Avishek Maitra
About
Avishek Maitra is from Bangalore Urban, Karnataka, India. Avishek works in the following industries: "Computer Software", "Internet", "Package/Freight Delivery", "Information Technology & Services", "Financial Services", and "Computer & Network Security". Avishek is currently Cyber Security Engineer at FactSet, located in Bangalore Urban, Karnataka, India. In Avishek's previous role as a Cyber Security Advisor at FactSet, Avishek worked in Greater Bengaluru Area until Oct 2021. Prior to joining FactSet, Avishek was a Analyst - Cyber Security at HSBC and held the position of Analyst - Cyber Security at Bengaluru, Karnataka, India. Prior to that, Avishek was a Information Security Analyst at Olive Technology, based in Bengaluru, Karnataka, India from Feb 2017 to Apr 2019. Avishek started working as Analyst- Data Center Operations at HCL Technologies (Infrastructure Services Division) in Hyderabad Area, India in Mar 2016. From Aug 2015 to Feb 2016, Avishek was Transportation Specialist - Supply Chain Management & Logistics ( Fixed Term Contract ) at Amazon, based in Hyderabad Area, India. Prior to that, Avishek was a Associate at AM ENTERPRISES, based in West Bengal, India from Jul 2013 to Jul 2015.
You can find Avishek Maitra's email on finalScout.com. FinalScout is a popular professional database with more than 500 million business professionals and over 200 million company profiles.
Avishek Maitra's current jobs
Avishek Maitra's past jobs
o Managing Third-party audits(security assessments) process and activity for India (Regulated Entity -RBI, IRDA). o Conducted remote and onsite (questionnaire-based) risk assessment for very high, high and medium risk vendors against HSBC Security Requirements Standard, NIST, PCI DSS, ISO 27001 requirements by using control assessment workbook o Conduct risk assessments for vendors, identify and document control gaps, and present results to support management action, escalation and risk acceptance processes. o Conducted review of security controls implemented by vendors covering domains such as BCP, Record management, Cloud , SDLC , encryption, backup, physical security, logical security, network management, change management, incident management, human resource, remote access, mobile access etc. o Articulate and explain information security assessment result to business
o Single-handedly managed end to end implementation and management of ISO/ IEC 27001:2013 standard related activities in the organization. o Planning and Conducting Security Education / User Awareness training across all the departments o Planning, Formulation, Maintenance and Enforcement of in-house security policies for organization. o Assess compliance of the company’s IT-related policies, regulatory guidelines and international best practices. o Perform Biannual Internal Audits across all Business processes and Systems o Prepare Bi-Annual audit reports and discuss with Auditee to close the identified GAPs. o Conduct MRM with CISO, Lead project manager and discuss Improvement Plans & Nonconformity . o Conducting Business Continuity, DR activities, Incident management activity o Implemented 3rd party Third-party Risk Management program o Conducted Annual Asset and Access Management review. o Conducted VAPT for networks and application in the organization. o Conduct architecture reviews for applications and networks in the organization. Major Achievements : • Promoted to Olive Core Team /Leadership Team advisory committee by CTO of the organization • Migration from Enterprise McAfee Anti-malware solution to Machine Leaning and cloud-based Webroot Secure Anywhere solution • Played a pivotal role in augmenting NAS storage device with AWS Glacier service and amazon S3 buckets increasing backup efficiency, Business continuity capabilities and resiliency. • Successfully introduced and implemented process like Third party risk management program on a small scale in the organization. • Introduced automated application security testing tool OWASP ZAP, in CI/CD environment and minimized manual testing efforts and time thus saving around yearly INR 85000 in the organization.
o Coordinating with NER and CAB person on implementing or building new production Microsoft windows server 2012 in the virtual environment infrastructure. o Performing IRT Test once the server is Built. o Proactive Monitoring, Reporting, RCA of critical infrastructure server alerts of over 4000+ servers in Toyota network namely from Windows, Unix, VMware ESX, Backup, Storage, Database Server through HP Open view monitoring tool and Service Now Event management console (SNOW) o Review and verification of Health check report from critical nodes. o Escalate any inconsistencies in the monitoring environment with respect to the monitoring tool configuration, alert thresholds, alert message enrichment & false alerts. o Act as a trigger for the critical incident management process by involving the technical & incident management and change management team.
o Handling various functional areas under transportation, maintaining various transportation schedule, communicating with stakeholders (FC, Transport, amazon delivery centre, Customer service) for Amazon North America Operation. o Management of all daily Freight movement for all North America flowing in and out of FC. o Handling various network exceptions, network monitoring and network contingency planning by coordinating with multiple stakeholders. o Proactively working in procurement portal toolset, tendering activities to ensure value for money in maximized. o Monitor and Track Order Acknowledgement, communicate shortage, damage, returns, warranty, replacement, invoice discrepancy, consolidation.
-Setting and assembling of desktops, printer, installation of OS, AV and other utility softwares in small and micro enterprises in and around kolkata west Bengal area - configuring and setting up of network (router and switches) of small call centers, schools in kolkata - Underwent Training in Comptia N+ A+ during this time period from IIHT kolkata.