Profiles search

Anil Mistry

Cybersecurity Manager-Identity Access Management Controls and Business Enablement
Austin, TX, United States

Details

Education: BBA

Accounting

Texas State University-San Marcos

1986 : 1988

BBA

Computer Information Systems

Texas State University-San Marcos

1983 : 1986
Experience: Manage a talented team, business enablement projects and controls for Home Depot IAM.

2021 : Present

The Home Depot

Cybersecurity Manager-Identity Access Management Controls and Business Enablement

Evaluate scoping of IT applications for SOX compliance.

Coordinate and conduct audit walk-thru of IT applications.

Participate in design workshops and contribute towards new company strategic ERP initiative.

Collaborate with project team members and business users to capture requirements and define solution options for the needs of the business.

Reviews and provide input on functional design specifications, system requirement and acceptance criteria such as user interfaces, reports, data conversions, interfaces to other applications, exception handling, security, and other non-functional requirements.

2021 : 2021

TriNet

SOX IT Program Manager

Manage SOX program controls responsible for provisioning, monitoring, reviewing, terminations and compliance of accounts in all applications, servers and databases.

Automate business application access provisioning and support business role-based user access certifications.

Provide input into tactical project level requirements and strategic roadmap requirements and benefits.

Conduct routine audit compliance activities to ensure adhere to policies and regulatory requirements.

Develop control testing strategies and documentation of test results for evidence compliance with standards.

Onboard applications into and complete user access reviews utilizing SailPoint Identity IQ.

Partner and collaborate with stakeholders from across the enterprise to capture needs, effectively define and prioritize requirements as they pertain to the TriNet IAM environment, standards, and policies.

Engage with application owners to onboard into SailPoint for purposes for provisioning, access certifications and deprovisioning. Develop and coordinate testing for Identity IIQ upgrades or configuration changes.

Demonstrated experience in capturing requirements that are quantified for planning purposes and benefit realization. Work with project manager to develop roadmap, sprints and deliver results in an agile approach.

Understanding of Cybersecurity and IAM best practices, industry solutions and products.

2018 : 2021

TriNet

Identity and Access Management - Sr Analyst

• Manage global Business Continuity program and lead the team to support business continuity managers.

• Responsible for development and reporting of global reporting on the state of Resiliency program testing metrics for overall governance.

• Development of plan exercise program, standards and overall maturity of program.

• Executed gap analysis, risk assessments, and ongoing monitoring of internal and external trends that impact resiliency of eBay businesses.

• Serve with crisis management responsibilities for 24/7 support of events impacting eBay.

• Development of new resiliency awareness program.

• Established and maintaining global resiliency compliance framework though documented policy and standards.

• Execute gap analysis, risk assessments, and ongoing monitoring of internal and external trends that impact resiliency of eBay businesses and resiliency framework.

• Develop and managing third party resiliency requirements and due diligence.

• Provide leadership, subject matter expertise and consulting services on best practices, internal policies and standards, and industry standards and framework.

• Responsible for global reporting on the state of Global Resiliency testing metrics for overall governance.

2017 : 2018

eBay

Resiliency Program Manager

Member of the Enterprise Risk Management team.

Time : February 2014 to August 2016.

Reviewed and maintained 12 functional area business continuity plans, I/T and facilities impact assessments, crisis communications, emergency response and pandemic response plans.

• Annually benchmarked plans to industry best practices and grid operators across USA.

• Analyze impact and risk to essential business functions or information systems resulting in improved recovery time periods and resource requirements.

• Reduced plan review time periods by over 35% by creating templates and improving process.

• Met compliance with all utility commission protocols, company standards and government regulations.

• Record of zero control defects each year as certified by independent auditors.

Write and present reports to summarize testing activities, planning, issues tracking and other management reporting

Designed and conduct quarterly tabletop exercises among disaster management team members.

• Utilize communication strategies and presentation skills to gain buy-in at all levels of management.

• Created training programs to mitigate risk, generate ideas and infuse solutions into the program.

• Improved risk identification, communication across functional team members and sharing of information.

• Established program to deliver quarterly awareness to over 600 personnel.

• Improved command center setup response times by over 30%.

Maintain and continuously improve ERCOT’s mobilization plans.

• Improved response times by over 50% by quarterly testing and metric reporting.

• Conduct telework exercises resulting in solutions for increased bandwidth and application accessibility.

Engage, communicate and work with all levels of management, cross functional teams and external agencies.

• Improved relationship among local first responders, county, state operations, National Guard and federal institutions.

• Represented ERCOT at national GridEx exercise.

2014 : 2016

ERCOT - Electric Reliability Council of Texas

Business Continuity and Disaster Recovery Specialist
Company: The Home Depot
Years of Experience: 34
Spoken Language: Gujarati

Skills

Analysis, Application Security, Auditing, Business Analysis, Business Continuity, Business Process Improvement, CEH, CISA, CISSP, Computer Forensics, Computer Security, Disaster Recovery, Enterprise Risk Management, FISMA, GLBA, Governance, Identity & Access Management (IAM), Identity Management, Information Security, Information Security Management, Information Technology, Internal Controls, ISO 27001, IT Audit, NERC CIP Standards, Network Security, Payment Industry, PCI DSS, Process Improvement, Risk Assessment, SailPoint, Sarbanes-Oxley Act, SAS70, Security, Security Audits, SharePoint, Vulnerability Assessment, Vulnerability Management

About

Senior Information Technology Specialist with expertise in auditing, cyber security administration, compliance and risk management with in-depth experience in a variety of systems and applications. Successful ability in client management relationships and global project management skills in public utility and multinational computer technology companies.

Recipient of multiple awards.

Core Competencies:

Audit & Regulatory Compliance

Risk Assessment / Governance

Accounting / Report Preparation

Knowledge of SOX, CIP, COSO, COBIT, NIST, SSAE16, ISO 22301, 27001 & 27002

Process Evaluations / Variance Analysis

Financial Forecasting / Budgeting

Emergency Response Planning

Leadership / Staff Management

Business Analysis / PMI methodology

Awareness Development & Training

Cross-Functional Teams