Profiles search
T. A. (Subba) Subbaraja
IT Security and Risk Leader
Powell, OH, United States
Details
Experience:
Led multi-year high impact IT security programs to protect most critical foundational technology assets and financial business applications from threats to their privileged/elevated access of being misappropriated and compromised by internal and external actors.
Worked with cross-functional business and technology stake holders to create an operational and technology framework for IT security assessment /gap analysis, identification and effectiveness assessment of operation/technology privileged access control, portfolio management of critical high-risk assets/systems, risk classification of privileged entitlements/capabilities, tracking/reporting of privileged access holders, implementation of defined controls and exception management
Managed successful implementation of the framework. On boarded 170 IT risk assets and 5000+ privileged access users to the programs and their controls.
2015 : Present
JPMorgan Chase & Co.
Vice President - CyberSecurity & Technology Controls
Privileged to work with highly skilled and energized Accenture team on a multi million dollar Identity and Access Management program with an objective of implementing highly effective IT security control standards and solutions globally for a large multi-national Insurance organization.
Led the programs's North America implementation for Access Lifecycle Management, Single Sign-On and Digital Identity and Onboarding solutions. Worked with cross-functional business and technology stakeholders to facilitate and manage solution assessment, fit-gap analysis, requirement and design finalization.
Managed onsite and offshore delivery model and globally placed teams for planning, design, development and deployment of the solutions and creation of procedure for operationalizing. Managed senior leadership communication and reporting
2012 : 2015
Accenture
Manager - IT Security
My tenure and experience at AEP has been instrumental to my initiation and growth in IT Risk, Security and Regulatory Compliance. Managed successful implementation of several enterprise-wide IT security programs initiated by AEP’s IT Risk & Compliance to FERC, NERC CIP and SOX regulations focussed on identification, assessment and implementation of operational, management and technology - Identity and Access Management (IAM) and incident management controls in alignment to the organizational risk objectives and policies
Managed IT Security and cross-functional business stakeholders communication and governance to define program objectives, accountable IT standards, business process definition, solution assessment and build-vs-buy analysis. Partnered with Gartner for business process gap analysis, maturity assessment and identification of Oracle Identity Management (OIM) suite for solution building
Managed and mentored team for elicitation and documentation of IAM solution requirements, design and implementation of IAM solution for Identity Lifecycle and Access Lifecycle Management, Authentication & Authorization, RBAC and SOD. Created standard operational procedures for operationalizing the solutions and implemented KRI for tracking effectiveness of the solution
2009 : 2012
American Electric Power
Functional Team Lead - Identity & Access Management Program
IT Planning Coomercial Operations is a team within AEP's IT department that was responsible to plan, propose and manage projects of AEP's energy trading organization.. .
Defined and managed projects and functional objectives for delivering effective IT solutions to address Access Management, Securities Management, Energy Trading, Trade Confirmation and Trade Regulation.
Managed implementation of IT solutions to handle application access management needs of FERC (Federal Energy Regulatory Commission) and SOX (Sorbanes Oxley) regulations.
3. Implemented an access security system in compliance with FERC Segregation of Duty principles using BMC Control SA.
Managed efforts to create and standardize process for the management of file shares in the energy trading business.
Managed successful initiation and delivery of solutions to assist AEP's Credit Risk Management and Market Risk Oversight business units.
2005 : 2009
American Electric Power
Sr Business System Analyst / Project Manager - IT Planning Commerical Operations
1998 : 2005
American Electric Power
Consultant/Software Developer - IT Application Services (Office Services)
Worked with cross-functional business and technology stake holders to create an operational and technology framework for IT security assessment /gap analysis, identification and effectiveness assessment of operation/technology privileged access control, portfolio management of critical high-risk assets/systems, risk classification of privileged entitlements/capabilities, tracking/reporting of privileged access holders, implementation of defined controls and exception management
Managed successful implementation of the framework. On boarded 170 IT risk assets and 5000+ privileged access users to the programs and their controls.
2015 : Present
JPMorgan Chase & Co.
Vice President - CyberSecurity & Technology Controls
Privileged to work with highly skilled and energized Accenture team on a multi million dollar Identity and Access Management program with an objective of implementing highly effective IT security control standards and solutions globally for a large multi-national Insurance organization.
Led the programs's North America implementation for Access Lifecycle Management, Single Sign-On and Digital Identity and Onboarding solutions. Worked with cross-functional business and technology stakeholders to facilitate and manage solution assessment, fit-gap analysis, requirement and design finalization.
Managed onsite and offshore delivery model and globally placed teams for planning, design, development and deployment of the solutions and creation of procedure for operationalizing. Managed senior leadership communication and reporting
2012 : 2015
Accenture
Manager - IT Security
My tenure and experience at AEP has been instrumental to my initiation and growth in IT Risk, Security and Regulatory Compliance. Managed successful implementation of several enterprise-wide IT security programs initiated by AEP’s IT Risk & Compliance to FERC, NERC CIP and SOX regulations focussed on identification, assessment and implementation of operational, management and technology - Identity and Access Management (IAM) and incident management controls in alignment to the organizational risk objectives and policies
Managed IT Security and cross-functional business stakeholders communication and governance to define program objectives, accountable IT standards, business process definition, solution assessment and build-vs-buy analysis. Partnered with Gartner for business process gap analysis, maturity assessment and identification of Oracle Identity Management (OIM) suite for solution building
Managed and mentored team for elicitation and documentation of IAM solution requirements, design and implementation of IAM solution for Identity Lifecycle and Access Lifecycle Management, Authentication & Authorization, RBAC and SOD. Created standard operational procedures for operationalizing the solutions and implemented KRI for tracking effectiveness of the solution
2009 : 2012
American Electric Power
Functional Team Lead - Identity & Access Management Program
IT Planning Coomercial Operations is a team within AEP's IT department that was responsible to plan, propose and manage projects of AEP's energy trading organization.. .
Defined and managed projects and functional objectives for delivering effective IT solutions to address Access Management, Securities Management, Energy Trading, Trade Confirmation and Trade Regulation.
Managed implementation of IT solutions to handle application access management needs of FERC (Federal Energy Regulatory Commission) and SOX (Sorbanes Oxley) regulations.
3. Implemented an access security system in compliance with FERC Segregation of Duty principles using BMC Control SA.
Managed efforts to create and standardize process for the management of file shares in the energy trading business.
Managed successful initiation and delivery of solutions to assist AEP's Credit Risk Management and Market Risk Oversight business units.
2005 : 2009
American Electric Power
Sr Business System Analyst / Project Manager - IT Planning Commerical Operations
1998 : 2005
American Electric Power
Consultant/Software Developer - IT Application Services (Office Services)
Company:
JPMorgan Chase & Co.
About
I am an accomplished professional with an extensive background in leading high-impact enterprise wide programs driving IT Security transformation. I have 15 years of experience focused on IT Security and Risk Management, Regulatory Compliance, Controls Management, Identity and Access Management.
I enjoy working with astute and creative people with the passion for devising effective IT Security controls solutions aligned to Enterprise Risk objectives and policies.
Specialities: Risk Assessment, Control Assessment, Digital Identity, Access Life Cycle, Data Loss Prevention (DLP), Privilege Access Management and IT Security Governance,
Profile Photo
