Vikram D.

My Role: Global Privacy SMR (Subject Matter Resource)
The Team: Enterprise Privacy, IT Risk and Compliance
Sector: Advanced Manufacturing and Metals (AMM)
My Responsibilities: I led a team of IT, Risk, Business and Tech Consulting professionals to review, conduct and provide data privacy subject matter expertise for my clients PIAs globally to include The Americas, LAC, EMEA and APAC. My team and I work with privacy leaders and legal counsels across each of the regions, to mitigate… Show more

My Role: Global Privacy SMR (Subject Matter Resource)
The Team: Enterprise Privacy, IT Risk and Compliance
Sector: Advanced Manufacturing and Metals (AMM)
My Responsibilities: I led a team of IT, Risk, Business and Tech Consulting professionals to review, conduct and provide data privacy subject matter expertise for my clients PIAs globally to include The Americas, LAC, EMEA and APAC. My team and I work with privacy leaders and legal counsels across each of the regions, to mitigate risk and ensure completeness of PIAs across new product development, projects, tooling and programs.
Show less

My Role: Global Privacy SMR (Subject Matter Resource)
The Team: Enterprise Privacy.
Sector: Sports, Entertainment, Media and Telecommunications.
My Responsibilities: I conducted privacy reviews of applications with business and application owners to assess privacy risk and provide data privacy subject matter expertise for my clients PIAs globally to include The Americas, Canada and EMEA. My team and I work with privacy leaders and legal counsels across each of the regions, to mitigate… Show more

My Role: Global Privacy SMR (Subject Matter Resource)
The Team: Enterprise Privacy.
Sector: Sports, Entertainment, Media and Telecommunications.
My Responsibilities: I conducted privacy reviews of applications with business and application owners to assess privacy risk and provide data privacy subject matter expertise for my clients PIAs globally to include The Americas, Canada and EMEA. My team and I work with privacy leaders and legal counsels across each of the regions, to mitigate risk and ensure completeness of PIAs across the chosen application portfolio. Show less

Developed a compelling proposal, statement of work which led to leading an Enterprise team to execute a Key Management Risk Assessment for a Fortune 500 Financial Services client. (EY Subject Matter Expert and Delivery Leader)

Content Review Team:

We want to extend our gratitude to the following individuals who have contributed their valuable knowledge and insights to this course:

Britney Beck, Hi-Wire HR Consulting Group
Ira Greenberg, Southern Methodist University
James "Jay" Coquat, PeopleTec, Inc
Michael "Mike" Vella, Entrepreneur
Michelle Licata, 2U
Price Burlington, The Spartan Group
Dr. Sarit Levy, Zschool
Selen Turner, Cordis
Valeria Cummings Swope, Department of Economic… Show more

Content Review Team:

We want to extend our gratitude to the following individuals who have contributed their valuable knowledge and insights to this course:

Britney Beck, Hi-Wire HR Consulting Group
Ira Greenberg, Southern Methodist University
James "Jay" Coquat, PeopleTec, Inc
Michael "Mike" Vella, Entrepreneur
Michelle Licata, 2U
Price Burlington, The Spartan Group
Dr. Sarit Levy, Zschool
Selen Turner, Cordis
Valeria Cummings Swope, Department of Economic Inclusion at the City of Cincinnati
Vandana Khanna, Unilever
Vikram Dias, Deloitte
The collaborative efforts of these individuals representing major organizations have been instrumental in this course. Their collective expertise, diverse perspectives, and commitment to delivering relevant and exciting educational content have resulted in a course that equips learners with the knowledge and skills needed to navigate the rapidly changing landscape of AI! Show less

- Work with A&D client stakeholders to determine list of business processes​
- Develop ROPA survey and templates
- Populate ROPA
- Summarize output of the ROPA results

Defined project scope, program stakeholders, relevant environments/storage repositories and conducted requirement meetings with relevant stakeholders to understand current CUI, ITAR, EAR document markings. Conducted dictionary review sessions with stakeholders to help refine detection rulesets for CUI, ITAR and EAR data and scan unstructured data with Varonis DCE after refining the rules. Identified opportunities for improvements, prioritize recommendations and create an executive dashboard to… Show more

Defined project scope, program stakeholders, relevant environments/storage repositories and conducted requirement meetings with relevant stakeholders to understand current CUI, ITAR, EAR document markings. Conducted dictionary review sessions with stakeholders to help refine detection rulesets for CUI, ITAR and EAR data and scan unstructured data with Varonis DCE after refining the rules. Identified opportunities for improvements, prioritize recommendations and create an executive dashboard to display scanning results. Show less

Identified and documented 44 requirements (functional and non-functional) based on documentation review and workshops. Proposed a secrets governance RACI to align on governance roles and tasks to manage certificates and encryption keys. Proposed mission, vision and goals to serve as a foundation in harmonizing certificate and encryption key management. Developed a secrets governance strategy and roadmap outlining short and long-term recommendations.

