Sr. Software Engineer, Information Security | External Party Risk Management | Carnegie Mellon University
I am an Information Security and Risk Management professional with 7+ years of experience delivering high-impact security, privacy, and risk solutions across global technology, retail, and consulting organizations.
Engineered an automated solution to streamline the external party recommendation process by analyzing third-party risk assessment data and implementing an operations-defined scoring algorithm
•
Spearheaded the design and deployment of an automated notification system using Thymeleaf, eliminated manual email processes, and reduced notification effort to stakeholders
•
Developed comprehensive end-to-end process flow diagrams to visualize data exchange scenarios between multiple systems, covering request creation, assignment, and closure stages of the external party risk assessments process
•
Enabled cross-functional teams to understand system components and necessary functionalities, streamlining the integration and data flow mapping across database tables and microservices
•
Implemented a scalable data pipeline leveraging Apache Spark to integrate big data from GCP-hosted sources to automate research and contact tracing
•
Implemented a React-based user interface, enabling business users to create and manage external party risk assessment tickets seamlessly Empowered stakeholders to self-serve key information such as assessment results, contact details, and security certifications, reducing operational dependency and streamlining decision-making
•
Engineered a Spring Boot microservice to create APIs, providing seamless integration with stakeholder tools to process assessment data in real-time. Enabled end-to-end automation of risk assessment workflows and enhanced visibility into external party risk posture
Engineered a Python-based microservice to ingest and process data from external sources and apply an operations-defined algorithm against Walmart’s security baselines
Creating a front end to showcase the analysis results for consumption by the risk analyst team and the leadership
•
Developed a solution to automate the vendor recommendation process by analyzing the assessment data generated from vendor risk assessments, and calculated the recommendation score based on the set threshold from the analyst team. This enabled the reduction of the backlog of unassessed vendors in the Walmart environment and the assessment work hours per individual
Programming languages used: Python, React, Node.js, Sequelize
Vendor Risk Analysis:
•
Conducted risk assessments for vendors handling highly sensitive data, reviewed ISO 27001 Statement of Applicability and Hi-Trust Reports
•
Conducted internal market assessments for Walmart’s markets to ensure compliance with NIST SP 800-53 and NIST CSF
•
Created a Tableau Story for the leadership to provide an overview of the vendor assessment process which included assessed vendor count, third-party source turnaround time, team turnaround time
Created an AI/ML solution for voice fraud detection using biomarkers from the audio datasets
•
Preprocessed the audio datasets to extract features such as frequency, pitch, emotions, vocal tension and analysed them with respect to chroma feature, spectral centroid, valence, and arousal
Education
2019 — 2020
Carnegie Mellon University - Heinz College of Information Systems and Public Policy
