Vigneshwari R

Policies & Standards • Defined and maintained cybersecurity policies, standards, KPIs, and KRIs aligned with ISO/IEC 27001 and NIST • Ensured GDPR compliance at Randstad across global cross-functional teams • Aligned with UAE-specific regulations: ADHICS, CBUAE, and PDPL (Personal Data Protection Law) Risk & Compliance Management • Led enterprise-wide information security risk management and governance programs • Conducted security assurance reviews ensuring alignment with industry standards • Acted as SPOC for audits with zero-defect documentation and timely closure of findings Third-Party & Vendor Risk • Managed Third-Party Risk Management (TPRM) using OneTrust — onboarding, risk assessment of internal and vendor applications • Oversaw vendor and customer advisories at AT&T Data Loss Prevention (DLP) • Oversaw DLP initiatives to reduce attack surface and business risk • Used CyberAngel to monitor potential data leakage and mitigate risks Access & Identity Governance • Drove IAM and access governance initiatives protecting critical “crown jewel” assets • Performed user access management and security health checks (ITCS104/ASPR standards) Monitoring & Incident Response • Governed SOC/SIEM operations with real-time threat monitoring, incident investigation, and escalation • Collaborated with threat intelligence teams on IOC containment and detection improvements Reporting & Executive Communication • Delivered risk posture, KPIs/KRIs, and compliance metrics to senior management and governance committees • Produced MIS reports and security metrics for leadership and clients ISO/IEC 27001 · NIST · GDPR · PDPL · ADHICS · CBUAE · DLP · IAM · SIEM · OneTrust · CyberAngel · Vulnerability Management · VAPT · Penetration Testing · Risk Analysis · Infrastructure Hardening · Regulatory Compliance · Auditing CISM certified