Taslimm Quraishi
Details
Telecom Management
SYMBIOSIS INTERNATIONAL UNIVERSITY
Amazon
GFRC - IT
The National Centre of Excellence for Cybersecurity Technology Development is a joint initiative conceptualized by the Ministry of Electronics & IT (MeitY) and DSCI forsetting up connected, concerted & coordinated efforts to catalyse and accelerate cybersecurity technology development and entrepreneurship in the country. NCoE isworking to establish India as a leading hub for cybersecurity capabilities and leverage the expertise to secure the Digital India of Tomorrow from cyber threats.
2021 :
National Centre of Excellence for Cybersecurity Technology Development
National Cybersecurity COE Board - Mentor
2021 :
HMG Strategy
Advisory Board Member
• Leading several teams around the globe across multiple disciplines (Security Governance, Risk Management, Security Strategy, Third-Party Risk Management, Security Shared Services, Security Awareness) including Business Information Security Officers (BISO) in our global locations.
• Driving and operationalizing a security risk management program to capture and prioritize risk across various internal entities along with establishing KRIs and KPIs, and reporting metrics
• Supporting and driving regulatory and compliance needs to align with local and international laws and regulations
• Managing third-party risk programs to enhance our vendor relationship and drive vendors towards a risk-based approach to managing security using tools like Process Unity
• Driving phishing and awareness campaigns within the organization and across our global footprint
• Part of my team is the voice of business and security across the organization to help the BISO’s deliver security and manage risk across various business groups, ensuring that security is embedded in all business initiatives, along with engineering and technology processes.
2019 : 2021
Invesco Ltd.
Global Head of Information Security
Leader and director in the Security Services organization at Cisco where I helped customers, by advising them on security strategy and how to leverage their infrastructure to overcome emerging security challenges. I lead the Global Service Provider (GSP) portfolio of companies. In this role, I am responsible for advising C-suite's (CIO, CTO, CISO, etc.) on strategy, risk management, audit, compliance, managed services security, and helping clients define a risk-based and a threat-centric approach to protecting their assets, thus helping create an effective security roadmap, all driving towards making sure that, successful business outcomes are achieved.
Work cross-functionally with the C-suite (CISO, CIO, CTO, and senior executives) to build a comprehensive security risk strategy for Cross-Architecture, including IT, security, cloud, virtualization, and IoT.
I have also helped in creating new services and leading innovation discussions within the company, which has led to new revenue-generating services being rolled out.
2015 : 2019
Cisco
Principal and Director - Security Services
Skills
Business Analysis, business continuity, Business Development, Business Process Improvement, Business Transformation, cisa, cissp, cobit, Communication, COSO, Cyber-security, data privacy, enterprise risk management, External Audit, fisma, hipaa, Information Security, Information Security Management, Information System Audit, Information Technology, Infrastructure, Internal Audit, Internal Controls, ISO 27001, ISO 27001 Lead Auditor, ISO 27002, ISO Standards, it audit, itil, it risk management, Management, nist, Payment Card Industry Data Security Standard (PCI DSS), payment industry, pci dss, risk assessment, Risk Management, sarbanes-oxley act, sas70, Security, Security Audits, Security Awareness, Security Management, Security Operations, sox 404, Statutory Audit, Strategy, Team Management, Vendor Audit, vendor management, Enterprise Risk
About
An experienced and accomplished leader, board member, board of trustees, and advisor to startups in the information security, governance, risk, and compliance space. Have been a trusted advisor to several international governments and Fortune 500 organizations on managing security, risk, and privacy. Have been hands-on with small startups to leading large organizations through various digital disruptions and security landscape changes.
Managed teams across a range of disciplines including Governance, Risk Management, and Compliance, Technology Assurance, Internal Audit, Security Strategy, Data Protection, and Process / Controls automation and SOX 404.
Proven track record of success, presenting to boards, effective executive communication, and expectation management, providing value-added results, risk management, audit, building effective partnerships, growing talent & mentorship
Led, scoped, planned, managed, executed numerous governance, risk, and compliance programs including Data Privacy (Safe-Harbor) reviews, Data Security reviews, ISO 27001, NIST 800-53, SOC 1-2-3 (SSAE-16), PCI-DSS, FISMA, FedRAMP, Vendor Security Assessments, Encryption, Vulnerability Management, Vulnerability Assessment, Application Security, Infrastructure and Applications reviews.
Have been a panelist and presented at various industry events and forums, like Cisco Live, Mobile World Congress-Barcelona, SecureCISO, etc.
Information Security Strategy and Governance • Zero Trust • Cybersecurity Operations • IT Risk Assessment • Risk Mitigation • Privacy • Regulatory Compliance (IT Audits, PCI DSS, GDPR, SoX 404, FISMA, NIST, HIPAA, and FedRamp) • ISO Standards (27001) • Change Management • Security and Compliance Maturity • Business Development • Infrastructure and physical security • Data protection • Cloud Computing • Leadership • Network Security • Program Management • Cybersecurity • Disaster Recovery • Vulnerability Assessment/Management • Application Security
Profile Photo
