Sam Vishal MBA PMP ITIL CISSP CISM

=> Managing security, Risk and IT team in Canada and offshore to improve Cloud Security, transform DevSecOps processes, and enhance overall cyber security posture for eGovernance SaaS application, Cloud-based Infrastructure and IT risk. >>> Leading technical resources and Infrastructure in AWS and Microsoft Azure for ensuring 99.99% availability and security of the cloud-based infrastructure that hosts eGovernance SaaS Application (Product) for municipal governments. >>> Leading advisory services in IT and Information security - serving clients in fintech, banking and the government sector - providing services such as: >> Information Security Strategy, Cyber Resilience Roadmap, Vulnerability Management, Incident Response and Third-Party Risk Management, application security, DevSecOps optimization, ransomware simulation and product security. >> Cloud migration, Cloud Security and cloud cost optimization (AWS, Azure, GCP, SaaS, PaaS, IaaS) >> Governance: ISO27001, NIST based Strategic planning; compliance with OSFI, PCI-DSS, SWIFT, Payments Canada, GDPR, SOX, SOC2, SSAE16, PIPEDA, HIPPA, FIPPA >>Revamped cyber security strategy, roadmap, and controls heat map for Laurentian Bank; developed KPIs and quarterly dashboards for the board >>Created and designed IS027001 and NIST-based security framework and COBIT, CIS and CSA-based controls, for cyber risk minimization. Formulated the roadmap, budget and action plan for enhancing cyber resilience to the desired level. >>Improved risk mitigation and compliance by aligning cybersecurity risk management with enterprise risk management process, clarifying RACI, and standardizing taxonomy, and Risk management tool >> Authored and operationalized Third-Party Risk Management process, Vulnerability Management Process, and Cyber Incident Management Process; conducted ransomware simulation and created ransomware playbook for the Executive committee and the Board members.