$$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Expert
{{ $t($store.state.user.experience_search_name) }}
0
jobs
BA with Identity and Access Management experience
Ms Dayamowtee S Ramkissoon
,
Palmers Green, London, United Kingdom
Experience
Other titles
Skills
I'm offering
A strong, results-orientated contributor with excellent experience of managing teams at Local, Regional and Global level with leading financial institutions since 2000. Significant operational knowledge and experience within Help Desk/ Service Centre and Identity and Systems Access Management areas including the managing and enhancing of internal compliance and governance to address both internal policies and external industry regulatory legislation eg. SOx and CoBIT, ISO 27000 toolkit. Experienced in the successful planning and execution of offshoring operational teams and processes. Maintains a strong focus on staff development, approachable leadership and coaching.
Markets
United Kingdom
Language
English
Fluently
Ready for
Larger project
Full time contractor
Available
My experience
2019 - 2020
job
CyberSecurity Technology - Business Analyst
HSBC Bank Plc.
(45055710)
Review and remediate 1700 Third Party/ Vendor Hosted external websites holding Highly Restricted/ Restricted data, ensure that DLP and relevant controls such as 2FA, IP Whitelisting, JML, Recertification and other control enhancements are suggested and implemented by respective vendors or Risk Acceptance adopted. Improve supporting inventories by introducing Unique identifiers, consistent naming conventions across Vendor management, Procurement, Finance and Technology systems.
March 2019- April 2019 Between contracts due to employment and security checks
Review and remediate 1700 Third Party/ Vendor Hosted external websites holding Highly Restricted/ Restricted data, ensure that DLP and relevant controls such as 2FA, IP Whitelisting, JML, Recertification and other control enhancements are suggested and implemented by respective vendors or Risk Acceptance adopted. Improve supporting inventories by introducing Unique identifiers, consistent naming conventions across Vendor management, Procurement, Finance and Technology systems.
March 2019- April 2019 Between contracts due to employment and security checks
Websites, Contracts, Procurement, Management, Finance, Technology, Security, Vendor Management, Analyst, Naming, Contracts
2018 - 2019
job
LAM Business Analyst-IB Payments Access Remediation
Barclays Capital Investments.
(H04965159)
Support the IB Programme Manager in the execution and delivery of the PAR -Payments Access Remediation programme. Responsible for ensuring all aspects of project methodology and governance are followed as per the centrally defined standards and principles. The programme required a review of all payments categorized applications in-scope for IB and reduce the payments access and functions to least privileged means, remove/ modify profiles and remove access from non- permanent employees. Work with the relevant Application, vendor and Tech teams to reduce payments access. Remediate Privileged infrastructure accounts to update ISAC tool. Assist with the review of Application Violation reviews for both personal/ non-personal accounts where volumes are high and no owners are available.
Support the IB Programme Manager in the execution and delivery of the PAR -Payments Access Remediation programme. Responsible for ensuring all aspects of project methodology and governance are followed as per the centrally defined standards and principles. The programme required a review of all payments categorized applications in-scope for IB and reduce the payments access and functions to least privileged means, remove/ modify profiles and remove access from non- permanent employees. Work with the relevant Application, vendor and Tech teams to reduce payments access. Remediate Privileged infrastructure accounts to update ISAC tool. Assist with the review of Application Violation reviews for both personal/ non-personal accounts where volumes are high and no owners are available.
Support, Infrastructure, Analyst, Manager
2018 - 2018
freelance
Contractor
CPM/ PSM.
Cyber Risk Remediation of Static account password management for Audit requirement (CPM/ PSM). Improve control state through Technical Remediation, Logging and/or Monitoring tools, Policy Change, Decommission etc. working with the Business and Infrastructure teams to verify and secure the position of these accounts.
Supporting the delivery of the programme and project plans - setting out activities, milestones and production of clear and accurate Trackers that allow the Project/ Programme Managers to provide the Statics Management Team with the necessary data and MI to make decisions across the whole of the programme.
