Soumya Kumar Pal
Singapore
Summary
Highly motivated, experienced, and ambitious professionals with a proven track record of engagement, execution, and leadership, who will bring to bear skills, capabilities, and expertise to deliver significant change transformation to your company. Overall, 21 years of total IT experience with 18+ years of professional expertise as a security practitioner and strong Change Manager Expertise in Identity administration and access governance, including implementation, migration, and application on-boarding; automation of user life cycle management. RBAC, segregation of duties, and access recertification. Proven analytical and strategic thinker to identify issues, threats and other complexities; as well as to make sound recommendation on necessary action. Well versed with software development life cycle methodologies. Outstanding ability in communicating with staff, clients, colleagues and other stakeholders to ensure proper coordination of work processes, while ensuring alignment with established goals and achievements. Open to learn and work on new Information security tools & technologies. Prior experience of working in different geographical locations like UK, Singapore and India in varied roles as Team member, Module Leader, Shift Lead, Senior Business Analyst, Team lead -SME and heading the Change Governance function for UBS TISO division
Overview
22
22
years of professional experience
1
1
Certification
Work History
Global Head – TISO Change Enablement
UBS BANK
Singapore
07.2017 - Current
- Working as the Global Head for Change Governance functions under Technology Info Security Office-Service Engagement team to ensure there is adequate Governance of Change Management systems and constantly challenging how Change & Release Management can be improved as our business and IT models change.
- Establish, maintain, and operationalize the process for Change, Release Management and Deployment Management.
- Adapts design of assigned processes and underlying procedures, tools, and techniques to meet the changing needs of the business.
- Ensure the UAT and production environment are protected by a rigorous Change and Release Management process.
- Ensure standardized process and procedures are used for efficient handling of changes to minimize change related incidents
- Lead the Change and Release Management process activities across various IT functions within the organization.
- Chair the divisional and cross-divisional Change Advisory Boards. Circulate in-scope Requests for Change (RFCs/CMs) to CAB members in advance of meeting to allow prior consideration/review.
- Resolves issues causing sub-standard performance of process(es). Automates process.
- Maintain the CIS Release Calendar that comprises of forward schedule of all changes.
- Manage, coordinate, monitor, and report on change activities.
- Audit and manage the Change and Release Management process improvement cycle.
- Play a key role in collaborating with other IT teams in ensuring the highest level of operational service delivery.
- Consult and coach project teams. Create actionable deliverables in preparation for service transition from project to operations.
- Define and measure success metrics and monitor Change and Release progresses.
- Engagement with auditors and provide evidence as and when required to ensure compliancy with change controls.
- Representation and Presentation of CIS change portfolio in wider CDIO CAB and Governance Forum.
- Lead the change integration between Legacy Credit Suisse and UBS.
Business Analyst
Cognizant Technologies Solutions
Singapore
01.2017 - 07.2017
- Working as the Lead Business Analyst for UBS Agile Automation Program to Reduce manual effort by providing sustainable automation solutions for support tasks across multiple streams in Level 1 & 2 teams.
- Design, develop and implement automation solution for critical business process
- Provide update on current sprint items progress in daily scrum meeting.
- Identify and prioritize top demand automation items.
- Automate regular business reports.
- Interacting with support analyst to understand the day to day Run Book tasks.
- Analyzing feasibility of automation solution, taking solution through the SDLC
- Point of contact for long term maintenance following application changes
- PROJECT – Agile Automation Program
- Client: UBS AG Singapore
Identity and Access Management – Subject Matter Expert
BARCLAYS BANK
Singapore
09.2013 - 12.2016
- Global Information Security (GIS) engages in a range of activities to maintain the confidentiality, integrity and availability of the firm’s information assets and to assist Information Technology deliver secure solutions to the business.
- Assist application teams to on-board application to workflow automation for ensuring smooth provisioning and de-provisioning of resource.
- Extensive coordination, thorough requirement gathering and analysis of application to on-board them into a secured and highly available SSO infrastructure.
- Involved in preparing weekly management decks and project artefacts like Project Charter, Requirement Traceability matrix and Functional test cases and scenarios to ensure 100% requirement traction and testing as per the test protocols.
- Assist L3 & L2 support teams on operational issues and control risk mitigation based on the user incidents
- Single point of escalation for SSO and OIF (Oracle Identity Federation) related issues.
- 2FA, Cryptography
- Troubleshoot and fix application workflow automation failures, configured in OIM.
- Conduct technical risk evaluation and assist in risk mitigation.
- Identity bugs, potential security flaws in the application coming up with new and innovative ways of fixing them.
- Incident and Problem management via ServiceNow.
- Privileged Access Management and Account entitlements.
- 1+ year of work experience with Splunk real-time processing architecture and deployment.
- Working experience with design, configuration, and support of Splunk 6.x
- Extensive usage of Splunk for log monitoring and analysing, investigation, enhanced alert mechanism, dashboard generation etc.
- Process and Procedure, knowledge base maintenance.
- Ad-hoc assignment for clean-up activities post project implementation.
- Conducting user acceptance testing and/ or review needed for the takeover of access administration of new applications/ enhancements
- Working with the application custodians to ensure user administration guide contains the relevant detail and clarity for each managed application.
