Career Profile
Results-driven Cybersecurity and Risk Management Professional with 4+ years of experience leading end-to-end security initiatives for financial institutions. Skilled in security compliance and risk management, with hands-on expertise in aligning processes with standards like NIST and ISO 27001. Proven ability to collaborate across Security, IT, and Governance teams to drive compliance, optimize security posture, and deliver measurable business outcomes.
Currently seeking new opportunities in the Cybersecurity and Risk Management domain to contribute to building secure and compliant organizational environments.
If you’re interested in my profile, please reach out at mathura.varshineee@gmail.com.
📄 View My Resume
Experiences
Project : Lloyds Banking Group
- Led security optimization and gap assessments across applications and systems, ensuring alignment with ISO 27001, GDPR, NIST CSF, and regulatory standards.
- Designed and validated security controls across different environments to strengthen compliance and control effectiveness.
- Managed vulnerability assessments, penetration testing, and remediation, enhancing detection accuracy and reducing false positives.
- Collaborated with Security, Engineering, and Risk teams to implement risk-based action plans and maintain control and accountability.
- Developed and maintained security documentation and runbooks, standardizing first-line risk management processes.
- Delivered cost savings of ~£2,000 through optimized testing and remediation workflows.
- Mentored a 15-member team, driving collaboration, compliance, and continuous improvement.
Certifications
CySA+ candidate with hands-on exposure to threat detection and vulnerability assessment tools, including Nmap, Wireshark, Qualys, and Nikto.
PECB ISO/IEC 27001:2022 Foundation – Demonstrated understanding of Information Security Management Systems (ISMS) and ISO 27001 controls.
ISC² Certified in Cybersecurity (CC) – validated knowledge of core cybersecurity, risk, and incident response concepts.
PenTest+ candidate with hands-on experience in planning and executing penetration tests, including reconnaissance, vulnerability scanning, exploitation, and reporting using tools such as Nmap, Metasploit, Burp Suite, Nessus, and Nikto.
Applied project management principles using JIRA and ServiceNow during Google Project Management Specialization coursework
Demonstrated understanding of NIST Framework and applied it in academic case study
Projects
- Developed a security framework for AI Challenges in the financial sector to address common security vulnerabilities due to increasing AI adoption.
- Developed and completed an incident response template for a simulated security scenario
- Investigated security incidents in a virtual lab environment, analyzed logs, diagnosed attacks, and documented remediation steps in a structured incident response report.
- Developed a comprehensive security strategy and compliance plan for a simulated system, performing risk assessments and applying FISMA-aligned controls to enhance cybersecurity posture