JIGNESH BORAD
Brampton,ON
Summary
Driven Senior Consultant with 12+ years' experience in the Identify Access Management consulting field. Adept in collaborative problem solving, risk management and creative solutions. Passionate about bringing changes in businesses. Proficient in conducting primary and secondary research. Reliable business professional with experience in project management, process improvement and financial analysis. Proven track record of successfully streamlining business operations and reducing costs. Adept at analyzing data to identify trends and developing strategies to improve efficiency. Detail-oriented team player with strong organizational skills. Ability to handle multiple projects simultaneously with a high degree of accuracy. Organized and dependable candidate successful at managing multiple priorities with a positive attitude. Willingness to take on added responsibilities to meet team goals.
Overview
12
12
years of professional experience
1
1
Language
Work History
SR. COUNSLTANT
Bell Canada
10.2022 - 07.2023
- Implementing Delinea (PAM) solution to across Bell's assets including network devices
- Working with corporate security and Information Security teams to designing, documenting, and implementing enhancements of PAM strategy and roadmaps based on IAM/PAM compliance
- Identifying IAM gaps and creating mitigation plan
- Leading team of 10 members to meet all the project deadlines
- Working with all stakeholders and senior management to demonstrate functionality and capabilities of PAM solution as well as important of new age access management
- Implementing privileged access workflows and policy enforcement controls for internal users and Vendor
- Creating solutions for complex use cases based to improve control of privileged account
- Working with teams to integrate various platforms, such as Windows, UNIX, Databases, networking devices, OpenShift cluster on PAM solution
- Gathering all required information and documents to process escalation to Delinea when needed
- Build and implement certificate management controls following best practices and aligned with governance controls
- Working with Delinea to supporting ongoing operational enhancements and bug fixes related to IAM systems
- Creating process to onboarding Individual account, Service account and functional accounts
- Review all individual account permissions on all platforms to create shared support accounts for each team
- Worked on SailPoint project to integrate local applications with SailPoint solution
- Creating PowerShell scripts for bulk account upload also worked on SQL script for reports
- Monitoring account activities in soft launch phase and responding to any issue teams are facing
- Leading weekly team meetings to monitor progress and helping team members with any roadblocks
- Privilege account attestation and remediation of unwanted access across all servers
- Evaluated clients' needs and created a plan of action to provide adequate solutions
- Prioritized projects and project tasks depending upon key milestones and deadline dates
- Monitored and managed staff performance to attain target metrics both individually and team unit
- Exceeded customer requirements with accurate and deliverable solutions
- Streamlined key process for entire department by implementing method to improve efficiency
- Identified business issues through careful collaboration with key stakeholders
- Monitored technology use and program functionality, updating programs, and making changes to enhance output
- Working with HashiCorp team to build onboarding scope and process for machine-to-machine accounts
- Created solution requirement document based on Business requirement
- Developed custom solutions based upon clients' strict requirements
- Documented and presented project scopes to employees and executives, proposing timelines, budgets, and specifications
- Analyzed problematic areas to provide recommendations and solutions.
- Streamlined project management processes, improving efficiency and reducing overall costs.
- Evaluated existing business processes, recommending improvements that led to increased operational efficiency.
SR CONSULTANT, GRC
TD Bank
09.2019 - 03.2020
- Leveraged extensive industry knowledge to provide valuable insights into emerging trends impacting client businesses.
- Delivered high-quality solutions for clients through comprehensive research and analysis of industry trends.
- Built strong relationships with clients through consistent communication and proactive problem-solving efforts.
- Presented findings and recommendations to executive-level stakeholders, effectively communicating key insights and action plans.
- Managing critical and high-risk control gaps and audit issue lifecycle through GRC Archer
- Provide support and guidance using GRC Archer to Business owners, technology asset owners and executives with Creating Dashboards, iView, and configured Workspace.
- Work collaboratively with TRMIS, ITS and with other key stakeholders including technology leads, owners and executives on activities targeting management and resolution of critical and High business risks associated with technology across enterprise.
- Served as key liaison and contact for stakeholder groups including ITS, audit and BTRM groups supporting risk treatment across the lines of businesses.
