Information Security Project Management
Resume:
HHH
CONTACT
Contact No: +91-981*******
Email: **********@**********.***
AKHTAR ALI
SR. MANAGER (INFORMATION SECURITY & PRIVACY)
A dedicated and detail-oriented Sr. Information Security & Privacy Manager with over 20 years of experience in managing and implementing robust security measures to protect organizational data. Proven expertise in developing security policies, ensuring compliance with industry regulations, and leading cross-functional teams to mitigate risks and enhance information security. Seeking to leverage skills and experience to contribute to the security and privacy initiatives of HFCL Limited. ISMS/PIMS/ITSM Framework implementation, CMMI L3 & L5 3.0 Framework implementation, Software development life cycle (SDLC), security life cycle, and vulnerabilities management of a wide range of vulnerabilities and threats, Project Management, oracle SQL, PL/SQL, DBA, Salesforce ADM 201, CIPM, ISO 27001:2022 LA certified. WORK EXPERIENCE
HFCL LIMITED, DELHI – APR-23 TO PRESENT
. Sr. Manager (Information Security & Privacy) – Role & Responsibility
Lead the development and implementation of the organization's information security and privacy policies, ensuring compliance with industry standards
(e.g., ISO 27001:2022, ISO 27701:2019, DPDP Act 2022, and GDPR).
Manage security risk assessments, vulnerability management, and incident response procedures to protect sensitive information.
Oversee the security awareness-training program, educating employees on best practices and emerging threats.
Collaborate with IT, legal, and compliance teams to maintain a secure and compliant IT environment.
Conduct regular audits and assessments to identify potential security vulnerabilities and recommend corrective actions.
Serve as the point of contact for external audits and assessments related to information security and privacy.
Implement and manage data protection measures, including encryption, access controls, and data loss prevention strategies.
Monitor and respond to security incidents, performing root cause analysis and developing mitigation strategies.
Manage the incident response team to ensure timely and effective resolution of security breaches.
Develop and maintain the disaster recovery and business continuity plans to ensure organizational resilience.
Keep up-to-date with the latest security trends, technologies, and regulatory requirements.
SKILL
* Information Security Management
* Privacy Compliance (GDPR, DPDP)
* Risk Assessment & Management
* Incident Response & Management
* Security Audits & Compliance
* DPIA, Third Party Audit
* Vulnerability Management
* Security Awareness Training
* Data Protection & Encryption
* Access Control Management
* Disaster Recovery & BCMS
* Security Policy Development
* ISO 27001, ISO 27701, ITSM LA
* Salesforce Admin
* CMMI L5 3.0 Implementation
* VB 6.0 Developer
* Oracle SQL, PL/SQL Developer
* ISO 20K, ITSM – Service Desk Plus
* Endpoint Security ZOHO, DLP
* AD Audit plus, Event Log Analyser
* Project Management, AD audit Plus
* Microsoft EPM Admin, Agile, Scrum
* SIEM Tool
AWARD
13 InfoSec Maestros (CISO)
Awards 2024 from CIO AXIS
12th InfoSec Maestros (CISO)
Awards 2023 from CIO AXIS
Pinnacle Performer Award
from HFCL in Oct -23
Ace Alliance Team Award
from HFCL in Mar-23
Pinnacle Performer Award
from HFCL in Mar-22
PROJECTS
ISO 27001:2022, IMPLEMENTATION AT HFCL LIMITED, HYDERABAD – APR-23 TO JUN-23 Led the successful implementation of ISO 27001:2022 controls at HFCL, focusing on enhancing information security management systems. Developed and executed a comprehensive project plan for integrating new controls, ensuring compliance with updated standards. Collaborated with cross-functional teams to assess risks, identify gaps, and implement necessary security measures. Conducted training sessions to increase awareness and ensure alignment with organizational objectives. ISO 45001:2018, IMPLEMENTATION AT HFCL LIMITED, DELHI – JUL-23 TO SEP-23 Led the successful implementation of ISO 45001:2018, improving occupational health and safety management systems for a diverse organization. Conducted risk assessments, developed safety policies, and trained staff, resulting in enhanced compliance and a safer CMMI L5, IMPLEMENTATION AT HFCL LIMITED, DELHI – OCT-23 TO PRESENT Coordinated and led CMMI Level 5 implementation, ensuring adherence to process improvement standards. Managed audits, assessments, and training to achieve optimal performance and compliance. Collaborated with cross-functional teams to develop and refine processes, driving continuous improvement and organizational excellence.. and continuous improvement initiatives.
hhhhh
WORK EXPERIANCE
MANAGER (ISMS & PIMS), HFCL LIMITED, DELHI – APR-2017 TO MARCH 2023 Manager (Information Security & Privacy) – Role & Responsibility
Lead the development and implementation of the organization's information security and privacy policies, ensuring compliance with industry standards (e.g., ISO 27001, ISO 27701, ISO 20K GDPR, HIPAA).
