Profiles search
Mimoza Ballgjini
Senior Vice President, Security GRC
Boston, MA, United States
Details
Education:
Master’s Degree
Informatics/ Information Security Management
Northeastern University
2016 : 2018
Bachelor’s Degree
Business Administration
American University in Bulgaria
2009 : 2013
Bachelor’s Degree
Information Systems
American University in Bulgaria
2009 : 2013
Informatics/ Information Security Management
Northeastern University
2016 : 2018
Bachelor’s Degree
Business Administration
American University in Bulgaria
2009 : 2013
Bachelor’s Degree
Information Systems
American University in Bulgaria
2009 : 2013
Experience:
• As Embedded Technology Control Manager, I lead the implementation and execution of the First Line of Defense Technology Control Management Program.
• Lead the risk and control identification and assessment process in light of current/future business objectives and overall general business environment.
• Conduct SOC2 Readiness Assessment and prepare Gap Analysis reports.
• Manage internal and external audits, including SOC1 type2, SOC2 type2,
Cybersecurity assessments.
• Manage control issues and policy waivers by identifying the rightful owners and
track them to remediation.
2022 : 2023
BNY Mellon | Eagle Investment Systems
Senior Vice President
• Provided guidance and direction to business representatives, information security control owners and cross functional partners.
• Led the annual concurrence of Corporate Risk and Control Self-Assessment exercise.
• Led the implementation of LogicGate Risk Cloud and coached team on its usecases.
• Managed periodic reviews of security policies, standards and procedures and recommended improvements.
2020 : 2022
BNY Mellon | Eagle Investment Systems
Senior Information Security Analyst
• As the Resiliency Plan Owner, provided oversight for annual business continuity lifecycle requirements, including reviewing/updating the documentation and managing recovery strategy testing.
• Implemented RSA Archer to automate Governance, Risk and Compliance processes.
• Created customized Customer Assurance Packages to ease the process of responding to existing and prospective clients’ DDQs, RFPs and security questionnaires.
• Conducted third party risk assessments as a central part of Vendor Risk Management.
2018 : 2020
BNY Mellon | Eagle Investment Systems
Information Security Analyst
-Assisted in the internal IT Audit process;
-Helped increase the Audit and Advisory services department's web presence within the University by redesigning and developing their new website;
-Give presentation to personnel on information security and best practices.
2017 : 2017
Northeastern University
Capstone Project- IT Audit
- Performed risk assessments to identify the threats and vulnerabilities their systems were facing;
- Designed information security policies and procedures based in ISO 27001 : 2013 and controls based on NIST 800-53;
- Perform vulnerability scanning and analyzing reports from these scans;
-Training staff on network and information security practices.
2017 : 2017
Stream in Motion
IT Security Analyst
• Lead the risk and control identification and assessment process in light of current/future business objectives and overall general business environment.
• Conduct SOC2 Readiness Assessment and prepare Gap Analysis reports.
• Manage internal and external audits, including SOC1 type2, SOC2 type2,
Cybersecurity assessments.
• Manage control issues and policy waivers by identifying the rightful owners and
track them to remediation.
2022 : 2023
BNY Mellon | Eagle Investment Systems
Senior Vice President
• Provided guidance and direction to business representatives, information security control owners and cross functional partners.
• Led the annual concurrence of Corporate Risk and Control Self-Assessment exercise.
• Led the implementation of LogicGate Risk Cloud and coached team on its usecases.
• Managed periodic reviews of security policies, standards and procedures and recommended improvements.
2020 : 2022
BNY Mellon | Eagle Investment Systems
Senior Information Security Analyst
• As the Resiliency Plan Owner, provided oversight for annual business continuity lifecycle requirements, including reviewing/updating the documentation and managing recovery strategy testing.
• Implemented RSA Archer to automate Governance, Risk and Compliance processes.
• Created customized Customer Assurance Packages to ease the process of responding to existing and prospective clients’ DDQs, RFPs and security questionnaires.
• Conducted third party risk assessments as a central part of Vendor Risk Management.
2018 : 2020
BNY Mellon | Eagle Investment Systems
Information Security Analyst
-Assisted in the internal IT Audit process;
-Helped increase the Audit and Advisory services department's web presence within the University by redesigning and developing their new website;
-Give presentation to personnel on information security and best practices.
2017 : 2017
Northeastern University
Capstone Project- IT Audit
- Performed risk assessments to identify the threats and vulnerabilities their systems were facing;
- Designed information security policies and procedures based in ISO 27001 : 2013 and controls based on NIST 800-53;
- Perform vulnerability scanning and analyzing reports from these scans;
-Training staff on network and information security practices.
2017 : 2017
Stream in Motion
IT Security Analyst
Company:
BNY Mellon | Eagle Investment Systems
Years of Experience:
12
Spoken Language:
Albanian, English, French, Italian, Spanish
About
Highly motivated and analytical IT security professional with a passion and talent for aligning security architecture and controls with security standards, with 7+ years of experience working for the government and in the Fintech industry.
Preparing for CRISC exam.
Profile Photo
