Suchismita
Chatterjee
Cybersecurity
Extensive experience in cybersecurity protocols, risk management, and compliance with frameworks like SOC2, HIPAA, and NERC
DevOps
Experience with DevOps tools like Jenkins, Bamboo, and Ansible, with a focus on CI/CD pipelines and automation
DevSecOps
Automation
Vulnerability management
Experience in vulnerability assessment, risk assessment, and remediation, including patch management and compliance audits
Cloud Security
Designed and implemented security protocols across AWS, Azure, and GCP, focusing on protecting sensitive data and ensuring compliance
Overview
Chatterjee’s deep expertise in cybersecurity protocols and IT risk management across diverse platforms makes her an invaluable asset to the organization’s evaluation team.
With over a decade of specialized experience in IT infrastructure and security architecture, Chatterjee brings extensive knowledge in navigating complex regulatory frameworks, including SOC2, HIPAA, HiTrust, and GDPR compliance. This expertise provides a thorough and insightful perspective for evaluating technical submissions.
Throughout her tenure in the utility and finance sector, Chatterjee has developed advanced cloud security protocols and implemented automated compliance systems that safeguard sensitive data across platforms such as AWS, Microsoft Azure, and Google Cloud. She has a particular focus on securing North American Electric Reliability Corporation (NERC) data, managing the Bulk Electric System Cyber System Information (BCSI) repository, and overseeing complex Identity and Access Management (IAM) gateways for large user bases. Her ability to deliver end-to-end secure solutions within risk management frameworks has established her as a leading Subject Matter Expert (SME). Earlier in her career, Chatterjee worked in numerous consulting firms, advising Fortune 100 clients in the banking and financial sectors on implementing complex regulatory frameworks. Her innovative approach to security architecture and platform controls has set new industry standards for enterprise-level protection, significantly reducing vulnerability risks across various technology stacks.
Top Awards
Global Recognition Awards
Cybersecurity and Risk Management Judging
Cybersecurity Excellence Awards
Cybersecurity Architect of the Year
Accomplishments
Suchismita Chatterjee is a cybersecurity specialist with over a decade of experience in IT infrastructure, security architecture, and cloud security. She has designed and implemented security protocols across AWS, Azure, and GCP platforms, focusing on protecting sensitive data and ensuring compliance with regulatory frameworks like SOC2, NERC, and NIST. Chatterjee’s expertise spans complex risk management strategies, automated compliance systems, and innovative platform controls that enhance enterprise-level security. Her successful integration of complex Single Sign-On (SSO) systems within the NERC-CIP environment, managing over 40,000 users in a BCSI repository, showcases her phenomenal expertise & hands-on understanding in this specialized area.
Chatterjee has earned numerous accolades and widespread recognition from her clients for her exceptional contributions to the cybersecurity field. A CISM-certified professional, she also serves as a section editor for ESP Journal. She was honored to deliver the keynote address at the ICICCS 2024 conference. Her significant contributions to cybersecurity have been featured in various esteemed science and technology journals, including the IJSR, IJMFR, ESP, and IJIRCT. Beyond her professional achievements, Chatterjee is passionate about wildlife conservation. Her love for animals inspired her to develop an innovative (In-flight) app designed for wildlife enthusiasts, enabling them to track and spot animals in national forests and parks through advanced AI mapping systems. She has applied for patent for this groundbreaking application, which combines her technical expertise with her dedication to nature.
Chatterjee’s expertise and mentorship have played a pivotal role in the success of the startup Kalkey, where she volunteered as a Cybersecurity mentor. Her “Capstone Project” idea stands out as a major accomplishment, offering newcomers valuable hands-on experience in DevSecOps and automation. Through this initiative, she has provided them with critical exposure to the world of automation technologies, helping to bridge the gap between theory and real-world application.
Top Certifications
Certified Information Security Manager
Issued by ISACA
Cloud Security and Devops Automation
Issued By SANS-2019
-
May 2021 - Present
Cybersecurity Product Specialist Expert
Pacific Gas and Electric Company
✧ Responsible for the operational management, configuration, monitoring, and reporting of related product(s) or service(s).
✧ Respond immediately to security incidents and provide post-incident analysis.
✧ Defend systems against unauthorized access, modification, and/or destruction.
✧ Document and manage Cybersecurity processes, procedures, policies, and control documentation.
✧ Train peer employees in product support, security awareness, protocols, and procedures.
✧ Collaborate with stakeholders and partner teams on the planning, implementation, and rollout of cyber programs and solutions.
✧ Partner with Cybersecurity, Compliance teams, and other key stakeholders to alert or resolve detected product anomalies.
✧ Facilitate/Lead Root Cause Analysis.
✧ Research and recommend security controls and tools upgrades.
✧ Introduce new innovative solutions that enhance the existing capabilities of the product(s) or service(s).
✧ Develop methods of automation and optimization.
✧ Partner with peers to develop the strategic vision and understand how it applies to the targeted products or services.
✧ Understand the industry’s product positioning, the product’s key benefits, and the product’s targeted users.
✧ Partner closely with the vendor to influence the product’s future capabilities.
✧ Work closely with cross-functional teams to troubleshoot and resolve complex operational issues.
✧ Drive conventions and standards (such as usage or configuration) across multiple products to maximize user experience.
✧ Skills: Control, Vulnerability Assessment, Project Planning, IT Risk Management, IT Security Policies & Procedures, Information Security Management, Technology Change Management, Disaster Recovery, Technology Product Development, IT Strategy, NERC-CIP, IT Security Assessments.2021 -
May 2021 - Present
Cybersecurity Specialist Expert
World Wide Technology · Full-time (United States)
Skills:
✧ Cybersecurity
✧ Program Management
✧ Product Leadership2021 -
Jul 2018 - Jan 2025
Risk and Advisory practitioner (Compliance, Assurance and IA)
Deloitte (United States)
✧ Work in the DevSecOps projects, where chalked out the integration method of the various DevOps tools with security features and tools to tighten and secure the whole DevOps process flow.
