Skip to main content
Haya UserHU
Open to opportunities

Haya User

@hayauser

Technology risk and control governance leader in regulated financial services.

India
Message

What I'm looking for

I’m looking for a role where I can lead technology risk and control assurance, govern vulnerability remediation, and deliver executive KRI/KPI reporting—strengthening control frameworks in regulated environments using ISO/NIST/COBIT/SOX-aligned practices.

I’m a Technology Risk & Controls Governance professional with 15+ years of IT experience, including 6+ years leading enterprise technology risk, control assurance, vulnerability governance, and remediation programs in highly regulated global financial environments. I conduct risk assessments, evaluate control effectiveness, and drive remediation governance through continuous monitoring and executive risk reporting, aligned to ISO 27001, NIST CSF/RMF, COBIT 2019, and SOX.

I integrate Enterprise Risk Management into the three lines-of-defence model to assess, prioritize, and manage technology risks in line with the organization’s risk appetite. In my recent work at JPMorgan Chase, I reduced open critical technology risk findings by 68% and directed remediation and closure activities across 1,000+ security and control findings, while maintaining SLA-compliant closure outcomes (including a 94.83% closure rate for infrastructure-owned vulnerability findings).

Experience

Work history, roles, and key accomplishments

JPMorgan Chase logoJC
Current

Technology Risk & Controls Assoc

JPMorgan Chase

May 2020 - Present (6 years 1 month)

Led enterprise-wide technology risk assessments and control assurance reviews across applications, infrastructure, and operations to evaluate control effectiveness and regulatory compliance. Reduced remediation timelines by 25% and achieved 94% closure rate by managing issues in ServiceNow GRC/CORE, while delivering executive risk reporting and governance metrics.

Technology Risk ManagementRCSAControl EffectivenessVulnerability ManagementRemediation GovernanceISO 27001
JPMorgan Chase logoJC

Technology Operations Analyst

JPMorgan Chase

May 2016 - May 2020 (4 years)

Oversaw global incident management and performed root cause analyses for infrastructure and application incidents, maintaining 98% SLA compliance and improving service reliability. Coordinated cross-functional incident response, developed ITIL-aligned runbooks/knowledge articles, and administered access management and service requests under security and operational governance.

Incident ManagementSLA ManagementAccess ManagementSecurity Governance
HP

Senior Technical Support Engineer

Hewlett Packard

Feb 2011 - Nov 2015 (4 years 9 months)

Maintained enterprise hardware/software environments to ensure system availability and performance aligned with service level agreements. Enforced network security controls, applied security patches, managed access provisioning/de-provisioning, and coordinated vendor escalation to ensure timely resolution and minimize operational disruptions.

System AdministrationNetwork ControlsPatch ManagementSystem Access ProvisioningVendor EscalationIncident resolution

Education

Degrees, certifications, and relevant coursework

SD

SDMCET, Dharwad

Bachelor of Engineering, Computer Science

2006 - 2010

Earned a Bachelor of Engineering in Computer Science at SDMCET in Dharwad from 2006 to 2010.

Tech stack

Software and tools used professionally

Gmail logo

Gmail

Jira logo

Jira

Root Cause logo

Root Cause

ServiceNow logo

ServiceNow

Evidence logo

Evidence

Enhance logo

Enhance

Jan logo

Jan

Availability

Open to opportunities

Location

India

Authorized to work in

India

Job categories

Technology Risk InternCybersecurity GovernanceInformation Security GovernanceTech RiskTechnology Risk AnalystCybersecurity Risk And Compliance AnalystRisk Management AssociateRisk & Compliance (GRC) AnalystRisk And Compliance AnalystCybersecurity Risk Management Analyst

Skills

Technology Risk ManagementCyber Risk ManagementOperational RiskRisk AssessmentRisk Control Self Assessments (RCSAs)Regulatory ComplianceAWS Cloud RiskAI Risk ControlsIntegrated Risk ManagementControl DesignGap AnalysisIssue ManagementVulnerability ManagementRemediation ManagementRoot Cause AnalysisAudit ReadinessInternal ControlsCompliance MonitoringRSA ArcherJiraTalosData GovernanceISO 27001NIST CSFCOBIT FrameworkEnhanceEvidenceGmailJanRoot CauseServiceNow

Interested in hiring Haya?

You can contact Haya and 90k+ other talented remote workers on Himalayas.

Message Haya

People also viewed

View all talent

Find your dream job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan