As a Founder and CISO of Artan Consulting Pte. Ltd. (A Singapore-registered company, UEN: 202318921R), I am helping organizations in securing their valuable information assets in an economical and efficient way by performing cybersecurity risk assessment and audits. I also guide individuals in their cybersecurity journey by providing guidance, mentoring, and training.

"𝐂𝐘𝐁𝐄𝐑𝐒𝐄𝐂𝐔𝐑𝐈𝐓𝐘 𝐒𝐔𝐏𝐄𝐑𝐁𝐎𝐎𝐊: 𝐅𝐮𝐧𝐝𝐚𝐦𝐞𝐧𝐭𝐚𝐥𝐬 𝐭𝐨 𝐀𝐝𝐯𝐚𝐧𝐜𝐞𝐝" VOLUME-1! (https://amzn.to/3WmyZsP)It's a two-part series 𝐒𝐔𝐏𝐄𝐑𝐁𝐎𝐎𝐊, and this volume will help one to:✅ Strengthen fundamental concepts in security✅ Transition into 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 from a regular IT job✅ Build a strong foundation for a rock-solid cybersecurity career✅ 𝐈𝐓 𝐩𝐫𝐨𝐟𝐞𝐬𝐬𝐢𝐨𝐧𝐚𝐥𝐬 communicate effectively with security teams✅ Understand what one needs to know to get into Cybersecurity✅ Build a strong foundation for any cybersecurity certification or job role.

As the Chairman of RIMAS Expert Chapter – the “Emerging Technology Risk”, I am spearheading groups efforts to expand RIMAS's presence in the rapidly evolving fields of Emerging Technologies, including AI, blockchain, and their associated security and risk domains.Learn more about it here: https://www.rimas.org.sg/emergingtechrisk

I am currently serving as an Adjunct Lecturer for Cybersecurity at LSBF Singapore. In this dynamic role, my responsibilities encompass a broad range of educational and developmental activities tailored to inspire students and equip them with the required skillset to become the next generation of cybersecurity professionals

I led multiple client engagements and teams within PwC Singapore's Cloud Trust, working with and advising business leaders from the Board to CEOs, CIOs, and CISOs on securing their cloud journey. I helped clients by engaging business and technology stakeholders to:- Be able to define their cyber and cloud security strategies- Help build and assess cybersecurity and risk management capabilities within the cloud- Help them drive strong risk management and governance across the organization- Providing risk assurance and advisory services to multinational organizations across the region on various cloud engagements- Help in technology risk management and regulatory compliance.SECURITY: Cloud | Cyber | Blockchain | Digital RISK: Cloud Security | Cybersecurity | Outsourcing | APAC Regulatory

As a cybersecurity subject matter expert, I have had the privilege of contributing to the following areas:▪️ Engaged in the controls review of Cloud Adoption Framework (CAF) for public cloud implementation initiatives, conducting cyber risk assessments and mitigation activities, and liaising with stakeholders and SMEs.▪️ Assisted teams in creating secure coding best practices and guidelines around manual and automated source code reviews.▪️ Reviewed and assessed HP Fortify, Nexus IQ, and SonarQube reports for potential security vulnerabilities.▪️ Contributed to the development of country/region-specific secure coding guidelines for developers, providing corresponding training/coaching and collaborating with DevOps and security teams for secure code analysis (SAST, DAST).▪️ Assessing and recommending controls around Application Security, Secure SDLC, Security-by-Design, Cloud Security, Cybersecurity, and APAC Regulatory Compliance.

▪️ Assisted the firm in system migration planning and testing of trading platforms and planning for quality control and assurance, IT controls assessment and risk management. ▪️ Validation and testing of upstream and downstream interfaces, ensuring control validation and quality assurance across the board, and conducting application and control testing.▪️ Conducting change and configuration management activities and performing business impact analysis (BIA) on connected IT systems for trade processing. ▪️ Helping to identify risks, generating detailed reports, and providing mitigation recommendations.

▪️ SME for Information Security, Control implementation, validation, review and monitoring▪️ Technology Risk Management, Quality Control & Assurance▪️ Risk identification, assessment and analysis, control implementation.SECURITY: Identity and Access Management (IAM) | Privileged Access Management (PAM) | Identity GovernanceRISK: Global Management Reporting (GMR) | APAC Regulations and compliance

As part of the GSDS IT team, I managed risks and ensured control validations for Credit Suisse's technology infrastructure. My day-to-day responsibilities included:▪️ Conducting risk assessments and control validations for various business-critical applications, as well as for the security of database hosting platforms and associated upstream and downstream systems.▪️ Identifying threats and vulnerabilities, performing infrastructure security risk analysis, and ensuring compliance with various controls and standards.▪️ Conducting feasibility analysis, monitoring infrastructure controls, and performing post-implementation reviews to mitigate risks in complex IT systems.

