Profiles search
Sander Sinishtaj
Vice President, JPMorgan Chase
New York, NY, United States
Details
Experience:
- Run day/day execution of technology risk management activities for a line of business. Responsibilities include risk impact analysis and categorization, control execution and effectives, risk mitigation actives and risk reporting to LOB executive leadership.
- Oversee risk and compliance requirements for a number of applications. Responsibilities include risk operations activities (coverage and compliance), application control assessment, security architecture design review, production management advisory and KPI/KRI ownership.
- Lead the Vulnerability Management risk reduction function for the line of business. Activities include active monitoring of application and infrastructure vulnerabilities and working closely with the application and infrastructure owners to execute on remediation of those findings in an evergreen manner.
- Actively engage and advise the LOB on Internal Audit and Operational Risk activities.
- Ran cybersecurity operations control functions for a line of business . Controls included DLP (Data Leakage Prevention) Incident Management, Privileged Access Management Monitoring and Privileged Session Monitoring. Activities included documenting engagement model, establishing respective RACIs, building relationships with respective stakeholders and executing on the control requirements.
- Responsible for testing application security and data security controls for the line business as part of an annual self-identified risk assessment efforts.
- Owned the monthly/quarterly executive reports on operational KPIs/KRIs to senior management
2016 : Present
JPMorgan Chase & Co.
Lead Information Security Manager (VP)
- Led a global technology team of 30 professionals, responsible for the 24x7 Level 3 support of the global IT Security infrastructure (40+ products and 3000+ systems), split across 4 locations : New York, Montreal, Hong Kong and Bangalore
- Built the L3 Operations team in Montreal and Bangalore, ensuring follow-the-sun coverage all while reducing cost of coverage for senior operations expertise.
- Successfully introduced over 15 IT Security production services/applications in the Morgan Stanley’s distributed infrastructure.
- Introduced a SME (Subject Matter Expert) based support model resulting in advanced and focused support on the ever increasing number of IT Security products, providing for best quality of service for our clients
- Partnered and influenced the establishment of Morgan Stanley’s first IT Security Event Management team.
- Delivered key process changes in Incident and Problem Management based on the ITIL framework, resulting in increased overall environmental stability.
- Responsible for the review of critical audit items affecting security controls (perimeter security, privileged access management), devised action plans and led the remediation efforts.
2009 : 2016
Morgan Stanley
Enterprise Security Platform - Global Lead (VP)
- (2001 - 2002) Bank on New York, New York - Coordinated and executed client connectivity migrations from legacy to next generation firewall platforms
- (2002 - 2004) Custom Computers Specialists, Hauppauge NY - Led several teams of technicians in the deployment of Cisco WiFi services across 30+ NYC public schools
- (2004 - 2009) Morgan Stanley, New York NY - stood up the IT Security Deployment team from ground up, introducing processes and standards around hardware procurement, deployment and inventory management. Deployed numerous IT Security solutions globally, covering a wide scope of security technologies (Firewalls, IDS, Secure Email, Kerberos, SecurID, Radius). Coordinated and executed multiple migrations of End of Life infrastructure (Solaris, PIX, Checkpoint), moving hundreds of client applications to the state-of-the-art infrastructure (Linux, Juniper Netscreens & SRX).
2001 : 2009
Professional Inter-Networking Group
Network Engineer
Responsible for global delivery and support of a portfolio of content delivery services like web caching, streaming media, and news feeds. Provided Sales Engineering coverage and led the effort in building a 24x7 NOC in NY.
2000 : 2001
Edgix Corporation
System Engineer
- Part of a service delivery team, responsible for the AOL (America Online) dial-up network expansion of 20,000 modems monthly, reaching AOL’s 20 million user milestone during my tenure.
- Promoted to a team lead in 1999, coordinating and overseeing workload for a team of 7 installation engineers
1998 : 2000
UUNET Technologies, Inc.
Dial Access Network Engineer III
- Oversee risk and compliance requirements for a number of applications. Responsibilities include risk operations activities (coverage and compliance), application control assessment, security architecture design review, production management advisory and KPI/KRI ownership.
- Lead the Vulnerability Management risk reduction function for the line of business. Activities include active monitoring of application and infrastructure vulnerabilities and working closely with the application and infrastructure owners to execute on remediation of those findings in an evergreen manner.
- Actively engage and advise the LOB on Internal Audit and Operational Risk activities.
- Ran cybersecurity operations control functions for a line of business . Controls included DLP (Data Leakage Prevention) Incident Management, Privileged Access Management Monitoring and Privileged Session Monitoring. Activities included documenting engagement model, establishing respective RACIs, building relationships with respective stakeholders and executing on the control requirements.
- Responsible for testing application security and data security controls for the line business as part of an annual self-identified risk assessment efforts.
- Owned the monthly/quarterly executive reports on operational KPIs/KRIs to senior management
2016 : Present
JPMorgan Chase & Co.
Lead Information Security Manager (VP)
- Led a global technology team of 30 professionals, responsible for the 24x7 Level 3 support of the global IT Security infrastructure (40+ products and 3000+ systems), split across 4 locations : New York, Montreal, Hong Kong and Bangalore
- Built the L3 Operations team in Montreal and Bangalore, ensuring follow-the-sun coverage all while reducing cost of coverage for senior operations expertise.
- Successfully introduced over 15 IT Security production services/applications in the Morgan Stanley’s distributed infrastructure.
- Introduced a SME (Subject Matter Expert) based support model resulting in advanced and focused support on the ever increasing number of IT Security products, providing for best quality of service for our clients
- Partnered and influenced the establishment of Morgan Stanley’s first IT Security Event Management team.
- Delivered key process changes in Incident and Problem Management based on the ITIL framework, resulting in increased overall environmental stability.
- Responsible for the review of critical audit items affecting security controls (perimeter security, privileged access management), devised action plans and led the remediation efforts.
2009 : 2016
Morgan Stanley
Enterprise Security Platform - Global Lead (VP)
- (2001 - 2002) Bank on New York, New York - Coordinated and executed client connectivity migrations from legacy to next generation firewall platforms
- (2002 - 2004) Custom Computers Specialists, Hauppauge NY - Led several teams of technicians in the deployment of Cisco WiFi services across 30+ NYC public schools
- (2004 - 2009) Morgan Stanley, New York NY - stood up the IT Security Deployment team from ground up, introducing processes and standards around hardware procurement, deployment and inventory management. Deployed numerous IT Security solutions globally, covering a wide scope of security technologies (Firewalls, IDS, Secure Email, Kerberos, SecurID, Radius). Coordinated and executed multiple migrations of End of Life infrastructure (Solaris, PIX, Checkpoint), moving hundreds of client applications to the state-of-the-art infrastructure (Linux, Juniper Netscreens & SRX).
2001 : 2009
Professional Inter-Networking Group
Network Engineer
Responsible for global delivery and support of a portfolio of content delivery services like web caching, streaming media, and news feeds. Provided Sales Engineering coverage and led the effort in building a 24x7 NOC in NY.
2000 : 2001
Edgix Corporation
System Engineer
- Part of a service delivery team, responsible for the AOL (America Online) dial-up network expansion of 20,000 modems monthly, reaching AOL’s 20 million user milestone during my tenure.
- Promoted to a team lead in 1999, coordinating and overseeing workload for a team of 7 installation engineers
1998 : 2000
UUNET Technologies, Inc.
Dial Access Network Engineer III
Company:
JPMorgan Chase & Co.
Spoken Language:
Albanian, English
Profile Photo