- Knowledge in information security, risk management, information technologies, IT operations, control testing and/or compliance
- Monitor and track critical and high-risk control gaps remediation progress to ensure pre-defined timelines and risk mitigation has been addressed appropriately.
- Provide risk mitigation and compensating control recommendations, assist with technology owners, and help mitigate technology risk to lower residual risk.
- Track risks in GRC Archer identified through risk assessment results, outstanding audit/regulatory findings, this includes reporting on high risks control gaps and potential remediation plans.
- Reviewing books and records to ensure adherence to requirements.
- Gathering technical requirements to mitigate risk.
- Creating strategic plan based on risk acceptance or risk remediation with help of LOBs.
- Creating detailed technical requirement document based on risk remediation plan.
- Prepare and issue reports outlining risk and compliance findings.
SR. COUNSLTANT
CIBC
04.2014 - 05.2018
- Implemented CyberArk Privileged Identity Management (PIM) for multiple Operating Systems and Database platforms by utilizing capabilities of CyberArk Enterprise Vault (EPV) and Privileged Session Manager (PSM)
- Building modernized Identity and Access Management (IAM) capabilities using standardized frameworks
- Served as SME in discovery of privileged accounts across multiple platforms, defining scope and preparing end-to-end plan for privileged identity management solution (PIM) rollout
- Build and implement certificate management controls following best practices and aligned with governance controls
- Worked with Developer, Ops Teams, and Business partners to enhance overall technology strategy and to achieve business aligned business objectives
- Proactively managing and escalating major risks, issues, and dependencies affecting multiple workforce
- Specifying requirements (business, functional, and technical) to technical leads and designers
- Providing CyberArk training/demo session to users explaining features and capabilities of tool and addressing their concerns regarding session management and password management of privileged accounts
- Assessed IAM practices followed by bank to manage their privileged accounts by interviewing stakeholders from multiple lines of business and performed gap analysis between current and desired future state
- Lead team of business analysts for gathering information of privileged accounts and their usage
- Help accessing use case for Active Directory, Linux, UNIX, and database access
- Work on larger excel file to make data readable
- Served as SME for requirements gathering, privileged ID management processes and documentation
- Dealt with some of most demanding and sensitive lines of business-like Capital Markets and onboard those ID to use CyberArk solution for their privileged account's passwords management
- Analyzing complex privileged accounts use cases across bank and creating access remediation plans to implement and standardize access controls and monitoring by liaising with bank's internal Information Security Advisors
- Specifying requirements (business, functional, and technical) to technical leads and designers, establishing key success metrics, and measuring progress against program goals
- Formulating data and services models to implement around authoritative data sources such as entitlement repositories, credential stores, application inventory, HR data sources and risk management data stores
- Creating strategic plan on how to implement PAM solution with phased approach for complex use cases
- Communicating and providing guidance as SME on CyberArk privileged access management to varied audience ranging from users and support teams to managers and directors.
SR. CONSULTANT, IAM/PAM
Deloitte
04.2014 - 05.2018
- Worked with the business to understand and document business requirements for onboarding systems and applications into CyberArk.
- Worked on Oracle Identity and Access Management Suite project for implementing new policies and processes.
- Making sure all security processes and procedures are followed as documented.
- Coordinated technical/operational team meetings and tracked all action items until end.
- Leading and actively participating in the deployment, installation, and configuration of CyberArk.
- Participated in internal and external audits on all required operational evidence for auditors.
- Worked with clients to Design a strategy for PAM processes and reside risk of unauthorized access.
- Worked with clients to lead PAM onboarding processes for certify.
