Mahesh Patel

• Developing and implementing security controls and protocols to protect against cyber threats. Defining security requirements for systems and applications and integrated throughout development lifecycle.
• Analyzing security risks and developing strategies to mitigate them. Monitoring networks, systems, and applications for security breaches and responding to incidents.
• Conducting security risk assessments and developing risk mitigation strategies. Keeping up to date with latest security technologies and trends.
• Developing and maintaining positive relationships with stakeholders to ensure successful project delivery. Collaborating with stakeholders to prioritize project objectives and deliverables. Providing timely and accurate reporting to stakeholders on project status, risks, and issues.
• Coordinating with internal and external stakeholders to identify potential risks and recommend mitigation strategies. Responsible for maintaining risk management documentation, including risk artifacts and action plans. Creating and maintaining documentation for security policies, procedures, and guidelines. Ability to analyze security risks and develop strategies to mitigate them.
• Establishing and enforcing policies and procedures to safeguard data integrity and security.
• Enforcing Data Security Policies such as encryption, data classification, access controls, and data retention policies, ensuring compliance with data protection regulations such as APRA, GDPR, and HIPAA. Managing and leading change management initiatives with ability to create and implement transformational plans that minimize risk and maximize success.
• Experience in developing and implementing risk management strategies, including risk mitigation plans, contingency plans, and disaster recovery plans.
• Maintaining up-to-date knowledge of emerging data security threats and technologies

Designing scope of work which consist of controls that would be tested for EPC.
Directed requirements for control testing for this new platform to identify potential risk
Conducted various meeting with different stake holder to collect necessary details
Conducted extensive control testing plan on 55 IT Key controls, which will help EPC to integrate new APIs
Enabled a delivery of centralized product Catalog list accessible to internal and external Westpac customer, which help them in significant cost saving and improved customer experience
Delivered Control Testing Interim Memo, which was used as input for
GO/NO-GO decision for June release.

• Technology – ISO, PCI-DSS, Risk Assessment, Expertise in the field of Access Review audits conducted for critical application within IKEA Systems scoping, Process review, Control requirements analysis, existing controls and gaps identification, control implementation plans and monitoring, design of audit program procedures, testing and evaluation and analysis of results
• Proficiency in PCIDSS controls, carrying audits to ensure compliance, bridging gaps and making it compliant
• Driving secure code review along with technical team to analysis if there are any underlying risks
• Experience in ISO27001 IT general controls auditing
• Assist in remediation effort with application team and track down till findings are remediated by providing suggestions to mitigate any exposures and testing known vulnerabilities
• Conducting User Access audit review, which includes
• Onboarding/Offboarding, Flushing/Revoking unnecessary access
• Adhering to security incident policies and driving through forensic report
• Product Involved –
• 1PCI DSS audit and Remediation
• ISO27001 Audits
• Risk Assessments
• Vulnerability Assessments
• Event Management tool
• RSA Archer

Technology – Novell eDirectory and Identity Management

• Majorly responsible for Implementing eDirectory 8.8.x and IDM 3.6 with User
• Application Role based provisioning module 3.6.1
• Designing eDirectory
• Schema and Tree
• Designing workflows and forms for Self-service and approvals
• Provide assistance in testing
• Setting up connected systems – Active Directory,
• Delimited Text Driver, LoopBack Driver, SAP and Email Drivers etc
• Business process consulting and workflow and policy design
• Facilitating User Acceptance Testing, documenting project
• Post productions 3rd Level support
• Preparing documentation for Support and implementation of entire project
• Successfully completed Migration of Identity Manager to a newer family 4.0.2
• Consulting/Administration/Maintenance/Troubleshooting are some of key things done by me on day-to-day basis
• Evaluating, organizing, and prioritizing work within overall project schedule
• Products Involved – NetIQ Identity Management and NetIQ SSPR

• Client – Multi Client
• Technology – NetIQ Identity and Access Management
• Job Responsibilities –
• Led global customer relationships by ensuring customer satisfaction for Novell
• Product’s like Linux, eDirectory and IDM
• Involved in continuous improvement in business/service/project processes to enhance customer satisfaction
• Performing day-to-day administration & man management initiatives including, performance monitoring, training requirement review, training, motivation etc
• Provided best available solution while working toward workflow integration in
• SNOW
• Implemented Password management tool (Self-service portal), which helps user to tackle the password issue
• Requirements gathering and designing new policies and workflows
• Working with entitlements management for various
• Working of various drivers such as Active Directory, eDirectory Driver, Loopback
• Driver, SAP, User Application Driver etc
• Applications
• Password policy set up and self-service requirement set up using challenge-response questions
• Providing timely consulting related to various impending issues, product upgrades etc
• Products Involved –
• NetIQ Identity Management
• SailPoint IIQ

• Client – US and UK Customers
• Technologies – Microfocus (formally known as Novell) tools
• Job Responsibilities –
• Accountable for maintaining global customer relationships by ensuring customer satisfaction for Novell Product’s like Linux, eDirectory, iPrint Novell
• Client and IDM
• Establishing support center policies, organizing infrastructure, recruiting, training, defining & managing KPI
• Responsibility for checking service request activities
• Participating in team planning and coordinating with the team from time to time
• Actively participating in pulling out reports for team on weekly, monthly and quarterly basis
• Taking appropriate steps towards the goals and Development plans that was set by the manager
• Managing the entire Projects and coordinating with other Support Engineers
• Involved in continuous improvement in business/service/project processes to enhance customer satisfaction
• Performing day-to-day administration & man management initiatives including, performance monitoring, training requirement review, training, motivation etc.