Esha R.
Details
Key Areas : Cybersecurity (Incident, Vulnerablity, Threat Intel etc.), Identity Access Management Automation and Efficiency, Security Awareness Training & Simulation, Security Metrics, Privacy, Compliance (SOX/PCI/State/International Regulation) & Audit Requirements, Information Risk Governance, Policy&Procedures, 3rd Party Risk Management Program, Security Architecture alignment to framework.
Management Speciality : Building relationships and collaboration from scratch :
Example : Interfacing and managing the workflow between multiple teams (IT Operations, DevOps, Offshore, Audit, Legal)
Reporting & Executive IT Intelligence
Acquisition and IT / Data Discovery Risk Program
Cloud Governance Program
Third Party Risk Program
Vulnerability Risk Program
Security Assessments & Investigations
Enterprise IT Risk Assessments
Gap Analysis Reports
SOX compliance Reports
Regulatory compliance Reports
States' Privacy compliance Reports
Remediation Tracking Status Reports
Access Management Ticketing Workflow and Reporting Metrics
Security Metrics & Continuous Monitoring W/ Advanced Data Analytics
Network Analytics - Privileged Accounts Abuse & Continuous Monitoring -
Splunk Coding Analytics - Identifying security opportunites in areas from DevOps to Security Architecture.
Vulnerability Analysis & Patching Compliance - Industry Standard Tools
SOX testing - Identity Access Mgmt/Users/Privileged/Service/etc.
2017 : Present
Service Corporation International
Manager Information Security Risk
Human Biometrics, Automotive, Search, & Engineered Analytics for Proprietary and Patent Issued & Pending Technologies.
2012 :
Stealth Mode Startup Company
Co-Owner
Risk Management Expert in Data Governance, IT & Business (Accounting/Finance/Operations) Process Improvements, and Regulatory Liability & Compliance.
2015 : 2017
Memorial Hermann Health System
Security Governance & Risk Expert
Manage development of data programming scripts and review Hospital Operations' processes for cost savings, redundancies, and provide management with business intelligence independent of software or multiple systems.
2013 : 2015
Harris Health System
Senior Operations (Lead in Continuous Financial AP Data Analytics & Reporting)
Financial audits (commissions, revenues, expenditures, etc..).
IT reviews around IT General Controls.
Compliance reviews with insurance and banking related federal and state requirements.
Fraud Investigations & special projects requiring financial analysis skills.
2011 : 2012
Forethought Financial Group
Senior IA (Lead in General Financial audits, IT controls testing, and Investigations)
About
Business Analytic and IT Process Improvement Leader. Includes many years experience in compliance, GRC, and operational accounting and finance functions.
Relevant Certifications:
CFE - Certified Forensic Examiner
CISA - Certified Information Systems Auditor
ACDA - ACL Certification Advanced User
Specialties: IT audits (user provisioning, systems lifecycle reviews, disaster recovery, change management, IT security issues), reviewing 3rd party contracts, Data Analysis, Flowcharting with VISIO new processes, CAATs, ACL, Financial Audits, Taxation issues. Defense audits (contracts, vouchers, A/P, vendor management, etc.)
Software - Tableau, ACL/IDEA/Arbutus, R, Python, MySQL, Microsoft Suite, Oracle databases, SAP, JD Edwards, Oracle Financials, Hyperion, WMS (Warehouse Management Systems), PeopleSoft, Workday, MFGpro, Lawson, Ingenium, Great Plains.
Regulations: COBIT & ITIL frameworks, SANS best practices HIPAA regulation, FCPA, HITRUST Certified Assessor 2015.
Profile Photo
