Shazia Ashraf
Summary
PERSONAL PROFILE Experienced Product Manager skilled in team and stakeholder coordination and leadership. Builds rapport and constructive relationships to achieve project objectives. Engages cross-functional teams to achieve product function and performance improvements within deadlines.
Solution-focused Cyber Security professional with vulnerability analysis and Risk & Compliance expertise. Monitors new and emerging technologies to innovate risk management. Careful to test and review security measures, perform detailed risk assessments and comply with legal requirements. Proactive in monitoring computer virus reports and responding accordingly.
Overview
7
7
years of professional experience
4
4
years of post-secondary education
1
1
Certification
Work history
Senior Associate Product Manager
JP Morgan
2021.04 - Current
- Responsible to develop and sustain the key Technology Products necessary to deliver upon the Governance, Risk and Controls responsibilities of the Cyber Security function
- Working with development teams (US and India) by understanding software development lifecycle and agile development process to create new solutions by helping optimise existing technology and identifying new capabilities
- Working at the intersection of business and technology by interacting with colleagues in various lines of businesses and Cyber Security disciplines
- Using data modelling techniques to identify ways in which the firm can operate more effectively.
Controls and Compliance Analyst
Scottish & Southern Energy, SSE
2018.07 - 2021.04
- Monitoring the external and internal environments for emerging threats and advise relevant stakeholders on the appropriate course of action
- Managing vulnerabilities and working with teams to resolve or mitigate these, whilst conducting assessments of existing and new software deployments
- Ensuring controls are proportional to the risk and threat and complying with standards such as Cyber Essentials Plus, GDPR, PCI-DSS and the NIST framework
- Advising and guiding different parts of the organisation and external stakeholders on compliance with our policies and standards, whilst responding to security requests tickets.
IT Graduate, Scottish & Southern Energy, SSE
2016.09 - 2018.07
- This was an excellent opportunity to work for the U.K.'s top 6 leading Energy Company
- I got exposure and experience to move around in various parts of IT through 3-6-month rotations.
Education
BA (Hons) - Management Technology and Enterprise
Glasgow Caledonian University
HND - Administration & IT
City of Glasgow College
Glasgow, Glasgow City 2012.08 - 2016.06
GCSEs -
Shawlands Academy
Glasgow, Glasgow Cityundefined
Skills
- Data collection and analysis
- Product training
- Business planning
- Product development
- Research and trend analysis
- Vulnerability analysis
- Business Impact Assessments
- Communication skills
- Knowledge of Cyber Essentials (NIST, ISO, COBIT)
- Knowledge of Vulnerability Managements Suites (Qualys, Kenna & CCS)
Certification
- Certified Scrum Product Owner
- Certified AWS Cloud Practitioner
Timeline
Senior Associate Product Manager
JP Morgan
2021.04 - Current
Controls and Compliance Analyst
Scottish & Southern Energy, SSE
2018.07 - 2021.04
IT Graduate, Scottish & Southern Energy, SSE
2016.09 - 2018.07
HND - Administration & IT
City of Glasgow College
2012.08 - 2016.06
BA (Hons) - Management Technology and Enterprise
Glasgow Caledonian University
GCSEs -
Shawlands Academy