- Proactive in proposing any architectural or design changes to improve customization of the solution and/or systems.
- Assist and clarify on internal audit and tech risk queries.
- Undertake audit assignments, consolidate audit reports for review by audit management, facilitate finding tracking, and validate closure of findings.
- Compliance to audit, regulatory and GIS Standards requirements
- Reduce key risks around application feeds across the bank, for supporting re-certification process.
- Process improvement activities like workflow automation failure reductions ,incident reduction via review and analysis
Level 2 Tier 2 (Senior Security Analyst)
DELL SERVICES
Singapore
01.2006 - 09.2013
- The IdM team is part of IT Security Risk Management. It provides tools and a high availability infrastructure to enable bank applications to perform user authentication (username and password validation) and authorization (control of user permissions). The IdM team also develops and maintains the bank's Single Sign On (SSO) mechanisms, allowing internal and external users to access a large number of the bank's applications using a single username and password combination.
- Manage the authentication and authorization infrastructure in IDM.
- APAC point of escalation for the team (Jan2009 –June 2013)
- SPOC to External SSO services for UBS Investment Bank.
- Successfully planned and performed the following Isolation Tests: London Isolation Test, Singapore Isolation Test and the Stamford Isolation test.
- Review, plan and implement change requests for Infra-weekend events.
- Performs various implementations for protecting applications/websites via Oracle Single Sign On/CA Siteminder.
- Ensure smooth provisioning between various STDs (Security Technology Domain).
- Review various GCMS (Global Change Management System), which have a global effect on our servers/services and approves/rejects them.
- Has successfully completed the OID upgrade (Version 9.0.4.0 to 9.0.4.3) to our HAS (Hosted Authentication Service) servers in all the environments.
- Implementation of Websso (HAS v3.1) Upgrade.
- Worked on DSAPI Key Rotation.
- Provide various trainings to New Joiners/team members and Service desk.
- Access rights review and user account management.
- PROJECT –Identity and Access Management (Jan 2006 – Sept’2013)
- Client: UBS Investment Bank
Team Member
POLARIS SOFTWARE LAB LTD
Mumbai, India
09.2003 - 01.2006
- Developed and performed the enhancements for Citibank Russia (both for St. Petersburg and Moscow) branches, which comprised of their regulatory requirements along with Flexcube related changes.
- Implemented the Consumer Bank capabilities for Citibank – Russia.
- Developed the validation components of the SWIFT interface that links with Moscow and the St. Petersburg branches.
- Performed the UAT of Citigateway SWIFT including the end to end testing of the full system, validating the reports / handoffs that are generated and making the necessary changes where ever required.
- As I have been directly interacting with the client, I have learnt the various aspects of client interaction, understood client’s requirements and delivering the same within the shortest possible time.
- I have always been able to participate & contribute constructively in finalizing the functional requirements for Citibank
- PROJECT – CITIGATEWAY Russia
- Client: CITIBANK, St Petersburg, Russia
Education
B.Tech - Electrical Engineering
Veer Surendra Sai University of Technology
India05-2003
12th - undefined
C.H.S. E
01.1998
10th - undefined
C.B.S. E
01.1996
Skills
- Friendly, positive attitude
- Teamwork and collaboration
- Customer service
- Problem-solving
- Attention to detail
- Dependable and responsible
- Multitasking
- Critical thinking
- Organizational skills
- Calm under pressure
- Decision-making
Certification
- Professional Scrum Product Owner II (PSPO II)
- Professional Agile Leadership™ (PAL I)
- Mental Health Champion
- ITIL V3 Foundation certificate in IT Service Management (Certificate # 00285186) -2016
- Certificate of Lean Competency(by CARDIFF University) LCS Level 1 -2015
Timeline
Global Head – TISO Change Enablement
UBS BANK
07.2017 - Current
Business Analyst
Cognizant Technologies Solutions
01.2017 - 07.2017
Identity and Access Management – Subject Matter Expert
BARCLAYS BANK
09.2013 - 12.2016
Level 2 Tier 2 (Senior Security Analyst)
DELL SERVICES
01.2006 - 09.2013
Team Member
POLARIS SOFTWARE LAB LTD
09.2003 - 01.2006
12th - undefined
C.H.S. E
10th - undefined
C.B.S. E
B.Tech - Electrical Engineering
Veer Surendra Sai University of Technology
AWARDS, PUBLICATIONS AND PROFESSIONAL AFFILIATIONS
- Awarded ‘Spot Award’ by Dell Services for the month of May’2008 for stretched effort in planning, coordinating and testing the memory upgrade of HAS servers.
- Awarded ‘Pat on the Back’ Award by Dell Services for Q4’2008 for excellent planning, coordinating and executing the Singapore Isolation, Awarded with “Star of the Month” on the 9th month of my employment with Polaris Software., Consistent ‘Exceed Expectation’ Performance rating which is given to top 20% of the organization.
- 29th position in 10+2 (CHSE Board, Orissa) in the state.
- Recipient of National Merit Scholarship., Awarded from CBSE for getting the highest mark in Mathematics in India during my Matriculation(10th Board Exam)
- Selected through an All India Talent Search Test to Polaris Software Lab Ltd.