Samir Bali

Samir Bali Email and Phone Number

Innovative Technology Leader Maximizing Enterprise Resiliency, Aligning Technology, and Retaining Buy-in from Technical and Non-Technical Audiences in Rapid Growth and Highly Regulated Organizations @
Samir Bali's Location
New York City Metropolitan Area, United States, United States
About Samir Bali

I am a technology risk and security leader. My experience includes launching, managing, and enhancing enterprise capabilities and programs. I have done this as part of cross-functional teams as well as the leader of the strategies to optimize the enterprise security posture. This includes engaging the C-Suite of highly regulated, global enterprises as well as the globally dispersed teams in rapid growth environments.My ability to serve as a thought leader who guides people at every level of the organization has led to my repeated success in leading technology riskmanagement, compliance, and governance programs. I strive to translate complex information into actionable insights for my technical and non-technical audiences. I also cultivate relationships to ensure that my teams can provide maximum value to the enterprise through its people.My achievements include:• Leading 1 – 23 direct and indirect reports and multiple project teams with budgets up to $2.5M in regulated and rapid growth environments with dispersed end points.• Obtained 60% reduction in critical, high, and priority aged vulnerabilities in 1 year by leading the portfolio of initiatives including patches, process improvements, documentation, and retiring of legacy assets.• Inventoried the critical technology assets to improve efficiency in modernization initiatives, improving protections, and eliminating unnecessary redundant systems.• Remediated and enhanced the security of the Artificial Intelligence (AI) assistant used by +10M consumer and commercial banking customers by assessing the root cause analysis, partnering cross-functionally, and documenting steps to prevent future incidents.• Improved the continuity of the regulated enterprise after reviewing the response and remediation to 5 outages of business-critical vendors providing software, data, and infrastructureTech Stack: Jira Confluence, Service Now, Faraday, Risk Sense, Axonius, AuditBoard, Egnyte, Collibra, Metric Stream, Wireshark, Tenable, Nessus, OpenVAS, Nmap, Netskope, Code42, Alert Logic, LogicManager, Proofpoint, VMWare, Mulesoft, Sun Virtual Box, CrowdStrike, Cylance, Norton, Symantec,Citrix, LANDesk, SIEM, Microsoft Suite (Teams, SharePoint, Excel), Google Cloud Platform (GCP), Amazon Web Service (AWS), Azure

Samir Bali's Current Company Details
Career Break

Career Break

Innovative Technology Leader Maximizing Enterprise Resiliency, Aligning Technology, and Retaining Buy-in from Technical and Non-Technical Audiences in Rapid Growth and Highly Regulated Organizations
Samir Bali Work Experience Details
  • Career Break
    Personal Goal Pursuit
    Career Break Nov 2024 - Present
    My role at The Ascot Group was eliminated in the latest round of restructuring prompted by a series of leadership changes. I am using this as an opportunity to find the right next step in my career. I am actively evaluating my options and pursuing development of my capabilities. Message me and let’s explore potential collaborations.
  • Ascot Group
    Cyber Resilience Lead
    Ascot Group Aug 2022 - Nov 2024
    Bermuda, Bm
    I took the role of Cyber Resilience Lead with the understanding it would grow into a Deputy CISO position with the global specialty insurance and reinsurance group in the Lloyd’s of London Market Association. I reported to the CISO in this capacity and led the vulnerability and risk management programs.I set the strategies and aligned the resources to meet tight timelines in this fast-paced, regulated environment. This meant that I frequently pivoted between priorities to maintain the momentum of the overall cyber resilience posture of the enterprise. I also rolled up my sleeves and performed theassessments, testing, and training to strengthen the cybersecurity culture of the enterprise.Accomplishments in this capacity included:● Lead up to 1 direct report with ownership of budgets up to $2.5M in the service of 2,300 end points globally.● Designed, managed, and improved the frameworks for all assessments including red team, purple team, tabletops, and ransomware.● Obtained 60% reduction in critical, high, and priority aged vulnerabilities in 1 year by leading the portfolio of initiatives including patches, process improvements, documentation, and retiring of legacy assets.● Created the cyber risk process using the NIST Cybersecurity Framework for the enterprise from the ground up.● Spearheaded the documentation and enhancement of existing documentation for the global vulnerability management program and cyber threat intelligence.● Established and administered the annual executive tabletop exercise to educate and engage the C-Suite on response procedures and responsibilities.
    View
  • Sterling National Bank
    Information Technology Risk Manager
    Sterling National Bank Nov 2020 - May 2022
    Stamford, Ct, Us
    During this time, I worked for Webster Bank prior to its acquisition into Sterling National Bank. I served as the Assistant Vice President, Technology Risk Manager who launched the capabilities for the enterprise. I reported to the Director of Operational Risk in the highly regulated environment to serve as a risk advisor to IT, cybersecurity, and data teams for the enterprise. In this role, I also owned the technology risk management project portfolio for 5,000 end points across the US.Achievements:● Enhanced the vulnerability management program by assessing SOPs, migrating to private AWS cloud, prioritizing critical and aged vulnerabilities.● Trusted to remediate and enhance the security of the Artificial Intelligence (AI) assistant used by +10M consumer and commercial banking customers by assessing the root cause analysis, partnering cross-functionally, and documenting steps to prevent future incidents.● Improved the continuity of the regulated enterprise after reviewing the response and remediation to 5 outages of business-critical vendors providing software, data, and infrastructure (Fiserv, Verizon, Microsoft).● Transformed enterprise data practices and vendor provided services by embedding lessons learned from large-scale outages in the assessment of annual exercises performed by the business continuity team.● Partnered with data governance and data management teams to establish frameworks for ingestion, quality, and anomaly identification to uncover process improvements in data governance and utilization.● Identified, monitored, and resolved up to 125 anomalies monthly (operational losses, regulatory compliance, and process gaps) by utilizing LogicPro and an enterprise data warehouse the technology risk issues.● Stopped potential losses by improving processes, fail safes, and reporting in the utilization of the API Farm.● Contributed to the merger through the 9-month preparation of technology due diligence & integration projects.
    View
  • Next 15
    Cyber Security Analyst
    Next 15 Nov 2018 - Apr 2020
    London, London, Gb
    I took the opportunity to join the enterprise security team of the global digital media and public relations consulting firm as an Cyber Security Analyst. In this capacity, I launched and improved the information security capabilities of the enterprise. I reported to the CISO and connected the business with our technology partners.My ability to collaborate cross-functionally and to engage our globally dispersed stakeholders unlocked our success. I adapted quickly in the ever-changing environment to support the best practices while engaging our business partners to ensure the effectiveness of the security initiatives. I also identified and mitigated potential security threats through conducting risk assessments, implementing security policies and procedures, and performing regular audits.Wins during this time were:● Realized 88% reduction in critical and high vulnerability counts in 4 months by designing, implementing, and monitoring the automations of vulnerability management.● Owned threat and vulnerability dashboards for 15 brands with 9,000 end points globally.● Launched the Security Awareness guide and communications for nontechnical users globally in partnership with learning management, incident response, and IT.● Contributed to the ISO 27001 recertification of 2 brands as the security subject matter expert.● Co-lead the enterprise threat modeling process using OWASP framework to select the PASTA threat model.● Partnered with the UK security lead and business units to refresh the policies, standards, and standard operating procedures for security at the enterprise and operational levels including phishing and security incidents.● Took on the role of interim CISO for 7 months due to medical leave of leader and provided seamless oversight. Despite these successes, my role was eliminated as part of the enterprise layoffs that were prompted by the pandemic. I took the lessons and experiences from Next 15 Communications to quickly land in my next role.
    View
  • Cbs Corporation
    Information Security Analyst
    Cbs Corporation Jul 2014 - Jul 2017
    New York, Ny, Us
    My success as Team Lead led to my promotion to the role of Information Security Analyst for the global broadcasting company. I functioned as the manager of the team that launched the technology risk management program for the highly regulated enterprise. I led 3 direct reports and partnered withsecurity, compliance, and engineering to scale the program.During this time, I managed multiple initiatives through the full lifecycle. My portfolio of projects included risk governance, security process improvement, data management, and technology projects. We applied Agile methodologies and worked systematically through the execution of the initiatives that wereessential to defining and mitigating risks for the enterprise. One of the biggest challenges we faced was ensuring that our security measures were in compliance with industry-specific regulations and standards. This required constant communication and collaboration with various departments andstakeholders to ensure all necessary requirements were met.In my role as an Information Security Analyst, I also conducted regular risk assessments and implemented mitigation strategies based on identified risks. This involved staying up to date on the latest cybersecurity threats and trends including the implementation of assessment processes and standards.Results in this role were:● Assessed 125+ technology and security vendors after leading the launch of the enterprise vendor risk management program including databasecreation, process documentation, and intellectual property protections.● Spearheaded the implementation of NIST CSF, CIS, RMF, and ISO 27001 through the first enterprise infosec and cybersecurity risk assessmentsof processes, systems, hardware, and software.● Managed 7 – 8 projects at a time on average through the full lifecycle while also serving as the InfoSec subject matter expert that connected IT,policy, and operations as well as reporting to the C-Suite regularly.
    View
  • Cbs Corporation
    Team Lead, Client Services And Support
    Cbs Corporation Jan 2011 - Jul 2014
    New York, Ny, Us
    I was elevated to the role of Enterprise Infrastructure Team Lead for the global broadcasting company. During this time, I designed, architected, and implemented upgrades and changes across the East Coast. I did this while leading a team of 23 direct and indirect reports in the delivery of desktop support for the 24/7/365 global business.My focus in this role was on streamlining processes, improving efficiency, and ensuring a high level of customer satisfaction. I worked closely with cross-functional teams to identify areas for improvement and implement solutions that would enhance the overall performance of our infrastructure. This required extensive planning and coordination with various departments, as well as thorough testing to ensure a smooth transition.I also spearheaded the implementation of virtualization technology to optimize server performance and reduce hardware costs. This resulted in significant cost savings for the company while also improving system reliability and flexibility. As a result, I regularly presented progress reports and updates to upper management, communicating complex technical information in an actionable manner to technical and nontechnical audiences.Wins during this time included:• Owned the IT asset inventory for operations of 2 brands across the East Coast from procurement to disposition.• Met or exceeded SLAs consistently by implementing ServiceNow and coaching team to metrics.• Saved $150k and 3 months in the delivery of the Windows upgrade as the leader of the largest region in the enterprise with the 2 other regions following 1 – 2 months later in the completion.Representative Projects: Technical Support Governance, System Enhancements, Asset Management, Security
    View

Samir Bali Education Details

  • Queens College
    Queens College
    Political Science

Frequently Asked Questions about Samir Bali

What company does Samir Bali work for?

Samir Bali works for Career Break

What is Samir Bali's role at the current company?

Samir Bali's current role is Innovative Technology Leader Maximizing Enterprise Resiliency, Aligning Technology, and Retaining Buy-in from Technical and Non-Technical Audiences in Rapid Growth and Highly Regulated Organizations.

What schools did Samir Bali attend?

Samir Bali attended Queens College.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.