Raju Raghavan

Delivered multi-bank data migration and divestiture projects, ensuring regulatory compliance and risk mitigation (UOBM, UOBTH, UBP, AXIS)

• Process and Project aligned to Enterprise Project Management through systematic planning and approvals driving diverse workstream team by establishing clear expectations and accountabilities from workstream leads.
• Led ITSM processes using ServiceNow for seamless incident and change management during migration.
• Drive the project across its full lifecycle, covering planning, infrastructure design, build, cutover, and post-migration stabilization, in compliance with the bank’s regulatory, security, and risk management frameworks.
• Developed detailed data maps and risk assessments, collaborating with GRC teams to safeguard project delivery.
• Managed third-party vendors and maintained risk registers to monitor and close potential risks proactively.
• ServiceNow Process for Change Management (3 years)
• GRC experience for multiple markets with Buyer Bank, PCI-DSS Card related Data Migration
• Strong business partnering skills with individuals across the organization

• Directed cybersecurity modernization for multiple government data center implementing CIS Hardening.
• Led team of professional in roll-out of DLP solution for Singapore Health care.
• Implemented CrowdStrike EDR Platform for SGX.
• Pre-sales experience during sales closure collaborating closely team to develop RFP/RFI and scope for proposed solutions.
• Monitor and analyse implementation of each infrastructure project. Recommend re-prioritisation based on sensitivity, urgency, priority, and type of projects (e.g. compliance/regulatory) and approval requirement.
• Managed external penetration testing programs, delivering actionable vulnerability remediation insights for LTA Projects.
• Led SIEM (QRadar) and SOAR use case development, automating threat detection and response processes.
• Coordinated supply chain and vendor management to ensure project milestones and compliance.
• Assist in tendering process for project proposals or CRs working with Customer Engagement team/resource managers to validate scope and estimates as well as reviewing each proposal with customers.

• Managed vulnerability and penetration testing across 13 hospitals, ensuring HIPAA and ISO 27001 compliance.
• Embedded risk management frameworks and streamlined ITSM incident resolution via ServiceNow.
• Maintained risk registers and vendor relationships to mitigate project risks effectively.

• As a Scrum Team member, I spearheaded the development of a Point-of-Sale (POS) Retail System using .NET and MySQL, delivering an efficient and scalable solution for retail environments.
• Led a team of Security and Architecture SMEs to define and implement a secure-by-design strategy for the POS system, ensuring the protection of sensitive payment and customer data.
• Championed the integration of security tools and methodologies, guiding the team in adopting SAST within the CI/CD pipeline and enforcing OWASP secure coding standards to minimize vulnerabilities.
• Directed the design of critical security controls for authentication, authorization, and data encryption, leveraging SME expertise to ensure robust and compliant implementations.
• Led Agile development of a scalable POS system using .NET and MySQL, driving product quality via TDD and continuous stakeholder engagement.
• Actively contributed to the end-to-end product development lifecycle, from Sprint 0 through the Version 4 release, ensuring high-quality deliverables through Test-Driven Development (TDD) and active participation in testing and QA phases.
• Collaborated with Product Owners and stakeholders to gather feedback, refine product features, and adjust Sprint priorities, ensuring the POS system aligned with customer needs and business goals.
• Spearheaded the risk assessment process for all major features, analyzing potential security vulnerabilities, data privacy concerns, and operational failures before development commenced.
• Translated technical debt and security vulnerabilities into business-risk language, clearly articulating the likelihood and financial impact to secure resources for mitigation efforts.
• Implemented a risk-based testing strategy, prioritizing QA efforts on the most critical and high-risk areas of the POS application to safeguard business continuity.