Vivek

Summary

• Vivek brings over 8 years of corporate experience in Governance, Risk, and Compliance (GRC), with specialized technical and functional expertise in RSA Archer platform.
• Holds certifications as an ISO 27001 Lead Auditor and Lead Implementer, with a strong grasp of frameworks such as GDPR, SOX, HIPAA, COBIT, and NIST.
• Proficient in designing and implementing comprehensive GRC frameworks aligned with organizational objectives and regulatory requirements.
• Conducted risk assessments in financial, operational, and cybersecurity domains; formulated and executed effective risk mitigation strategies.
• Led the development and customization of RSA Archer applications including Advanced Workflows (AWF), access controls, DDEs, notifications, and integration.
• Built and optimized data-feeds and automation in Archer to aggregate risk and compliance data, enhancing efficiency and transparency in decision-making.
• Advised leadership on compliance strategies, including third-party vendor risk review, SaaS/PaaS security evaluation, and GRC alignment with business goals.
• Delivered support for system-wide information security programs, ensuring compliance through audits, training, policy development, and awareness initiatives.
• Participated in the quality assurance lifecycle, testing and deploying GRC solutions across TST, UAT, Pre-Prod, and PROD environments, adhering to ITIL and SDLC processes.
• Worked collaboratively with internal/external audit teams to define audit scopes, conduct compliance reviews, and ensure audit-readiness.
• Managed technical troubleshooting related to Archer services, workflows, data integrations, and user access issues across large-scale environments.
• Recognized for strong communication, stakeholder engagement, and leadership, having successfully led and mentored teams of over 15 professionals.

SKILLS

• Governance, Risk & Compliance (GRC)
• Risk Management
• Audit Management
• Policy and Compliance
• Third-Party Vendor Management
• Troubleshooting functional & technical issues
• Identifying business requirements and developing Archer applications
• Identifying the scope of audits
• Analyzing security incidents/requests
• Debugging issues as well as performing upgrades on the server side of the GRC platform
• Helping organizations strengthen their GRC capabilities.

CERTIFICATION

related courses

RSA Archer Training Course