Amit Shirke

Experience

• 

  Bank of Baroda

  Nov 2010 - Apr 2011

  Probationary Officer
• 

  Paladion Networks

  Jul 2012 - Sept 2014

  Security Engineer

  In this role, I have effectively managed Information Security Management Systems (ISMS) and technology risk for a major bank's Indian branch and a prominent UK financial institute. My responsibilities included providing regular IT risk reports to senior management, serving as a front-end for internal and external audits, maintaining security policies, and ensuring compliance with industry standards. Additionally, I meticulously tracked disaster recovery plans for all bank applications and reviewed database privilege IDs. I also oversaw the remediation of non-compliant systems, addressing crucial aspects such as antivirus, encryption, standard builds, patches, and more. My commitment to maintaining robust security practices and adherence to regulatory requirements has been a hallmark of my performance in this role. Show less

• 

  KPMG India

  Mar 2015 - Jul 2021

  Manager

  I have an extensive track record in spearheading impactful projects across various sectors. Notably, I directed a comprehensive Third-Party Risk Management initiative for a leading telecom service provider, concentrating on the identification and remediation of risks at vendor sites. Additionally, I successfully managed an Information Security review project for a prominent NBFC, which included a thorough vulnerability assessment of their critical infrastructure. My expertise extends to implementing ISO 27001:2013 for a public sector manufacturing firm, ensuring strict compliance and the development of a robust cybersecurity framework in line with RBI Cyber Security guidelines for a public sector bank. Furthermore, I've conducted Information Security assessments for public sector oil companies and diverse organizations, internal audits for software development and technology solution providers, ITGC audits for a payment service provider, and Information Security audits for public sector banks. Show less

• 

  Citi

  Aug 2021 - now

  AVP

  In this role, I specialize in conducting comprehensive thematic security assessments for systems within the APAC region. These assessments include critical areas including network security, endpoint security, and incident management. My role involves a keen review of risk exceptions and security incidents, with the aim of identifying opportunities for enhancement. I provide strategic recommendations and implement solutions to fortify our security posture. Furthermore, I have successfully revamped removable media controls on end systems, significantly reducing data leakage risks and strengthening overall data security. My dedication extends to ensuring full compliance with regulatory guidelines, where I assess controls on standalone systems and align our practices meticulously around them. Show less