Analysing and interpreting projects data and metrics and Key Performance Indicators (KPI), including cost / budgeting data and Change control data, to create insight for effective programme management.
Performing schedule variance analysis and cost variance analysis, and implementing corrective action
Monitoring adherence to programme governance framework to ensure project management processes, planning standards and reporting processes are at required levels.
Supported and coordinated creation of project plans with Project Managers by agreeing timescales and resources required for stages of development and implementation.
Building effective relationships with stakeholders at all levels to ensure smooth project deliverables
Maintain programme RAID log.
Continuous improvement using previous experience to add value in creating templates and tools that can benefit the programme
March to Aug 2017 - Remediation and Management of ongoing CyberArk CPM failures to ensure a clear platform for the removal of the PSM Show/ Copy functionality in CyberArk once required plug-ins are tested and available for direct Connect server access. Working closely with relevant Infrastructure and Identity and Access Management teams, including Privileged Access to manage the errors and develop a robust process for BAU handling.
Jan 2017 - Mar 2017 Between contracts due to job search, employment and security checks
Supporting the delivery of the programme and project plans - setting out activities, milestones and production of clear and accurate Trackers that allow the Project/ Programme Managers to provide the Statics Management Team with the necessary data and MI to make decisions across the whole of the programme.
Analysing and interpreting projects data and metrics and Key Performance Indicators (KPI), including cost / budgeting data and Change control data, to create insight for effective programme management.
Performing schedule variance analysis and cost variance analysis, and implementing corrective action
Monitoring adherence to programme governance framework to ensure project management processes, planning standards and reporting processes are at required levels.
Supported and coordinated creation of project plans with Project Managers by agreeing timescales and resources required for stages of development and implementation.
Building effective relationships with stakeholders at all levels to ensure smooth project deliverables
Maintain programme RAID log.
Continuous improvement using previous experience to add value in creating templates and tools that can benefit the programme
March to Aug 2017 - Remediation and Management of ongoing CyberArk CPM failures to ensure a clear platform for the removal of the PSM Show/ Copy functionality in CyberArk once required plug-ins are tested and available for direct Connect server access. Working closely with relevant Infrastructure and Identity and Access Management teams, including Privileged Access to manage the errors and develop a robust process for BAU handling.
Jan 2017 - Mar 2017 Between contracts due to job search, employment and security checks
KPI, Processes, Contracts, Access management, Framework, Performing, Audit, Production, Search, Server, Project Management, Development, Monitoring, Infrastructure, Implementation, Security, Management, Continuous improvement, Audit, Contracts
2017 - 2018
job
CyberArk Business Analyst
Lloyds Banking Group.
Analyst
2014 - 2016
job
GAMA Business Analyst
Deutsche Bank.
Contractor - Effective access management is critical to all Deutsche Bank businesses. To meet audit and regulatory requirements, all business areas must review the levels of access granted to their applications, and ensure that this access is granted on a need to know basis and regularly recertified. The GAMA Task Force Identity and Access management analyst provides assistance to business managers to identify and remediate access issues and control gaps in line with Deutsche Bank Information Security policy.
- Review of Identity and access management issues in selected applications
- Review of roles, privileges and entitlements within applications
- Review of Segregation of Duties issues within applications
- Production of monthly senior stakeholder briefing decks
- Ensuring timely delivery of quality communications
- Maintenance of programme master documents and library
- Review of Identity and access management issues in selected applications
- Review of roles, privileges and entitlements within applications
- Review of Segregation of Duties issues within applications
- Production of monthly senior stakeholder briefing decks
- Ensuring timely delivery of quality communications
- Maintenance of programme master documents and library
Audit, Information Security, Management, Security, Analyst, Regulatory, Production, Audit, Access management
2013 - 2014
freelance
Contractor - Access Controls Manager, Maternity Cover
Standard Bank of South Africa CIB.
