SAUMYA KHARE

• Streamlined and formalized Third-Party Risk Management (TPRM) processes within the organization, including vendor onboarding, assessment workflows, risk scoring methodology and reporting structures.
• Conduct end-to-end third-party security assessments, independently managing vendor due diligence, assessing the adequacy of controls and identifying potential risks.
• Responsible for preparing and presenting business-aligned risk reports, ensuring residual risks and recommendations were clearly communicated to stakeholders.
• Map controls across ISO 27001 and NIST CSF to Challenger’s framework, identifying control gaps and recommending improvements. Support control effectiveness testing to ensure assurance.
• Conduct security assessments of solution designs, collaborating with IT, Legal and Security teams to evaluate controls implemented across SaaS and cloud integration.
• Support GS007 and CPS 234 audits by preparing artefacts, policies, and control assessments, engaging directly with auditors and external managers.
• Collaborate on phishing simulation programs, monitoring staff responses, analysing results, and suggesting improvements.
• Engage with business owners and relationship managers to strengthen accountability under CPS 230, scheduling regular oversight discussions.

IT Resiliency Consultant | Commonwealth Bank of Australia (Client)

• Facilitated IT risk workshops, developing service continuity strategies and controls aligned to APRA guidelines.
• Supported BCP/DR testing, conducting risk evaluations, impact analysis, and designing mitigation measures.
• Managed project delivery within Agile-SCRUM and Kanban environments, using Jira and Confluence.
• Delivered structured documentation including non-functional requirements and ServiceNow accreditation reports.
• Gained deep exposure to ISO 27001, SOC reports, ITIL processes, and operational risk frameworks.

• Provided technical troubleshooting for network infrastructure issues across global customers.
• Analysed configurations, performed packet tracing, and recommended corrective actions.
• Consultation of technical documentation, bulletins and release notes for known problem.

L3 Network Engineer | CISCO | Bank of America (Client)

• Delivered L3 network engineering support across Cisco platforms.
• Managed incident, problem, and change processes using ITIL tools.
• Performed network troubleshooting, configuration, and escalation management.
• Responsible for creating change requests (RFCs) and representing them over Change CAB for approval.
• Configuring and troubleshooting Static, RIP, OSPF, EIGRP, BGP (Basic), Default Route.