Manage security risk assessments, vulnerability management, and incident response procedures to protect sensitive information.
Oversee the security awareness-training program, educating employees on best practices and emerging threats.
Collaborate with IT, legal, and compliance teams to maintain a secure and compliant IT environment.
Supported the incident response process, performing initial analysis and escalation as needed.
Participated in security audits and assessments, providing documentation and evidence to auditors.
Developed and delivered security awareness training to employees EDUCATION
Completed MBA (IT) from
M.D. University Haryana.
Completed M.Sc. (Computer
Science) from Bundelkhand
University Jhansi, UP, India
Completed Graduation with
B.Sc. (PCM) from
Poorvanchal University
Jaunpur, UP, India
Completed Intermediate
studies in the Mathematics
disciplines from UP Board
Allahabad, UP, India
Completed High School
studies from UP board
Allahabad, UP, India
CERTIFICATIONS
ISO 27001:2022 LA Certified
CIPM Certified
Salesforce ADM 201 Certified
CISM Certified
Oracle SQL Certified
CISSP Certified
Endpoint Security Certified
Service Desk plus Certified
Risk Management Certified
Agile Scrum Training
Certified in Cyber Security
PROJECTS
CMMI L3 IMPLEMENTATION AT HFCL LIMITED, DELHI – -APR 2017 TO DEC 2018 As a Project Coordinator for a CMMI Level 3 Implementation, I managed cross-functional teams to ensure compliance with high maturity practices. My role involved coordinating project activities, monitoring progress, and maintaining documentation according to CMMI L3 standards. I facilitated communication between stakeholders, identified process improvement opportunities, and ensured project milestones were met on time and within budget. Additionally, I supported process audits, contributed to risk management, and helped in preparing for CMMI appraisals. My proactive approach and attention to detail enabled the team to maintain high-quality standards and deliver successful projects that met client expectations.
ISO 20K IMPLEMENTATION AT HFCL LIMITED, DELHI & GOA – JAN-2019 TO DEC 2019 As an ITSM Lead, I successfully implemented IT Service Management (ITSM) frameworks, enhancing service delivery and support for HFCL. Led a cross-functional team to deploy ITIL-based processes, improving incident, problem, and change management. Coordinated with stakeholders to customize solutions, ensuring alignment with business objectives. Developed comprehensive training programs for staff, increasing adoption and reducing service disruptions. Managed ITSM tool configuration, resulting in streamlined workflows and enhanced reporting capabilities. Achieved a measurable increase in customer satisfaction and service efficiency, contributing to the organization's overall operational excellence. Demonstrated strong leadership, strategic planning, and project management skills throughout the implementation. ISO 27701:2019 IMPLEMENTATION AT HFCL LIMITED, GOA – JAN-2020 TO DEC 2020 I have Led the successful implementation of ISO 27701, focusing on establishing and maintaining a Privacy Information Management System (PIMS). Developed and executed project plans, collaborated with cross-functional teams to ensure compliance with privacy regulations, and conducted comprehensive risk assessments. Established privacy controls and governance frameworks, aligning with ISO 27001 standards. Delivered training sessions to staff, fostering a culture of data privacy and protection. Conducted audits to identify gaps and implemented corrective actions. Successfully achieved ISO 27701 certification, enhancing the organization’s data privacy capabilities and demonstrating a commitment to protecting personal information. ZOHO ENDPOINT SECURITY TOOL IMPLEMENTATION AT HFCL LIMITED, (JAN-21-DEC-21) Implemented Zoho Endpoint Security tools in HFCL, securing over 2500 devices. Responsible for deploying and configuring the system, managing security policies, monitoring real-time threats, and ensuring compliance. Streamlined security operations, reducing vulnerabilities and enhancing overall cybersecurity posture. Provided ongoing support and training to end-users and IT staff.
ZOHO SERVICEDESK PLUS TOOL
Implemented Zoho ServiceDesk Plus
for HFCL organization, streamlining IT
service management processes. Led
the end-to-end deployment, including
configuration, customization, and
integration with existing systems.
Trained staff on effective use and
ensured seamless transition,
improving incident management and
reducing response times, resulting in
enhanced operational efficiency and
user satisfaction.