South African Investment Bank - Logical / Identity Access Management (LAM) Team reporting to Senior Management and business stakeholders. Main responsibilities include Application Business Analysis, Maintain BAU controls as per the Banks Identity and User access policy and to meet legal and regulatory requirements, Application On-Boarding and Re-Certification and User Access and Infrastructure in compliance with SOX 404 / ISO27001 standards. To contribute to and enhance the accuracy and efficiency of data returns distributed to the business. Key achievements:
* Project Management
− Liaise with Business and Technology at Standard Bank of South Africa Investment and Corporate Banking
− Contact Point for Business and Technology Teams for LAM and User/ System Access Reviews
* Business Analysis
− LAM Application assessment and On boarding of various Standard Bank Business applications eg: Crest, Swift, Flexcube, Murex etc to ensure that applications meet the required control standards and any mitigating circumstances have effective compensating controls as well as managed timelines in place and ownership for resolution.
− Data Reconciliation between Application and CA Identity Access Management System (Excel / Access)
− Application User / Access Data Cleansing and Formatting
− Application On-boarding and Re-Certification Process Documentation
− Documenting detailed System Access Control / Role Base Access Control workflows, Functional / Non Specification, conducting workshops, meetings with sponsors, stakeholders, SMEs, business owners / users and role simulations with Support teams.
− Facilitate and manage the remediation of controls items raised via UAM Re-Certification/ Entitlement Reviews, BAU Provisioning, HPA reviews via the introduction of agreed mitigating controls, removal of access, Role Profiling etc. Work closely with the Business SME's, Audit - Internal/ External, Tech Risk, Infrastructure and Applications teams to work on future proof methods to make the controls more effective and minimise gaps. Contribute to quarterly Access Management Group meetings which then document and evidence actions to be taken forward for improvement.
* Security
− User and Application Re-Certification reviews to comply with SOX 404 / ISO27001 requirements
− Application Security Audit Management
− Present Logical Access Management Re-Certification Training
− Project Managing of Front, Middle and Back Office User Entitlement and High Privilege Access Review in compliance to Bank Policy and ISO27001
− Perform bi-annual HPA/ Infrastructure review process
− Manage the LAM requirements for segregation of applications due to 60% buy-out with ICBC
− Conduct and facilitate Business Role and Permission Profiling for Intl. applications for annual review and signoff
− Work with the Business and related parties to ensure that Risk, Control and Security assessments are reviewed, updated/ resolved and submitted in adequate time and all changes are documented, agreed and signed off.
− To ensure that 60,000 user accounts across 60+ SOx/ Business Critical applications servicing Corporate and Investment Banking applications are effectively managed to correct account holder within 50 days or apply revocation of access and build relationships with the various key stakeholders to improve BAU operations, including the promotion and education of IS best practice.
− Manage the complete Segregation of Duty/ Toxic Combinations process and workflow
− Work with Internal and External auditors to ensure that controls are accurately tested against policy and legislation. Where gaps are identified, circumstances are recorded and risk assessments are reviewed regularly within the agreed timelines.
− Providing monthly management reports.
* Project Management
− Liaise with Business and Technology at Standard Bank of South Africa Investment and Corporate Banking
− Contact Point for Business and Technology Teams for LAM and User/ System Access Reviews
* Business Analysis
− LAM Application assessment and On boarding of various Standard Bank Business applications eg: Crest, Swift, Flexcube, Murex etc to ensure that applications meet the required control standards and any mitigating circumstances have effective compensating controls as well as managed timelines in place and ownership for resolution.
− Data Reconciliation between Application and CA Identity Access Management System (Excel / Access)
− Application User / Access Data Cleansing and Formatting
− Application On-boarding and Re-Certification Process Documentation
− Documenting detailed System Access Control / Role Base Access Control workflows, Functional / Non Specification, conducting workshops, meetings with sponsors, stakeholders, SMEs, business owners / users and role simulations with Support teams.
− Facilitate and manage the remediation of controls items raised via UAM Re-Certification/ Entitlement Reviews, BAU Provisioning, HPA reviews via the introduction of agreed mitigating controls, removal of access, Role Profiling etc. Work closely with the Business SME's, Audit - Internal/ External, Tech Risk, Infrastructure and Applications teams to work on future proof methods to make the controls more effective and minimise gaps. Contribute to quarterly Access Management Group meetings which then document and evidence actions to be taken forward for improvement.
* Security
− User and Application Re-Certification reviews to comply with SOX 404 / ISO27001 requirements
− Application Security Audit Management
− Present Logical Access Management Re-Certification Training
− Project Managing of Front, Middle and Back Office User Entitlement and High Privilege Access Review in compliance to Bank Policy and ISO27001
− Perform bi-annual HPA/ Infrastructure review process
− Manage the LAM requirements for segregation of applications due to 60% buy-out with ICBC
− Conduct and facilitate Business Role and Permission Profiling for Intl. applications for annual review and signoff
− Work with the Business and related parties to ensure that Risk, Control and Security assessments are reviewed, updated/ resolved and submitted in adequate time and all changes are documented, agreed and signed off.
− To ensure that 60,000 user accounts across 60+ SOx/ Business Critical applications servicing Corporate and Investment Banking applications are effectively managed to correct account holder within 50 days or apply revocation of access and build relationships with the various key stakeholders to improve BAU operations, including the promotion and education of IS best practice.
− Manage the complete Segregation of Duty/ Toxic Combinations process and workflow
− Work with Internal and External auditors to ensure that controls are accurately tested against policy and legislation. Where gaps are identified, circumstances are recorded and risk assessments are reviewed regularly within the agreed timelines.
− Providing monthly management reports.
Workshops, Manager, Access management, Audit, BEE, Assessment, Office, Regulatory, Infrastructure, Support, ISO27001, Workflow, Excel, Banking, Security, Compliance, Technology, Management, Audit, Training, Operations, Swift, Business Analysis, Project Management
2010 - 2013
job
LAM Business Analyst
Barclays Corporate and Retail Bank.
UK Retail Bank - Logical Access Management (LAM) Team reporting to Senior Management and business stakeholders. Main responsibilities include Application Business Analysis, Maintain BAU controls as per the Banks IAM/ Identity and User access policy and to meet legal and regulatory requirements, Application On-Boarding and Re-Certification in compliance with SOX 404 / ISO27001 standards. To contribute to and enhance the accuracy and efficiency of data returns distributed to the business.
Business Analysis, Retail, Management, Compliance, ISO27001, Analyst, Regulatory, Access management
2009 - 2010
job
Unemployed
Unemployed.
Achievements:
• Passed NVQ in IT Skills Level 2 with Distinction, Aug 2009
• Qualified as a Freelance Legal Clerk, Jul 2009
• Worked part-time for FMCG merchandising/ auditing campaigns on behalf of Tesco, ASDA, Universal, WHSmith etc Apr 2009 - Aug 2009
• Passed NVQ in IT Skills Level 2 with Distinction, Aug 2009
• Qualified as a Freelance Legal Clerk, Jul 2009
• Worked part-time for FMCG merchandising/ auditing campaigns on behalf of Tesco, ASDA, Universal, WHSmith etc Apr 2009 - Aug 2009
It, FMCG
2007 - 2008
freelance
Contractor
Royal Bank of Scotland.
Systems Access Management Team Operations Manager
Achievements:
• Directs the daily operational activities of the SAM - Systems Access Management team - IAM, incorporating leadership globally to Asia and GCM SAM functions. Approx. 5000 requests processed per week with a current headcount of 21, growing to 43 FTE by Nov 08 with the integration on ABN AMRO SAM operations being in-sourced to RBS.
• Ensure the business area (GBM - Global Banking and Markets, Infrastructure Services & Control) conducts its activity in accordance with all relevant external regulators and RBS CM policies.
• Ensure compliance with the regulatory and statutory requirements and RBS CM compliance policies and procedures affecting the business area. Report any breaches of regulations to Legal and Compliance.
• Ensure the business unit (GBM IS&C) operates in accordance with stipulated risk management policies and procedures, covering market risk, credit risk and operational risk. Ensure failures and shortcomings in policies and procedures are reported.
