Rajesh Varma is a management consultant with more than 25 years of experience serving multinationals in Cyber-Security, IT, risk management and governance best practices.
Key organizations worked with: KPMG, Deloitte, Tatas, SAP Asia, Sun Microsystem, HP, ARIBA.
Canadian clients executed projects for: Top 3 Canadian banks – CIBC, TD, RBC; Ontario Provincial Ministry of Finance, Toronto Stock Exchange
Experience
Rajesh Varma is a management consulting professional with more than 25 years of multi-faceted experience in Cyber-Security, IT Consulting, Risk Assessment, IT Governance; Compliance/SOX/ Operational audits; Outsourcing Governance, Policy, Process and Controls development. He has worked for well-respected and prestigious multi-national organizations in the fields of consulting, IT products & services before starting his own consulting practice. For the last 10+ years he has been providing services as an independent management consultant to Canadian clients in financial, and public sectors. He brings a global perspective - having lived, worked, and executed projects in India, USA, Europe, Middle East and Asia Pacific. This international exposure enables him to work with people of different cultures at all levels of the organizations – boards, CxOs, as well as functional managers. He has proven capability in adapting, envisioning and creating successful outcomes in challenging situations. He is a great collaborator, effective communicator, team contributor, with a passion for action and results.
KEY AREAS OF EXPERIENCE • Cyber-security, IT & Operational Risk Assessments: Using industry frameworks like COBIT, COSO, ISO, CSA etc. – analysis of IT security risks and development of strategies to mitigate the risks. • Audits: Risk based approach to internal, compliance, IT GCC/infrastructure/application audits – including planning & execution, documentation of results, communication of findings to management/Boards. • Controls Review and Design: Design and review of internal controls for internal controls over financial reporting (ICFR) for SOX compliance; SWIFT Customer Security Program (CSP) • IT Governance: IT process maturity assessments using ITIL/COBIT frameworks, designing of roadmap, development of IT policies and procedures, controls design and remediation. • Outsourcing Governance: Development and role-out of program for risk-based third party governance
Education and Professional Certifications • Bachelor’s of Engineering and an MBA from University of Delhi, India • CISSP • CIA • CISA • CRISC • ITIL & COBIT Foundation • SAP Security – Certified Consultant