ZOHO EVENTLOG ANALYSER
Implemented the ZOHO Event Log
Analyzer tool to enhance system
monitoring and security. Led the
deployment and configuration, ensuring
seamless integration with existing
infrastructure. Developed custom reports
and dashboards for real-time analysis,
improving threat detection and compliance.
Trained team members on usage and best
practices for optimal tool utilization.
Implemented the ZOHO Event system monitoring and security. Led the deployment and configuration, ensuring seamless integration with existing infrastructure. Developed custom reports and dashboards for real-time analysis, improving threat detection and compliance. Trained team members on usage and best practices for optimal tool utilization. WORK EXPERIENCE - HIMACHAL FUTURISTIC COMMUNICATIONS LIMITED DEPUTY MANAGER (IT), GURUGRAM – APR-2012 TO MARCH 2017 Deputy Manager (IT) – Role & Responsibility
Led the planning, implementation, and maintenance of the ISO 27001:2013 Information Security Management System (ISMS) across the organization.
Conducted a comprehensive gap analysis to identify non-compliance with ISO 27001:2013 standards and formulated a corrective action plan.
Developed and documented information security policies, procedures, and controls to align with ISO 27001:2013 requirements.
Conducted risk assessments and managed risk treatment plans to mitigate information security risks.
Facilitated training sessions and workshops to educate staff on information security policies, procedures, and best practices.
Coordinated internal audits to ensure continuous compliance with ISO 27001:2013 standards and prepared for external audits by certification bodies.
Monitored and reviewed the performance of the ISMS to ensure its effectiveness and relevance to the organization’s operations.
Collaborated with cross-functional teams, including IT, HR, Legal, and Operations, to ensure seamless implementation of information security controls.
Managed communication with stakeholders regarding information security incidents and implemented incident response procedures.
Drove continuous improvement initiatives to enhance the organization's information security posture and achieve certification. SKILL - SALESFORCE
Salesforce Architecture
Customization and
Configuration
User Management
Data Management
Reports and Dashboards
Apex and Visualforce
Lightning Experience
Project Management
Security and Compliance
Salesforce Admin
Certification
PROJECTS
ISO 27001:2013 IMPLEMENTATION AT HFCL LIMITED, DELHI – -AUG 2016 TO DEC 2016 Led the successful implementation of ISO 27001:2013 for a company, establishing a comprehensive Information Security Management System (ISMS). Conducted risk assessments, developed security policies and procedures, and ensured compliance with international standards, resulting in enhanced data protection, improved security posture, and certification by an external audit body. SALESFORCE IMPLEMENTATION AT HFCL LIMITED, DELHI – -AUG 2015 TO JUL 2016 Implemented Salesforce Sales Cloud solutions to enhance sales processes and improve customer relationship management. Conducted business analysis to gather requirements, designed customized workflows, and developed automated solutions to streamline operations. Led data migration, integration, and user training efforts to ensure seamless adoption. Collaborated with cross-functional teams to optimize system performance and support sales strategies. Provided ongoing support and maintenance, including troubleshooting and enhancements, to ensure optimal use of Salesforce capabilities. Demonstrated expertise in Salesforce configuration, Lightning components, and third-party integrations to deliver tailored solutions that drive business growth.
HRMS TOOL IMPLEMENTATION AT HFCL LIMITED, DELHI – -AUG 2014 TO JUL 2016 Experienced in implementing the HRMS tool Darwinbox, managing end-to-end project phases, including requirement gathering, system configuration, and user training. Skilled in customizing modules such as payroll, performance management, and employee engagement to align with organizational needs. Proficient in data migration, testing, and providing post-implementation support to ensure a seamless transition. Strong collaborator with cross-functional teams to optimize HR processes and enhance user experience. Adept at troubleshooting issues, driving user adoption, and ensuring successful system integration with other enterprise applications. Proven ability to deliver on-time, efficient HRMS solutions that improve overall HR efficiency and employee satisfaction. ZOHO AD AUDIT PLUS
Conducted a comprehensive Active
Directory audit, identifying security
gaps and ensuring compliance.
Implemented a robust auditing tool to
monitor changes, streamline
management, and enhance security
controls. Successfully automated
reporting processes, improving
accuracy and efficiency, while
safeguarding sensitive data and
supporting organizational IT
governance standards.
WEBSENSE TOOL
Implemented and managed
Websense, a web security and filtering
tool, for enhanced organizational
security. Configured policies,
monitored web traffic, and ensured
compliance with security protocols.
