JUHI VASISHT
Ashburn
Summary
Led FedRAMP Program Management Office at GSA HQ, overseeing cloud service provider and agency authorization processes. Developed and implemented key cloud industry guidance and templates available on fedramp.gov. Over 20 years of experience in Federal and commercial governance, risk, and compliance programs. Proven track record in managing risk and compliance projects effectively.
Overview
22
22
years of professional experience
Work History
FedRAMP Senior Manager
MasterControl
Virginia
05.2023 - Current
- Achieved FedRAMP Moderate Authorization for Qx Gov SaaS product.
- Enhanced Gov cloud strategy efficiency by 25% through architectural improvements.
- Maintained security levels for 100% of in-boundary systems to ensure FedRAMP compliance.
- Implemented a robust security framework, reducing non-conformities by 60%.
- Managed $5 million budget for FedRAMP and cybersecurity framework implementation.
- Elevated cybersecurity standards with a 45% increase in threat detection efficiency using advanced tools.
- Facilitated training sessions to boost team performance and operational efficiency.
- Mentored junior managers to develop leadership skills within teams.
FedRAMP Security Manager
Code42 Inc
Virginia
10.2019 - 05.2023
- Achieved FedRAMP Moderate Authorization for Incydr, significantly enhancing product security and compliance.
- Led organization-wide initiatives, increasing compliance efficiency by 25% for flagship SaaS solution.
- Developed robust security framework that reduced breaches by 30% through improved protocols.
- Executed comprehensive audits of existing security systems to identify vulnerabilities and implement improvements.
- Established and enforced security policies and procedures to safeguard confidential information.
Led IT Audit Management in Financial Technology
Common Securitization Solutions
Bethesda
07.2018 - 06.2019
- Reduced audit processing time by 15% through the integration of automated GRC and auditing tools.
- Managed audits across Freddie Mac and Fannie Mae Cloud infrastructure with a total audit volume of 500,000 records.
- Oversaw a $2 mill. Budget for IT audit projects, ensuring optimal allocation of resources.
- Reduced manual audit errors by 20% by introducing CRT-based auditing solutions.
Led Enterprise wide GRC activities
Neustar Inc
Sterling
01.2013 - 05.2018
- Implemented advanced security frameworks and measures, improving data protection by 35% for all cloud-based applications.
- Developed a unified compliance framework, reducing audit preparation time by 40 hours annually.
- Oversaw migration projects involving 20 AWS and Azure environments in a single year.
- Strengthened the company's audit compliance rate to 95% by integrating CSF and ISO 27001 principles into daily processes.
Led FedRAMP, GSA Program Management Office (NIST SP 800 53)
EGlobalTech Inc
Washington
09.2013 - 06.2015
Led ITGC External Audits
PricewaterhouseCoopers (PwC)
McLean
04.2012 - 09.2013
Led Technology Governance Risk and Compliance Integration
ARK Solutions Inc
Chantilly
02.2009 - 04.2012
Led Business Process Risk Management
Grant Thornton LLP
McLean
03.2008 - 02.2009
Performed IT Risk Assurance and Services Management
Deloitte LLP
McLean
01.2004 - 03.2008
Performed SOX 404 Compliance
Sterlite Software
Richmond
02.2004 - 01.2005
Education
Master of Science - Information Systems
Monash University
Melbourne, Australia12.2002
Bachelor of Arts - Political Science
Delhi University
New Delhi, India12.1999
Skills
- FedRAMP program management
- Sarbanes-Oxley compliance
- NIST 800-53 framework
- IT audit management
- Security framework implementation
- Cloud architecture optimization
- FedRAMP compliance
- Risk assessment methodologies
- Compliance strategy development
- AWS cloud services
- Azure cloud solutions
- Team training facilitation
- Leadership mentoring
- Influencing and negotiating
- Budget administration
- Cross-functional communication
- Cross-functional team leadership
- Reporting oversight
- Resource allocation
- Budget oversight
- Documentation and reporting
- Project management
- Team collaboration
- Employee coaching and mentoring
- Written communication
- Schedule management
- Cybersecurity threat detection
- Incident response planning
- ISO 27001/27002 standards
- Cybersecurity framework (CSF)
- COBIT governance
- CIS controls
- Information security management system (ISMS)
Affiliations
Volunteer Program Assistant
Agape Pregnancy Center of Loudoun (formerly Birthright of Loudoun), Leesburg VA
April 2022-April 2024
- Layette & Maternity Rooms - Sorting donations
- Help with Mailings
- Fundraising Events (bottle drives, baby showers, diaper drives, etc.)
- Assist moms and dads with Peer Counselors
Outreach Volunteer
Dulles South Soup Kitchen, Sterling VA
April 2021-April 2023
- Dinner Distribution
- Pick meals up, start and end dinner distribution to signed up clients
SERVE Volunteer
Northern VA Family Service (NVFS), Manassas VA
March 2023
- Shelter Meal Provider to people experiencing homelessness.
- Provide, prepare and deliver nutritious meals for about 65 guests at the SERVE Family Shelter on weekends and holidays.
Workplace Mentor
Deloitte, PwC, Code42 Inc, MasterControl Software Solutions
2005-Present
- Participated in company-wide mentorship program to train junior team members on audit and compliance strategies, frameworks and assessment management.
- Provided coaching, guidance and feedback to 30 + individuals in a cross-functional, cloud project environment.
- Acted as a resource for junior employees, providing guidance and support on FedRAMP and other cloud projects
- Mentored and coached team members to help them reach their professional goals.
Timeline
FedRAMP Senior Manager
MasterControl
05.2023 - Current
FedRAMP Security Manager
Code42 Inc
10.2019 - 05.2023
Led IT Audit Management in Financial Technology
Common Securitization Solutions
07.2018 - 06.2019
Led FedRAMP, GSA Program Management Office (NIST SP 800 53)
EGlobalTech Inc
09.2013 - 06.2015
Led Enterprise wide GRC activities
Neustar Inc
01.2013 - 05.2018
Led ITGC External Audits
PricewaterhouseCoopers (PwC)
04.2012 - 09.2013
Led Technology Governance Risk and Compliance Integration
ARK Solutions Inc
02.2009 - 04.2012
Led Business Process Risk Management
Grant Thornton LLP
03.2008 - 02.2009
Performed SOX 404 Compliance
Sterlite Software
02.2004 - 01.2005
Performed IT Risk Assurance and Services Management
Deloitte LLP
01.2004 - 03.2008
Master of Science - Information Systems
Monash University
Bachelor of Arts - Political Science
Delhi University
Similar Profiles
Percy SeguraPercy Segura
Enterprise Engineer (Systems) at MasterControlEnterprise Engineer (Systems) at MasterControl
Cassidee J. CapunayCassidee J. Capunay
Senior Technical Writer at MASTERCONTROLSenior Technical Writer at MASTERCONTROL
Jacob DenkersJacob Denkers
Software Quality Assurance Engineer 3 at MasterControlSoftware Quality Assurance Engineer 3 at MasterControl
Sehar KaleemSehar Kaleem
OR Technician /Medical Receptionist at NOVA GastroenterologyOR Technician /Medical Receptionist at NOVA Gastroenterology
Moizz TahirMoizz Tahir
Sales Representative at AT&TSales Representative at AT&T