- Worked on multiple teams for DPL project to develop processes and documents
- Escalating issues on timely manner based on risk associated with it
- Monitoring and reporting based on SLAs with an emphasis on quality and accuracy
- Reviewing security-related events, assessing risk and vulnerability, and update client with findings
- Worked with third-party assessments and audits teams
- Documented technical requirements for solution designed based on client's business requirements
- Developed / Recommend access management processes based on the clients existing risk appetite
- Created PowerShell scripts for reports and bulk activities
- Documented evidence collected for ongoing investigation for security issues
- Worked with teams to exceed our client's expectations while identifying and mitigating business risks associated
- Part of the vigilant team for emerging security threats to proactively monitor the client's access provisioning process
- Communicated between client and team to get the most out of the day-to-day activities
- Performed assignment on User Access Process in an organized, timely and auditable manner
- Implementing innovative or improved methods to get the work done with best practices
- Solved compliance Issues generated from Health Checks and User ID revalidation
- Engaged with the client team to create processes for an access request, provisioning, and revalidation
- Advising and recommending a defensive strategy based on the clients’ existing security controls
- Part of the team who design and implement base and privileged access management processes and controls
- Managing day-to-day interactions with clients and the internal team
- Worked with clients to maintain and adhere to compliance with PCI DSS by implementing appropriate controls on security policies, procedures, and networking infrastructure.
- Assisted clients in navigating complex industry challenges, offering expert guidance and strategic recommendations.
- Established trusted partnerships with key industry influencers, expanding the company''s network of resources and contacts.
BUSINESS ANALYST
IBM Canada
07.2011 - 03.2014
- Worked as a team member to design and implement IAM solutions for various clients
- Helping client create and establish processes and procedures for user life cycle management and access management
- Also worked on regularly improving existing process and internal controls on access management
- Providing Base and Privileged Access to IBM users and client on multiple platforms such as Active Directory/LDAP, AS400, UNIX/Linux/ESX, Mainframe, HMC and TPF as per the IBM Security Policies
- Access Management tools such as ITIM Vault (Shared IDs), Trinity, and GIAMA (Global Identity and Access Management Automation
- Worked as a team lead on an interim basis for implementing changes in the existing project
- Managing regular upgrades and updates for the tools and technology under support
- Working with the client to produce reports related to access management for internal and external audits and compliance related queries
- Thorough understanding and experience in Active Directory, LDAP, Leading IAM tools and access management internal controls frameworks
- Successfully delivered several internal and on-site training courses on various areas such as Access Management and IAM.
Education
Google Data Analytics Professional Certificate -
Google
Certified in The Governance of Enterprise IT - undefined
ISACA
Certified in Risk And Information Systems Control (CRISC) - undefined
ISACA
CyberArk Trustee Certified - undefined
CyberArk
Cisco Certified Network Associate – CCNA - undefined
Cisco
Automotive Technical Studies
The Automobile Engineering College
Vadodara, Gujarat, India06.2005
Skills
Strong communication skills, both verbal and writtenundefined
Timeline
SR. COUNSLTANT
Bell Canada
10.2022 - 07.2023
SR CONSULTANT, GRC
TD Bank
09.2019 - 03.2020
SR. COUNSLTANT
CIBC
04.2014 - 05.2018
SR. CONSULTANT, IAM/PAM
Deloitte
04.2014 - 05.2018
BUSINESS ANALYST
IBM Canada
07.2011 - 03.2014
Google Data Analytics Professional Certificate -
Google
Certified in The Governance of Enterprise IT - undefined
ISACA
Certified in Risk And Information Systems Control (CRISC) - undefined
ISACA
CyberArk Trustee Certified - undefined
CyberArk
Cisco Certified Network Associate – CCNA - undefined
Cisco
Automotive Technical Studies
The Automobile Engineering College
Similar Profiles
Andrée DaoustAndrée Daoust
Adjointe approvisionnement at Bell CanadaAdjointe approvisionnement at Bell Canada
Lauryn GardnerLauryn Gardner
Field Technician - Summer Student at Bell CanadaField Technician - Summer Student at Bell Canada
Lauryn GardnerLauryn Gardner
Field Technician - Summer Student at Bell CanadaField Technician - Summer Student at Bell Canada
Mukti JoshiMukti Joshi
Sales & marketing coordinator at Bell CanadaSales & marketing coordinator at Bell Canada
Upneet LubanaUpneet Lubana
Senior Fund Administrator, Hedge Funds at SS&C Technologies. IncSenior Fund Administrator, Hedge Funds at SS&C Technologies. Inc