Developed an understanding of the environment and current-state certificate management capabilities. Documented observations from stakeholder interviews and documentation review; documented key capabilities of the identified CMS requirements. Developed a target-state product path to market for certificate management; developed recommendations to address areas of improvement and help enlighten the Client Leadership Teams on market landscape for deployment of a Certificate Management Solution.

Automation using XSOAR and Forcepoint DLP platforms to reduce business and user friction when it comes to enabling key routine and operational business processes while respecting privacy, confidentiality and security controls for all key healthcare Crown Jewels to include PII, PHI and patient, provider data.

Enablement and sponsorship of Data Protection services for Delaware Medicaid using Google Cloud Platform (GCP) and the 8 step HITRUST process.

Executive Data Protection sponsor for all merger and acquisition processes for HMH New York to review, select and approve tools, processes and people structures.

Design, delivery, oversight and executive sponsorship for AHN DLP controls, processes and best practices across a cross functional team from Highmark and AHN IT/business stakeholders.

Management, executive sponsorship, oversight and delivery of unstructured and stale data using Varonis as the platform for scan deployment and management across AHN Health and Hospital systems.

Certificate Lifecycle Management, PKI enablement certificates and key management systems inclusive of selecting, enabling and deploying a best in class process and technology solution for Highmark Health Solutions.

Executive sponsor for ILM from Information Security for Data protection capabilities across the Data Enablement, Catalog, Classification, Data Labeling, Data Tagging, Information Protection, Archival and Purge processes inclusive of management, delivery and enablement of technical controls.

Living Health Cloud Enablement Services for Data Protection using a pre defined set of use cases to migrate on premise data to Google Cloud Platform using Google’s Data Chassis platform and HITRUST frameworks.

Microsoft Cloud Azure Services enablement for Data Loss Prevention (DLP), Office 365 and Data Labeling, Data Tagging automation.

Deployment of Palo Alto PRISMA SASE and executive sponsor for Data Protection services across the web and networks.

Creation, enablement, mapping and training of the Data Classification High Value Asset Framework for all Crown Jewels identified as Highly Restricted and Restricted. Onboarding , training and triaging of incidents tied to HVAs for all Data Champions and Data Owners within IP.

Management, coordination, reporting, tracking and execution of Information Security Exception Requests from business and staff groups to ensure risk reduction, commercial/operational excellence and technical enablement of security controls across all IS and IT processes within IP.

Part of a core team that designed, developed and institutionalized service management techniques, tools and processes using the ITIL framework across Technical and Application Services teams. Core Team Leader for Global Information Security to test and deploy incident management processes.

Discovery, design, development of Enterprise Data Classification, Process Enablement, Data Handling Guidelines and Technical Data Loss Prevention controls to protect IPs high value assets and Crown Jewels.

Coordination, facilitation and quarterly/annual governance reviews of IT/IS policies and accompanying standards for passwords, encryption/TLS, disaster recovery, business continuity, third party risk, privileged access management (PAM), BYOD, Cloud Security, incident response, end user training, application security, secure software development lifecycle, vulnerability management, enterprise patch management, log management and monitoring, chemical terrorism vulnerabilities (CVI), Identity &… Show more

Coordination, facilitation and quarterly/annual governance reviews of IT/IS policies and accompanying standards for passwords, encryption/TLS, disaster recovery, business continuity, third party risk, privileged access management (PAM), BYOD, Cloud Security, incident response, end user training, application security, secure software development lifecycle, vulnerability management, enterprise patch management, log management and monitoring, chemical terrorism vulnerabilities (CVI), Identity & Access management and Data Classification. Show less

Management, coordination, delivery and reporting of global IS risk and operational metrics for CISO, IT RIM and LT reporting.

Management and reporting of disaster recovery, business continuity and resiliency testing of IPs global supply chain environment, Tier1-4 application stack.

Design, development, delivery and implementation of Unified Communications and Collaboration platforms @ International Paper