Achievements:
• Directs the daily operational activities of the SAM - Systems Access Management team - IAM, incorporating leadership globally to Asia and GCM SAM functions. Approx. 5000 requests processed per week with a current headcount of 21, growing to 43 FTE by Nov 08 with the integration on ABN AMRO SAM operations being in-sourced to RBS.
• Ensure the business area (GBM - Global Banking and Markets, Infrastructure Services & Control) conducts its activity in accordance with all relevant external regulators and RBS CM policies.
• Ensure compliance with the regulatory and statutory requirements and RBS CM compliance policies and procedures affecting the business area. Report any breaches of regulations to Legal and Compliance.
• Ensure the business unit (GBM IS&C) operates in accordance with stipulated risk management policies and procedures, covering market risk, credit risk and operational risk. Ensure failures and shortcomings in policies and procedures are reported.
Operations, C, Risk Management, Leadership, Operations manager, Integration, Management, Compliance, Banking, Infrastructure, Regulatory, Market Risk, Access management, Asia, Manager
2007 - 2007
freelance
Contractor
Virgin Media.
Getronics/KPN SDM - Service Delivery Manager
Achievements:
• Short-term contract to provide interim SDM management at customer site.
• Produce monthly/ quarterly performance MIS, for discussion with Getronics technical leads/ Relationship manager and Sit-Up managers.
Achievements:
• Short-term contract to provide interim SDM management at customer site.
• Produce monthly/ quarterly performance MIS, for discussion with Getronics technical leads/ Relationship manager and Sit-Up managers.
Management, Service, Service Delivery Manager, Interim, UP, Manager, Service Delivery
2000 - 2007
job
Regional Information Security Administration Operations Manager (EMEA) (Vice President)
Citigroup.
Achievements:
• Played a major role in the successful Outsourcing of IAM/ ISA services from London and Barcelona to Budapest Center of Excellence (CoE) and the closure of London Operations Department
• Coordinated and managed the integration of new/ business aligned applications and services into ISA via evaluation and risk acceptance.
• Created the ISA Service/ Operating Level Agreement documentation for Business acceptance/ implementation and monitor SLA delivery through regular client reviews.
• Contributed to the process and functional development of the new ISA request tool - VSR (Virtual Security Request)
• Department Business Continuity/ Disaster Recovery co-ordinator.
• Functionally manage and lead a remote team of 6 local Operations managers within the Security Administration department, who co-ordinate and manage the administration of access to over 150 applications and 7 Operating systems
• Achieved Satisfactory Audit rating and Fully Effective quarterly controls review inc. quarterly/ annual preparations for control and process assessment, audit submissions, contract management ie. personnel, s/w & h/w suppliers (internal and external), risk assessments.
• Played a major role in the successful Outsourcing of IAM/ ISA services from London and Barcelona to Budapest Center of Excellence (CoE) and the closure of London Operations Department
• Coordinated and managed the integration of new/ business aligned applications and services into ISA via evaluation and risk acceptance.
• Created the ISA Service/ Operating Level Agreement documentation for Business acceptance/ implementation and monitor SLA delivery through regular client reviews.
• Contributed to the process and functional development of the new ISA request tool - VSR (Virtual Security Request)
• Department Business Continuity/ Disaster Recovery co-ordinator.
• Functionally manage and lead a remote team of 6 local Operations managers within the Security Administration department, who co-ordinate and manage the administration of access to over 150 applications and 7 Operating systems
• Achieved Satisfactory Audit rating and Fully Effective quarterly controls review inc. quarterly/ annual preparations for control and process assessment, audit submissions, contract management ie. personnel, s/w & h/w suppliers (internal and external), risk assessments.
Service, President, Manager, Audit, Assessment, Development, Implementation, Outsourcing, Security, Administration, Contract management, Management, Integration, Operations manager, Information Security, Audit, Operations
Ms' reviews
Ms has not received any reviews on Worksome.
Contact Ms Dayamowtee S Ramkissoon
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Ms directly in Worksome.
37900+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark