Summary
Overview
Work History
Education
Skills
Accomplishments
Certification
Languages
Interests
Timeline
Baseline Clearance
Generic

Venkat Dontineni

Summary

A seasoned Risk & Compliance specialist with 10+ years of experience spanning management consulting (Accenture, Capgemini) and risk leadership roles in banking and gaming industries . Adept at advising senior executives on enterprise risk frameworks, regulatory compliance, and operational resilience , while driving large-scale risk transformation programs. Known for delivering strategic risk solutions that balance regulatory obligations with business objectives , leveraging expertise in financial crime risk, operational risk management, third-party risk frameworks, and regulatory change . During consulting engagements with and Capgemini , successfully led risk operating model redesigns, process re-engineering initiatives, and governance uplift projects for Tier-1 banks and financial institutions. Delivered board-level risk reporting, conducted control testing and maturity benchmarking, and implemented continuous improvement strategies that enhanced audit readiness and reduced compliance gaps. Recognized for a consultative approach to problem-solving , combining deep industry knowledge with hands-on experience in risk analytics, GRC tools (RSA Archer, ServiceNow, SAP Ariba) , and data visualization platforms (Power BI, Tableau) to provide actionable insights to CRO and Audit Committees. Brings a blend of consulting rigour and operational risk expertise , with a track record of influencing senior stakeholders, leading cross-functional risk workshops, and managing regulatory reviews . Skilled in driving efficiency through process automation , fostering a culture of proactive risk management, and aligning enterprise risk strategies with both corporate goals and regulatory requirements (APRA CPS 220/234, ISO 31000, SOX).

Overview

15
15
years of professional experience
1
1
Certification

Work History

GRC Consultant

Tabcorp
05.2024 - Current
  • Designed and implemented an enterprise-wide risk management framework aligned with ISO 31000 and CPS 234, supporting improved risk ownership across 8 business units.
  • · Redesigned and embedded risk operating models across 5 business units, increasing policy compliance by 30% and improving alignment with APRA CPS 220/234 and ISO 31000 standards.
  • · Conducted 50+ RCSAs and control reviews annually , proactively identifying and remediating risk gaps, improving residual risk ratings by 25%.
  • · Established third-party risk assessment templates and frameworks , cutting vendor risk evaluation timelines by 40%.
  • · Automated risk reporting workflows using Power BI dashboards, saving 20+ hours per month in manual data collation and reporting.
  • Prepared quarterly CRO and Audit Committee packs , improving visibility of key risk indicators, audit findings, and compliance obligations for senior leadership.
  • Led a risk maturity benchmarking initiative , delivering 15 % uplift in control effectiveness scores and strengthening operational resilience.
  • Collaborated with Line 2 and Internal Audit teams to close 95% of audit issues on schedule, reducing audit findings year-on-year.
  • Developed and delivered targeted risk awareness training for leadership teams, improving risk culture scores by 20%.
  • Partnered with cross-functional teams (IT, Legal, Compliance) to integrate risk controls into agile delivery pipelines, reducing project-related risk incidents by 30%.
  • Performed scenario-based operational risk assessments for high-impact initiatives (e.g., digital transformation projects), enabling early detection of critical risks.

Senior Associate, Divisional Controls Officer

National Australia Bank
01.2020 - 05.2024
  • Participated in security assessments of business applications and Microsoft 365 environments to identify DLP configuration gaps and risks to sensitive information.
  • Developed governance documentation and assisted in policy uplift related to data classification, retention, and information lifecycle management.
  • Collaborated with Legal and Risk to implement proactive monitoring strategies and assurance metrics for critical data-handling platforms.
  • Contributed to audit readiness for CPS 234 and internal reviews related to data protection, resulting in improved control ratings and closure of 90% of open items.
  • Supported policy harmonisation across Line 1 and Line 2 by integrating operational risk and security frameworks under a unified governance model.
  • Conducted control effectiveness reviews, aligned to NIST CSF, ISO 27001 , and CPS 234, improving overall risk ratings in core tech areas.
  • · Partnered with Enterprise Risk and Procurement to establish a third-party security assurance checklist, streamlining supplier onboarding assessments.
  • · Authored and maintained security awareness training materials , including phishing simulations and training playbooks, reaching 1,000+ users across tech operations.
  • · Delivered 10+ training sessions to technology teams on control ownership, risk logging, and incident management, improving frontline risk capability and reducing audit exceptions.
  • · Collaborated with delivery teams to embed risk assessments into change initiatives, reducing risk exposure from unplanned outages by 15% .
  • · Validated closure of 20+ risk issues and audit actions , providing assurance to senior management and improving internal compliance audit scores.
  • · Supported preparation of monthly risk reports and dashboards for Divisional Risk Committees, presenting risk trends, residual exposure, and remediation status to senior stakeholders.