▪️ Design and development of test automation suite for JP Morgan Chase Card Services CORE automation team for IBM mainframe applications, TSYS TS2, and Pega applications, writing test scripts that are easy to maintain and access and can easily accommodate forthcoming project releases. ▪️ Responsibilities included validating technology and security controls around protecting credit cards and PII or personally identifiable information, i.e., cardholders and payment data.▪️ Validating information security controls around Visa/MasterCard payment authorization systems, payment gateways, etc., and preventing credit card fraud through increased controls around data and credit card payment processing.▪️ Conduct in-house training, hiring activities, and automation Framework analysis/design/implementation.

▪️ I was involved in projects related to the testing of RBS Mainframe systems, brand websites, and web aggregators for the secure use of credit cards and was also involved in test automation framework development, scripting using VB Script, and test scenario execution.▪️ I was also responsible for developing the test plans and test strategy for various applications and systems and preparing documents like test scenarios, test conditions, and test cases/test scripts to test credit card payments, authentication and authorization, payment gateways, fraud scenarios, and information sharing with credit rating agencies such as Experian.▪️ Understanding and analyzing requirements, reviewing functional specs and design documents, BRDs▪️ Defects management, logging, tracking, closing, and reporting in Test Director.▪️ Controls validation for preventing credit card fraud through increased security around data & processing of card payments for new business, quotation, amendments, cancellation, renewal of policies, claims, etc.▪️ Validating and testing controls around credit card authentication and authorization and ensuring system compliance around PCI DSS standards. 𝐃𝐨𝐦𝐚𝐢𝐧 𝐄𝐱𝐩𝐞𝐫𝐭𝐢𝐬𝐞:1. 𝑪𝒓𝒆𝒅𝒊𝒕 𝒄𝒂𝒓𝒅 𝒑𝒂𝒚𝒎𝒆𝒏𝒕 𝑰𝒏𝒅𝒖𝒔𝒕𝒓𝒚:- Complete credit card payment processing lifecycle.- Credit Card, Card Holder, Payment, Authorization, Accounts, Financial Control System,Gateways, Fraud, Credit Rating Agencies Ep. Experian- Visa/MasterCard payment authorization system- knowledge about the TSYS TS2 application2. 𝑼𝑲 𝑮𝒆𝒏𝒆𝒓𝒂𝒍 𝑰𝒏𝒔𝒖𝒓𝒂𝒏𝒄𝒆:- Home, Motor, Breakdown, and Travel Insurance Policy Administration Systems- Expertise in New Business, Quotation, Amendments, Cancellation, Renewal, Claims, etc.- Worked on projects which were based on dealing with third-party CRA (Credit RatingAgencies ep. Experian), Credit Card Payment authorization.- Integration and Separation of various business units into and from RBS Group.

▪️ Responsibilities include establishing the technology platform for a client team's benefits administration system using Hewitt's proprietary ERP-TBA. Oversaw system compliance testing and monitoring for COBRA, ERISA, and other regulations.▪️ Tools and Technologies: Mainframe Applications, CICS, COBOL, JCL, DB2 databases, ISPF, and Control D▪️ Conducted analysis on legislative changes, new provisions, services, and corporate actions (such as mergers or acquisitions), and identified their impact on the current benefits administration system. Project on allowing an employee to continue his coverage in case of his termination or leave of absence. ▪️ Medical, Dental, and Vision insurance plan validation & control while adhering to plans and provisions of Active Annual Enrolment (AE) & COBRA AE. Co-pays, Deductibles, Coinsurance, HMOs, PPOs, and COBRA events per HIPPA compliance.𝐃𝐨𝐦𝐚𝐢𝐧 𝐄𝐱𝐩𝐞𝐫𝐭𝐢𝐬𝐞: 𝑼𝑺 𝑯𝒆𝒂𝒍𝒕𝒉𝒄𝒂𝒓𝒆- Medical, Dental, and Vision insurance plans and provisions of USA.- Knowledge about the flow of Active Annual Enrolment (AE) and COBRA Annual Enrolment.- Well-versed with the flow of Co-pays, Deductibles, Coinsurance, HMOs, PPOs, etc.- Understanding of COBRA events, processing, HIPPA compliance, etc.

▪️ Served as an Assistant Professor at Jodhpur Engineering College & Research Centre (JECRC), Jodhpur, Rajasthan, India.▪️ Educated undergraduate Bachelor of Technology (B.Tech.) students in various Computer Science subjects, including assisting them in developing technology projects.▪️ Conducted workshops, supervised academic activities such as examinations and student development, and managed load distribution activities.

▪️ Trainer/Instructor for MCA (Master of Computer Application), PGDCA (Post Graduate Diploma in Computer Application), and Software Development. ▪️ Preparing training material and deliverables, designing tests, and grading for internal courses as per the guidelines.▪️ I was also a trainer for various courses from the O-Level of the DOEACC Society (Now known as the National Institute of Electronics & Information Technology, India).