SUMMARY

• Over 10+ years of overall experience with 4+ years of rich experience on RSA Archer GRC Tool with its implementation in multiple Business Units
• A highly focused and goal oriented RSA Archer certified administrator with excellent analytical, organizational and problem - solving skills.
• Proficiency in - RSA Archer V5.X, 6.X GRC Framework, All Core Business Solutions and out-of-the-box Applications
• Comprehensive knowledge of Archer business solutions life cycle (e.g. Enterprise, Policy, Compliance, Risk mgmt etc.)
• Extensive experience in Incident, Problem, and Change Management and Service delivery for distributed Applications and experienced in IT Infrastructure Project Management Operations.
• Experienced in performing risk assessment of new IT projects, identify areas of potential technical and process vulnerability, recommend compensating controls and maintain the IT risk register
• Experience in routing, switching, firewall technologies, system design, and implementation and troubleshooting of complex network systems
• Strong Understanding of Archer Data Feeds, questionnaires, calculated fields, work flow, reports, dashboards, I-views, Packaging.
• Archer Administration - Practical experience in all Archer admin areas like; Access Control, Application Building, Data Driven Events, Calculated fields, Notifications, Workflow, Reports, Dashboards, iViews, Data integration (Data Feeds, Data Import and Application Packaging), Assessment Campaigns etc.
• Trouble shooting - Experience of resolution of Archer issues across various business applications
• Seasoned in delivering under complete SDLC methodology (requirement, analysis, design, data Modeling, business process modelling, implementation and deployment).
• Strong knowledge of Data Warehousing concepts and Dimensional Modeling and exposure to Data Modeling, Normalization, and Business Process Analysis eGRC Platform - Implement, Configure, Administer and Maintain Archer Smart-Suite GRC Framework
• Strong experience in working on RSA Archer tool & have good experience with all areas of Archer framework including: Access Control, Application Builder, DDEs, Calculations, Notifications, Data Feed Manager, Searching & Reporting, Workspaces, Dashboards, I views etc.
• Worked on Creating Awareness and training programs based on Campaigns which are of various events like quiz, presentation and acceptance.
• Worked on mail merge in creating a mail merge template and uploading that mail merge template for that application for which the template was made and finally exporting the record
• Worked on various notifications like Record based Notifications (Subscription Notification, On-Demand Notification, DDE Generated Notification based on actions) And Report based notifications (Scheduled Report Distributions).
• Managed the eGRCArcher Application suite of Vendor, Policy, Risk, Enterprise and Compliance Management coordinating change management requests, and configuration management customizing the Archer application platforms as needed by the client business request.
• Served as the expert resource providing broad base network, financial and application security operation solutions within the eGRC platform working closely with business and varied technical clients and RSA Archer's support leadership.
• Involved with Configuration Management tasks of software development models like Waterfall model, Spiral model, Iterative and incremental development) agile development incorporating the tasks of stakeholders, including testers required for Stakeholder's IT governance of IT Infrastructures and Business Processes controls and Risk avoidance.

TECHNICAL SKILLS

Applications: eGRC EMC RSA Archer

Programming Languages: C, C++, C#, JAVA, XML, PL/SQL, SQL

Operating Systems: LINUX, UNIX, Windows

Software Modeling Tools: Microsoft Office Suite, SQL Server 2008

Databases: SQL Server, Oracle, MSSQL, DB2, Filesystem

Web Servers: Apache, IIS

Application Servers: JBoss, WebSphere

Logging Tools : Log4j

GRC Tools: RSA Archer eGRC Suite 5.x/6.x

Methodologies: Agile

Ticketing tools: BMC Remedy

Web Languages: HTML5/HTML, CSS3/CSS, AJAX

PROFESSIONAL EXPERIENCE

Confidential

EGRC Consultant / RSA Archer Developer-Admin

Responsibilities:

• Served as primary application administrator for Archer and assisted with other applications.
• Generated workflows to and questionnaires to enact internal assessments by improving current procedures for Vendor Assessments.
• Experience in designing, configuring and implementing GRC solutions.
• Collaborated with security teams to develop an internal audit application in an ad hoc format within Archer.
• Worked with clientele to create an exception request workflow based on off current risk memo processes.
• Created custom report dashboards for all modules within Archer E.g. Business Continuity Management, Enterprise Management, Incident Management, Vulnerability Management, Issue Management, Risk Management, Cyber risk reduction Management, Issue Management, Policy Management etc.
• Performed various Archer administrative functions as well as developed training documentation to recreate the implementation and troubleshooting processes that were undertaken.
• Experience with Archer core solutions, on-demand applications, and data feeds.
• Coding in JavaScript and HTML to modify banners
• Experience with data feed setup (all types) and UAT.
• Build/Modify reports, iViews, and dashboards.
• Worked on Windows 2008 Server.
• Experience in configuring access control, record permissions, events and notifications using fields, reports, attributes, iView's and dashboard
• Good knowledge of notification, configuration and functionality.
• Extensive experience using calculated fields (all functions) and Data Driven Events.
• Performed highly complex analysis and design with good understanding of the methodologies used in requirements gathering, usability testing, and documentation
• Configuration of all major and minor monthly releases.
• Coordinate with the vendor to design and troubleshoot custom application components and utilities.
• Enhancement to the several existing JSP's which helped to build an approval process.
• Assist with the QA and UAT review of system changes.
• Develop Cognos reports to go in hand with the triggers
• Develop new batch jobs, triggers, helpers and workflow class files
• Handled end-to-end implementation of several major and minor monthly releases.
• In-Charge auditor on integrated audit assignments that included both financial and computer auditors. Performed disaster recovery and business continuity plan audits.

Environment: s: RSA Archer 5.x, 6.x, Service Catalog, Oracle, JIRA, Java Script, IDM, Ms Word 2014.

Confidential

RSA Archer GRC Consultant

Responsibilities:

• Develop and maintain a formalized GRC framework, utilizing standards based controls aligned to business specific threats
• Assess, prioritize and update existing IT security policies and standards to reflect the GRC framework
• Perform risk assessment of new IT projects, identify areas of potential technical and process vulnerability, recommend compensating controls and maintain the IT risk register
• Review existing systems and processes against the GRC framework and prioritize remediation plans based on business risk
• Evaluate and maintain up-to-date knowledge of the effectiveness of GRC standards and compensating controls in mitigating IT risk
• Interact with Internal Audit and IT teams to ensure on-going compliance with company IT security policies and standards
• Experienced in creating fields, reports, iView's and dashboard experience in configuring access control, record permissions, events and notifications
• Define GRC framework metrics and key risk indictors, maintain a management dashboard and produce an annual GRC framework compliance report for executive management
• Provide training and support to management and employees regarding GRC programs and requirements
• Work with internal and third-party IT security partners to stay current on industry trends, controls and security technologies and services
• Wrote scripts on the backend for Archer SQL and Big Data MongoDB integration with Rsa Archer 5.3 Performed data reconciliation after migrating millions of records from V4 to V5
• IRM Specialist:
• Review and enhance existing evergreen documentation to meet application IRM and audit requirements
• Create and/or review new control to fill compliance gaps
• Provide monthly IRM compliance updates
• Manage MCP transition into new enterprises IRM tool
• Engage all necessary parties to successful conclude all IRM responsibilities/task create data gathering processes/scripts
• Assist with audit preparation and execution
• Backup for IRM support of PRC applications

Environment: BMC Remedy 7.1/7.6, Application Portfolio Catalog, Application Lifecycle Management, archer GRC Tool, IT Service Management, Global Application Platform etc.