Cloud Solutions Architect

Capegemini/Vanguard
01.2016 - 01.2020
  • · Aligned cloud architectures with security and compliance standards; supported AWS GRC alignment (Well-Architected, NIST).
  • Documented risk and compliance design patterns and embedded GRC controls into infrastructure and DevOps pipelines.
  • Implemented security configuration baselines for AWS environments, integrating CloudTrail and Security Hub for GRC reporting.
  • Collaborated with compliance and security teams to implement policies, monitor audit trails, and validate access governance.
  • Presented GRC-aligned architecture recommendations to senior stakeholders, ensuring scalability, resilience, and Compliance.

IAM Solution Architect - GRC and Security

IBM/Accenture/Verizon Communications
04.2010 - 01.2016
  • Managed end-to-end software development life-cycle, from initial requirements gathering to post-implementation support and maintenance.
  • Improved solution efficiency by designing and implementing scalable architectures for enterprise clients.
  • Developed comprehensive documentation for solution design specifications, ensuring clear communication between stakeholders at all stages of project lifecycle.
  • Facilitated seamless communication between technical teams and non-technical stakeholders by effectively translating complex concepts into understandable terms for all parties involved in projects.

Education

Master - Information And Communication Technology

James Cook University
QLD
01.2005

Bachelor of Engineering - Computer Science

Madras University
India
01.2002

Skills

  • IAM and PAM
  • Data protection
  • Working knowledge of Essential8 and ASD-ISM
  • Governance framework
  • ITIL/ITSM
  • Vendor and partner management
  • Mapping of cross functional teams' workflow
  • Business and commercial acumen
  • Logical and Critical thinking
  • Prioritization and Multitasking
  • Attention-To-Detail
  • Resilient and Adaptable
  • Thrives under pressure
  • Teamwork and collaboration
  • ISO standards
  • Cybersecurity best practices

Accomplishments

  • Led enterprise-wide RCSA (Risk and Control Self-Assessment) uplift across Security and Technology functions at Tabcorp, identifying and remediating 30+ high-impact control gaps in areas including privileged access, change management, and data protection.
  • Designed and embedded a Continuous Control Monitoring (CCM) framework for key cyber and operational risks (e.g., third-party access, endpoint security, PAM), reducing manual assurance overhead by 40% and improving audit readiness.
  • Provided second-line risk oversight at NAB for CPS 234 compliance, independently validating remediation plans, reviewing incident RCA (root cause analysis), and supporting closure of 20+ open risks across infrastructure and application landscapes.
  • Acted as a strategic security risk advisor in Agile squads , integrating risk acceptance and exception processes within CI/CD workflows using Jira and ServiceNow , driving risk ownership and enabling secure digital delivery.
  • Automated risk indicator and control testing processes by integrating data from ServiceNow and IAM platforms into Archer risk registers, cutting manual effort by 50% and increasing reporting accuracy for governance forums.
  • Influenced senior risk and technology stakeholders without formal authority to drive adoption of control uplift roadmaps and remediation actions, strengthening Line-1 ownership and reducing the number of overdue actions by 40% .

Certification

Certified Information Security Manager (CISM).

Certified in Risk and Information Systems Control (CRISC).

Certified AI Governance Professional (AIGP).

Certified Identity and Access Manager (CIAM).

ISO27001 Certified.




Languages

Hindi
Native or Bilingual
Telugu
Native or Bilingual
Spanish
Limited Working
Tamil
Limited Working

Interests

  • Blockchain Technology and Cryptocurrency
  • Martial Arts
  • Gym Workouts
  • Yoga
  • Gardening
  • Camping
  • Baking
  • Sharing recipes, cooking tips, and culinary experiences through blogs and social media platforms

Timeline

GRC Consultant

Tabcorp
05.2024 - Current

Senior Associate, Divisional Controls Officer

National Australia Bank
01.2020 - 05.2024

Cloud Solutions Architect

Capegemini/Vanguard
01.2016 - 01.2020

IAM Solution Architect - GRC and Security

IBM/Accenture/Verizon Communications
04.2010 - 01.2016

Master - Information And Communication Technology

James Cook University

Bachelor of Engineering - Computer Science

Madras University

Baseline Clearance

Australian Citizen with Baseline Clearance 

Venkat Dontineni