Conducted user training and support,
optimized tool settings to reduce risks,
and provided ongoing maintenance to
align with business requirements and
enhance cybersecurity measures
ZOHO SELF SERVICE TOOL
Implemented a self-service password
change tool in Zoho, enhancing user
experience by allowing secure,
automated password resets. This
solution reduced IT support workload,
improved security protocols, and
streamlined user account
management. Delivered the project
within the timeline, ensuring
compliance with organizational
policies and enhancing overall
efficiency for users and administrators.
SKILL – MS EPM
As a Microsoft Enterprise Project
Management (EPM) Administrator, i will
be responsible for the effective
administration, configuration, and
management of Microsoft Project
Server and Microsoft Project Online
environments. My role will involve
ensuring that project management
processes are streamlined, reporting
requirements are met, and user needs
are supported.
MS EPM TOOL IMPLEMENTATION AT HFCL LIMITED, DELHI – -JAN 2013 TO JUL 2014 As a Microsoft Enterprise Project Management (EPM) tool implementation Coordinator, I led the successful deployment and customization of the MS EPM suite to enhance project management processes. My role involved analyzing business requirements, configuring Project Server, integrating it with SharePoint and other Microsoft tools, and optimizing workflows for improved project planning and resource management. I conducted user-training sessions, provided ongoing support, and developed comprehensive documentation to ensure smooth adoption. I also collaborated with stakeholders to align the EPM solution with organizational goals, delivering a scalable and efficient project management system that enhanced productivity and project delivery.
WORK EXPERIENCE - HIMACHAL FUTURISTIC COMMUNICATIONS LIMITED ASSIT. MANAGER (S/W DEV), GURUGRAM – SEP-2005 TO MARCH 2011 Assist Manager (Software Developer) – Role & Responsibility Support for Automated Spectrum Management Software Implementation with Foreign Company Cril Telecom Software France & Thales Germany. This CRM have implemented for Management of Spectrum & Frequency for Govt. of India.
Analyses and discuss the business requirements with the clients of ERP implementation.
Responsible for the development, implementation and support of the database of the server.
Ms, Access and Sql Server Database Migration in oracle Database using
Migration Workbench tool.
Optimized and modified the triggers, complex store functions, procedures..
Managed a team for the development of the database, procedures, functions,
Responsible for the dealing with the problems, bug fixing and troubleshooting.
Responsible for the analysis, designing and coding of the database.
Handled the client problems, troubleshoot, and fixed the bugs.
Provided Oracle database administrative support to Wireless Planning & Coordination Wing.
Responsible for Oracle 8i/9i logical and physical databases design,
Installed, upgraded and patched Oracle software. Setup brand new machines Including Oracle software installation.
Migrated and upgraded databases from version 8i to 9i.
Developed some Unix Shell scripts to automate database operation and database monitoring.
Developed or modified some Oracle backup and recovery scripts. Used Oracle backup utility RMAN to implement Oracle backup and performed a number of times of disaster recovery.
Implemented database refresh with the hot backup using DUPLICATE or full export. Used EXPORT/IMPORT to do table level and full database defragmentation.
Performed database tuning using Explain Plan, hints, Toad. Provided on-call production database support.
SOFTWARE ENGIN. NEXT ERA TECHNOLOGIES GURUGRAM – SEP-2004 TO AUG-2005 Developed Application for ministry of telecom using VB6.0 and Oracle, designing user interfaces and database schemas. Implemented business logic, optimized SQL queries, and ensured data integrity. Collaborated with stakeholders to gather requirements and deliver solutions that improved operational efficiency. This software used for covert hard copy data into electronic data.
SKILL – VB 6.0 DEVELOPER
Skilled in designing, coding, and
maintaining applications using VB6.0.
Experienced in developing user-
friendly interfaces, implementing
business logic, and integrating with
databases. Proven ability to
troubleshoot and optimize code for
performance and reliability. Adept at
managing project requirements and
delivering high-quality software
solutions.
SKILL – ORACLE SQL/PLSQL
Proficient in Oracle SQL and PL/SQL
with extensive experience in
designing, developing, and
optimizing database queries and
stored procedures. Skilled in creating
complex SQL queries, data
manipulation, and performance
tuning to enhance system efficiency.
Adept at writing and maintaining
PL/SQL scripts, triggers, and
functions to automate processes and
enforce business logic. Experienced
in data modelling, schema design,
and troubleshooting. Proven ability to
work collaboratively with
development teams to integrate and
manage data within Oracle
databases, ensuring robust,
scalable, and high-performance
solutions. Committed to continuous
learning and staying updated with
the latest Oracle technologies.
PERSONAL DETAILS
DOB – 1979, Male
Marital status – Married
Passport – Available
Resident – Zakir Nagar,
South Delhi, INDIA
Contact this candidate