Confidential - Dearborn

RSA Archer Developer

Responsibilities:

• Gathered detailed business and technical requirements and participated in the definitions of business rules and data standards.
• Worked on developing / configuring On Demand Applications in Archer, consisting of Calculations, Data Feeds, Work Flows, Notifications, Events, and Record Permissions.
• Experience customizing the existing solutions or creating new on-demand solutions to meet the customer needs.
• Configuring access control using application-level, record-level and field-level access control functionalities of archer.
• Configured Data Imports & Data Feeds to pull data from External source to Archer destinations. Good hands on experience in Archer to Archer & Database to Archer type data feeds.
• Customization of workflows based on calculated fields, dynamic record permissions, events and notifications.
• Field creation and configuration - cross-reference fields, calculated fields, custom value lists.
• Consult clients on automating business processes & risk management activities in the RSA ArcherGRC platform.
• Gathered requirements using ASAP methodology, defined business process design and Gap Analysis.
• Gathered and documented functional requirements and use cases for automation of operational and administrative business processes
• Configuration of the RSA Archer platform, along with the solutions and applications that support variety of business needs & to achieve organizational objectives.
• Prepare project status reports and submitted to the management on ongoing basis.
• Guide the implementation of IT compliance control objectives, provide gap analysis, and track timely.
• Collaborate with the GRC team on the development of the GRC solution.
• Experienced in Integrate risk management processes across the enterprise.
• Consult auditors and Information Security leaders on all GRC tasks.

Environment: s: RSA Archer 5.x, SSRS, Service Catalog, SQL Server 2008, 2012, DLP Semantic, JIRA, Java Script, IDM.

Confidential - Denver (CO)

IBM Open Pages Administrator/Developer

Responsibilities:

• Involved in Requirements analysis and implementing new change requests and worked on multiple production issues for Operational Risk Management of IBM OpenPages GRC Application.
• Develop and manage objects, views, workflows & reports using OpenPages framework and work with the Open Pages security structure and modules.
• Experience working on Configuring and managing Object Types, Profiles and Fields and field groups.
• Worked on configuration of Object types, Facts and dimensions, Labels, reporting schema and generation of Reporting Framework.
• Implemented complex business logics for Jsp helpers and Java action classes (triggers) using IBM Open pages API and Java technologies.
• Administering Users, Groups and Domains and provide access control using Role Templates.
• Managing Home page, Object views, localizing text, resetting objects and configuring settings.
• Develop and manage objects, views, workflows & reports using Open Pages framework and work with the Open Pages security structure and modules.
• Provided training on JSP Helper development and Trigger framework development for team members.
• Worked with loader files and packaging with Object Manager Tool.
• Involved in Open Pages Command Center report development on Cognos 10.x, Report Net and delivered the reports including test cases, publishing reports to OpenPages application and submit the overall Report package.
• Highly skilled in working with clients to properly capture and document requirements, including system requirements specification (SRS), use cases, business process flows, user interface design mockups, data maps for data migration and tool integration, and Archer design binders for Archer-specific requirement.

Environment: IBM OpenPages GRC (5.5, 6.0, 6.2.1), IBM Cognos BI 8/10.2/10.2.1

Confidential, Hartford(CT)

Java Developer

Responsibilities:

• Involved in the requirement analysis, design, and development of the project.
• Done with Client side validations using JavaScript.
• Developed the web layer of P&I using Struts. Used Validator framework of the Struts for client side and server side validation.
• The UI was designed using JSP, templates, JavaScript, CSS, JQuery and JSON.
• Enhanced the FAS system using Struts and iBatis.
• Involved in developing Web Services using Apache XFire & integrated with action mappings.
• Developed Velocity templates for the various user interactive forms that triggers email to alias. Such forms largely reduced the amount of manual work involved and were highly appreciated.
• Used Internalization, Localization's, tiles and tag libraries to accommodate for different locations.
• Used JAXP for parsing &JAXB for binding.
• Involved in writing services to write core logic for business processes.
• Involved in writing database queries, stored procedures, functions etc.
• Deployed EJB Components on Web Logic, Used JDBC API for interaction with Oracle DB.
• Involved in Transformations using XSLT to prepare HTML pages from XML files.
• Enhanced ANT Scripts to build and deploy applications.
• Involved in Unit Testing, code review for the various enhancements.
• Followed coding guide lines while developing workflows.
• Involved in end to end implementation of the application.

Environment: Java 1.4, J2EE (EJB, JSP/Servlets, JDBC, XML), My Eclipse, Web Logic, Struts, iBatis, JavaScript, JQuery, JSON, Apache XFire, EJB, XML, XSD, XSLT, JAXB, JAXP, ANT, SVN.