Dr. Priti Puri
Details
Computer and Information Security
Kurukshetra University
2004 : 2008
(Microsoft-Privacy Lead for Application risk Assessment Role, Liberty Bank,-CSM(Client Service Manager & GRC lead Role) AXAXL- UK based Global Insurance Firm- Sister Concern of AXA Global- Cyber Security Architect Role and GRC Lead ), ITD(Government of India- Information Security Officer -Complete Security Landscape & ISO 27 K Expert),MCA(Government of India- ISO Lead Auditor),GSTN(Government of India- GRC, Risk management and ISO 27k Lead Auditor ), HSBC( Hongkong)- Application Security Lead Role and VAPT expert.
2016 : Present
Infosys
Lead Cyber Security Expert
2016 :
Infosys
Lead Information Security Consultant
2016 :
Infosys
Lead Application Security
• Main Duties handled by me during my Job
o I have taught various computer/Information Technology related university subjects to undergraduate and graduate students
o I have also prepared, administrated and graded examinations, lab assignments and project reports
o I have worked as a Counselor/Mentor to students on academic/course matters and carrier decisions
o I have guided Research & development related projects and Industry related projects to the students
o published multiple research papers and also guided students to published papers in Scholarly Journals(30 Researh Papers-International /National Journals/Conferences
o Served various committees at college/University level and performed various administrative duties too as admission process, Accreditation work and PMI renewal work, conducted Guest Lectures, worked for National Level Festivals.
Project Supervised
• Framework for Cyber Insurance
• Information Risk Management & Recommended Security Controls for :
1. BYOD
2. Pearson my Lab
3. Ecommerce
4. MDM
5. Cyber Insurance
6. IoT systems
7. Commodity Exchange
8. Interactive Voice Response
9. Supply chain Management
10. Kiosk system
11. Payment gateway
12. Web hosting
• Project Cost reduction by mitigating risk at requirement gathering stage
• Threat Intelligence System for small enterprises
• Big Data Analytics
2014 : 2016
Symbiosis Center for Information Technology(Symbiosis International University)
Assistant Professor- Information Risk Management
2009 : 2009
CPA Global
Patent Analyst- Cyber Security Microsoft
Skills
Application Security, CEH, Cryptographic Techniques, Cyber Security, Identity & Access Management (IAM), Information Risk Management,, Information Security, Information Security Processes & Policies, IT Governance & Best Practices, Information Technology, ISO 27001, IT Audit, ITIL v3, IT Service Management, Network Security, NIST, COBIT, OCTAVE, ISO 27000, Patent Analysis, Patent Prior Art Search, Penetration Testing, Research, Risk and Security Standards, Risk Assessment, Security, Security Atchitect, Software Project Management, Vulnerability Assessment, Vulnerability Assessment and Penetration Testing (VAPT),, Vulnerability Management
About
15 yrs Experience of Information Security, Information Risk Management, GRC, Application Security, Cloud Security and overall landscape of Cyber Security. Ph.D. (Information Security), MTech, (Computer), MSC (Physics) verified WES. CISM, CRISC, CCSK, Certified Azure 500, Certified LA-ISO 27K, CEH. Worked with India Government’s most critical financial entity, focused on enabling a defense in depth approach, collaboration with government officials, critical stakeholders, regulatory bodies & technical teams to establish a comprehensive cybersecurity landscape, driving the business & technology, initiatives with establishment, design, implementation phases from ISO 27xxx readiness, security policy, controls, standards, process & procedures development & enforcement. The engagement established with architecture, engineering & operations for InfoSec along with roadmap creation, planning, GRC, tools & technologies, SOC, threat Intelligence, risk & vulnerabilities management, internal & external audits practice setup, on-prem DC setup, worked with projects for the Government, Banking, Insurance & Finance industry to build & enhance security posture. Presently Senior Security Strategy Advisor for Global Insurance Group & responsible for the global cybersecurity governance, risk & compliance, architecture, engineering & operation, drive the design, development & deployment along with the review processes, Identify & prioritize the risks, enhancements, guidance & direction to the business & technical teams to design and implement solutions on cloud (AWS & Azure etc.) & on-prem DCs. Mitigate the security risks and vulnerabilities. Drive & deliver the cybersecurity portfolio with a continuous improvement & growth based on people, process and technology. Knowledge of NIST Standards 800-30,800-37,800-53, COBIT, OCATAVE Standards, Risk Register, ISO27K Audits, GRC tools, IBM App Scan Standard, Burp Suite, OWASP TOP 10, PCI DSS, SANS 25 Errors & VAPT, Data Privacy, ITIL,ITSM. Good soft skills, Global Client Management. Cyber Security Awareness Trainer for employees across the globe. Worked as Patents Analyst for Microsoft, Research & Development in Cryptography Algorithms(Developed new algorithms), 30 Security Research publications (few in Springer) Google Citation14. Worked as Head IT- Renowned Engineering Institutions ,Research Guide for MTech & PhD Scholars for Cyber Security. Got Awards for Professional services & Motivational Session. Best Faculty & Anchor Award. Creator of 10 mins energy booster-Meditation@ desk(Perfectly suited meditation for office employees).
Profile Photo
