Sairam Venkatasubramanian

IT Risk Assurance Leader with 11+ years of Global experience

Toronto, Ontario, Canada

Skills

COSO, COBIT, NIST, ISO, IAM, RDAR, MITRE ATT&CK, ITGC, cyber threat modelling, cyber resiliency techniques, shared responsibility model, ENISA Cloud Computing Information Assurance Framework, ISACA Risk IT, ITIL, CMMI, DAMA data governance, IT program auditing, IIA IPPF, OWASP top ten, IT Third-Party Governance, ISAE 3402, CSAE 3416, SSAE 18 – SOC reports (type 1/2/3), CCCS – Baseline Cyber Security Controls, CIS controls, CSA Cloud Controls Matrix, NIST controls, digital transformation program controls, application security controls, mobile devices security controls, change management controls, access controls, network security controls, disaster recovery controls, automated IT controls, incident management, security and event incident management, vulnerability management, IT resiliency, disaster recovery and business continuity, Archer, SAP GRC, ERM, SAP ECC, SAP APO, SAP BI/BW, ARIS, SQL, ACL, PowerBI, QlikView, IBM Cognos, Tableau, Splunk, ServiceNow, JIRA, Cloud(AWS & AZURE) computing fundamentals, SharePoint, Confluence, TeamMate, Pega, BPMS, Firewall, Routers, Switches, IaaS, PaaS, and SaaS, Cybersecurity Trainings, Compliance Trainings, Fresher/Intern Mentoring, Teaching Assistant (delivered classes to Master/Under graduates), Audit planning & resourcing, risk materiality planning, client management, data analysis-based risk assurance, audit analytics, pre/post-implementation review and attestations, stakeholder management, continuous monitoring, issue management, skeptical/critical thinking, forensic investigation techniques, fraud & loss prevention, business impact analysis, internal control assessment, data trend analysis, statistical data analysis, predictive analysis

About

- IT Risk Assurance Leader with 11+ years of experience in engagements covering IT/Cyber security, internal auditing, IT risk assurance, data analytics/mining, and enterprise risk management across industries such as banking, financial, retail, government administration, automobile, fintech, manufacturing & logistics.

- A strategic advisor with deeper and broader experiences on from all three lines of defence in multinational organizations influencing C-suite Executives, Board of Directors, and Leadership Management to manage and mitigate on all technological risks and threats to the company efficiently.