPI reporting capabilities in the area of vulnerability management.

Cross-Functional Initiatives

oResponsible for the day to day project management and delivery of the project implementation team, proactive approach meets the deadline on time and on budget.

oEffectively implemented Web Accelerator Project which increased the system performance by 40%

oSuccessfully implemented Modules using the functionality and capabilities of Solution Manager Which increased the company revenue by $2M

oCreated standard weekly reporting processes to deliver weekly, status reports, project plan updates and consultant resource plan

ERP/IT Project Manager

LTD Commodities (Retail) (July 2004-February 2011)

Cross-Functional Initiatives

oManage corporate I.T. initiatives including project management, capital/resource planning, scoping from design-to-implementation, end-user training, and level 1-3 customer support across the global enterprise.

oManage project development, including monitoring scope and change control processes

oSuccessfully managed and delivered over 200 Enhancements in SAP ERP 6.0. Keeping the record of all changes made system run smoothly and with compliance with change management team

oEffectively followed in implementation SAP recommended ASAP methodology to keep the project on time and budget

Information Security

oWorked directly with IT Senior management, Security Architecture and IT Risk Compliance subject matter experts in the development and implementation of IT security standards/policies/procedures and guidelines.

oManage, review, examine and monitor artifacts and evidence provided in support of compliance

oProject lead in re-definition and implementation of Enterprise-wide change and event management process and procedures. Duties included managing cross-functional teams to ensure development of new processes, systems, and documentation in support of strategic goals.

oCreated standard weekly reporting processes that were used to deliver weekly status report, project plan updates and consultant resource plan. This process saved company time and accuracy of project completion

oStrength in gathering and analyzing Business Requirements, Flow Chart Maintenance and mapping

IT Support Manager

LTD Commodities (Retail) (June 2002- July2004)

Information Security

oAssist management to develop the strategy for the future direction of the Information Security Management System

oWorkshops with the IT application Owner, business manager and CIOs to identify the type of the permissions

Infrastructure Initiatives

oAdhere to established policy and procedures with respect to project management methodology quality assurance and other related standards Technical assistance for issues, spanning a wide area from Networking to desktop PC’s in-person and over the phone.

oManaged 24/7 Multi Distribution Center environment from network, Access Point, Point of Sale and Shipment

oManage, review, examine and monitor artifacts and evidence provided in support of compliance

oManage project development, including monitoring scope and change control processes

oDevelop and review processes, procedures, and standards to improve accuracy, agility and efficiency of operations

oReview, evaluate, and recommend solutions for hardware and software acquisitions.

oRoutinely involved with Hardware/Operating System Installation and Maintenance, Network Upgrades, Anti-Virus Software Installation and maintenance.

oPart of the System Software Development/Support team.

oMaintaining print servers, configuring network printers, coordinating with remote Network Firewall.

oExperience with IP networking and storage technologies.

oNetwork management – such as allocating resources and setting up access rights and user profiles.

oPlayed a key role of coordinating communication between the front-end users and back end developers.

oDocumented the instructions for the support team.

oLog tickets using Service Center (Heat) Ticket Tracking System.

oSet-up PC systems and configure software/hardware to meet employee needs.

oConfigure wireless Access Point, routers and hubs.

IT Consultant

Oakton Community (Education) (September 1998- December 1999)

Coordinate the onsite training of employees through multi –media courses and on-one training

Troubleshoot and assist in repairing various access control systems, IP video surveillance systems, CCTV systems, intrusion systems and networking equipment

Provide helpdesk support to internal employee network and external client network

Developed, designed and implemented SOP for OCC Computer Labs

Update and maintain all installed software and maintain all hardware for the operation group, 56 users

EDUCATION

Bachelor of Information and Decision Sciences

University of Illinois at Chicago, US

TECHNICAL SKILLS / INDUSTRY KNOWLEDGE

Microsoft Project

PMBOK

Lean Six Sigma

Oracle

Salesforce

Microsoft Excel

Microsoft Visio

Microsoft SQL Server

Microsoft PowerPoint

Microsoft Access

SAP SD, MM, FICO, CRM, BI and SCM

ITIL Foundation Cert #00335956

Certified Sap Net Weaver Consultant 7.0 license # 001*******

SAFE 5.0 Scrum Master 867*****-****

AWARDS

Dean’s list, Spring 2000, Summer 2000, UIC

Member of Indo Pak Club, UIC

Nominated by the committee for a Team Player Award, June 2006 (LTD Commodities LLC)

Nominated by the committee for a Team Player Award May 2008 (LTD Commodities LLC)

Participate in Big brother and Big Sister program



Contact this candidate