About
Accomplished professional with extensive experience at HSBC, Wells Fargo, and Tech Mahindra in stakeholder management and advanced data visualization using Tableau and Power BI for risk and compliance reporting. Expertise in leading projects focused on network security enhancement, WAF firewall monitoring, and regulatory compliance, showcasing strong cybersecurity and project management skills. Proficient in process automation to boost operational efficiency and risk oversight. Skilled in business analysis, Agile, Scrum methodologies, and change management, consistently driving successful project delivery and fostering continuous improvement.
Skills & Expertise (16)
Work Experience
Application security compliance analyst
Tech Mahindra
Oct 2012 - Jan 2017
Collaborate with stakeholders to gather requirements, design robust solutions, and ensure successful delivery aligned with business objectives. Generate and report comprehensive vulnerability trend analyses to delivery teams, facilitating proactive risk mitigation. Analyze security data to support the development, implementation, and documentation of operational processes for network, system, application, data security, and privacy compliance. Deliver detailed application security trend reports and remediation plans to risk governance committees, ensuring enforcement of security policies company-wide. Assess organizational structures, processes, and risks to identify best practices, design change requests, and implement process improvements and automation solutions. Conduct process walkthroughs with senior management and external auditors to validate compliance and operational effectiveness. Perform internal application security audits and assist in compliance verification, audit readiness preparation, and follow-up actions to maintain regulatory adherence. Develop contract components for third-party vendors responsible for conducting security audits on subcontracted companies and solutions. Monitor and report web application security scanning trends using industry-leading tools such as Checkmarx, WebInspect, and Fortify. Manage security incident response, conducting thorough investigations to resolve incidents and strengthen IT environment defenses.
Sr Information Security Engineer
Wells Fargo
Nov 2018 - Jul 2024
Build strong stakeholder relationships for the business, and coordinate with risk and control teams to drive and influence strategic program decisions with a control's perspective. Played the role of business analyst and scrum master for gathering requirements from stakeholders, working on project planning, development, testing, and securing delivery. Experienced in leading multiple projects with a team of seven members on continuous monitoring of controls on network security, vulnerability management, and configuration management platforms. Generating periodic risk reports and dashboards for higher management on visualizing the metrics and KPIs with their trends using Power BI or Tableau. Worked on leading different projects such as firewall rule tag monitoring, WAF Splunk logs monitoring, validating the firewall changes in Atwork and ServiceNow tools, secure proxy configuration monitoring, vulnerability management reports, and iSeries LPAR's configuration settings to be monitored. Validated the non-compliance data, reported to stakeholders, and followed up on closure. Documenting SOPs, playbooks, control procedures, and performing annual reviews for any updates. Performing and supporting internal audits. Providing automated solutions to streamline processes for the efficient delivery of non-compliance and compliance trend reports. Contribute to materials, give presentations at working groups and senior management meetings, and provide sufficient information to inform key stakeholders in monthly and quarterly meetings.
Sr Business Analyst-Delivery Lead
HSBC
Mar 2025 - Present
Led the delivery of the WAF Akamai onboarding process for all HSBC high-risk applications, ensuring seamless integration of Akamai security solutions. Conducted comprehensive analysis of FQDNs to identify optimal Akamai implementation strategies and mitigate security risks. Managed Agile and Scrum methodologies to streamline project workflows, improve team collaboration, and ensure timely delivery. Coordinated and reviewed scheduled changes for Akamai deployments, minimizing downtime and maintaining system integrity.
Education
MBA/PGDM in HR/Industrial Relations - Osmania University
2015 - · Afghanistan
B.Sc in Computers - Osmania University
2012 - · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Visa Status
Citizen
Relocation
Depends on Offer
Skills (16)
Click a skill to find developers with the same skill
