Rashi Bhatnagar
Mumbai
Summary
Conducted 20+ Information Security Vendor Risk Assessments for a global financial services client. Proven ability to learn quickly and adapt to new situations. Eager to contribute to a team and learn from more experienced auditors. Working in the Technology Risk Domain with a focus on providing IT Risk and Assurance services to global clients in the Financial Services Sector having less than a year of experience.
Overview
1
1
year of professional experience
Work History
Associate Consultant
Ernst & Young
02.2023 - Current
- Understanding the goal of the service and identifying the scope areas to be evaluated in collaboration with the business team.
- Publishing a questionnaire to vendors asking applicable questions related to service areas and domains and gathering the data and supporting evidence to cross-verify them.
- Evaluating responses and supporting documentation from vendors delivering services to clients through remote/onsite assessments.
- End-to-end assessment of vendor's Information Security policies and procedures
- Creating risk assessment reports with recommendations to resolve the issues.
- Identification of non-conformities in the process and communication of findings and remediation plan to third parties.
- As a part of vendor risk assessments, I have covered the following domains Information Security Policy, Logical Access, Change Management, Password Management, Business Continuity & Disaster Recovery, Organization Security, Physical Security, Subcontractor Relationships, Risk Management, Data Handling Procedures, Asset Management, Incident Management, Backup Security and Software Development Lifecycle.
Intern
Ernst & Young
12.2022 - 02.2023
- Performed Inherent Risk Assessments to determine the risk rating of the vendor, and subsequently the audit schedule for that particular vendor.
- Managing timelines around assessments, prioritizing the assessments as per the business requirement.
- Completed research, compiled data, updated spreadsheets, and produced timely reports.
- Maintained accurate records and documentation of projects to inform stakeholders of progress and updates.
Education
Post Graduate Diploma in Risk Management - Risk Management
Global Risk Management Institute
Gurugram01.2023
BA (Honors) Economics - Economics
Kalindi College (Delhi University)
Delhi07.2020
Senior Secondary - Commerce
North Ex Public School
Delhi05.2017
Skills
- Third-party risk management
- Enterprise Risk Management
- Internal Audit
- Sustainability and ESG Reporting
- Audit planning and execution
- Report writing and presentation
- Communication and interpersonal skills Teamwork and collaboration
- Microsoft Office Suite (Word, Excel, PowerPoint)
Timeline
Associate Consultant
Ernst & Young
02.2023 - Current
Intern
Ernst & Young
12.2022 - 02.2023
Post Graduate Diploma in Risk Management - Risk Management
Global Risk Management Institute
BA (Honors) Economics - Economics
Kalindi College (Delhi University)
Senior Secondary - Commerce
North Ex Public School
Similar Profiles
Sivashankari ShaseederanSivashankari Shaseederan
Finance Manager at Ernst & Young Solutions LLPFinance Manager at Ernst & Young Solutions LLP
Abhijit ThakurAbhijit Thakur
SAP ABAP Developer- Associate Consultant 2 at Ernst & Young LimitedSAP ABAP Developer- Associate Consultant 2 at Ernst & Young Limited
Smiriti MittalSmiriti Mittal
Senior Consultant at Ernst & Young LLPSenior Consultant at Ernst & Young LLP