✧ Work on the GAP analysis and GAP remediation for Audit Azure SOC1, SOC2 Operations, and Risk Management.
✧ Work on the SOC/SOX/HIPAA/HiTrust/FedRamp/GDPR regulatory framework and Audit for Patch Management and Compliance.
✧ Work with Ansible and Playbook.
✧ Experience in Docker containerization.
✧ Experience with SSO/F, Identity and Access areas control, security check, and management.
✧ Work on AWS policy drift and created the automation of the AWS resources with Python.
✧ Work in the Risk Assessment and GAP Analysis for various cloud practices.
✧ Work on the maintenance of privileged accounts with PowerShell scripting and Active Directory knowledge.
✧ Work on the appropriate approach to the security protocol of various build and CI tools including VSTS, Jenkins, and Maven.
✧ Initiate and examine Twistlock and Aqua roles in securing the DevOps pipeline.
✧ Worked on the Secrets Manager to enhance centralized security during the automation process in the CI-CD pipeline.
✧ Experience in working on DevOps/Agile operations processes and tools (Code review, unit test automation, Build & Release automation, Environment, Service, Incident, and Change Management).
✧ Experience in all facets of the full CM process with tools such as SVN, GIT, Perforce, Jenkins, Bamboo, Chef, and Puppet.
✧ Experience in development and configuration with software provisioning tools like Chef, Puppet, and Ansible.
✧ Experience with Amazon Web Services (AWS) and the configuration of various Amazon products (Amazon EC2, Elastic Load Balancing, Auto Scaling, Amazon S3, Amazon SES, Amazon CloudFormation, Amazon OpsWorks, Amazon SNS, Amazon IAM, Amazon CloudWatch, Amazon Elastic Beanstalk, Amazon RDS).
✧ Configure and deploy to Application Servers WebLogic and WebSphere.2018
Experience
-
Jan 2017 - Jul 2018
DevSecOps/AWS Security Advisor & Compliance Lead
Assurant Labs-Contract (United States)
✧ Developed and advised relevant IT general control and implementation procedures of ITGC in a cloud-native environment.
✧ Part of the team that built internal guidance on audit quality and technical frameworks for auditing Linux, AWS DB, Windows, and network security.
✧ Worked on the initial draft of the SOC2 + HiTrust framework for testing platform-level controls and defined the code change requirements for compliance.
✧ Worked on GAP analysis and remediation for internal readiness of SOC Type I/II audits.
✧ Served one of the largest partner financial and insurance sectors, coordinated with teams in over 10 countries, and led the infrastructure audit landscape across 100+ servers and 200+ databases globally.
✧ Traveled to multiple locations within USA teams for PCAOB audits, audit quality assessments, and technical training on UNIX and cybersecurity.
✧ Skills: NEEC-CIP2017 -
Aug 2016 - Jul 2018
Graduate Teaching Assitant
UNT College of Business (Denton, Texas)2016 -
Sep 2017 - Nov 2017
Open Source Developer AND DevOps engineer
GSATi (GSAT, Inc.)
Dallas/Fort Worth Area
✧ Writing user stories.
✧ Interacted with project stakeholders to elicit, analyze, and document project requirements.
✧ Write automated tests with Behat and Selenium, executed from the CrossBrowserTesting service during deployment, and continually tested in production using New Relic Synthetics.
✧ Used to test in the manual testing environment.
✧ Created and executed the test tickets in JIRA.
✧ Tracked the progress of the project in Confluence.
✧ Reposted the code and checked it around in GitHub.
✧ Helped to decide and implement a Continuous Integration (CI)/Continuous Delivery (CD) tool.
✧ Worked as part of the team for the installation of Jenkins, Bamboo, and CircleCI.
✧ Implemented automation between testing platforms, hosting (Pantheon and AWS), Jira, and Slack. Automated as much as possible our manual processes in open-source development to increase velocity and reduce waste.2017 -
Aug 2015 - Jul 2016
Graduate Teaching Assistant
University of North Texas (Texas,Denton)2015 -
2012 - 2014
System Engineer
ESBI Industries Ltd.
✧ Estimated time required to deliver project artifacts and reports progress toward delivery goals throughout the project.
✧ Interacted with project stakeholders to elicit, analyze, and document project requirements.
✧ Analyzed and prepared the users' 'AS-IS' workflow scenarios and the 'TO-BE' business processes.
✧ Organize large data sets.
✧ Outline the methodology for analyzing data.
✧ Expertise in Software Development Life Cycle (SDLC), which involves requirement gathering, requirement analysis, functional design, implementation, and enhancement of projects in Salesforce.com.
✧ Used the sandbox for testing and migrated the code to the deployment instance after testing.
✧ Profoundly did Continuous Integration using Jenkins and Bamboo, which requires developers to integrate code into a shared repository several times a day.
✧ Extensive knowledge on design and implementation of CI-CD (Continuous Integration and Continuous Delivery) Pipeline using tools like Jenkins and Release Management.
✧ Deploy and monitor scalable infrastructure on Amazon Web Services (AWS) & configuration management using Puppet.
✧ Hands-on experience with DevOps tools like Chef, CICD, or similar.
✧ Migrated CVS Version Management tool to Subversion.
✧ Providing end-to-end SCM consultation and implementation.
✧ Experience with Linux systems and virtualization in a large-scale environment.
✧ Provided the training to the internal business users to use the application and develop their own custom report.
✧ Migrated data from MS Excel/CSV files to Salesforce using Data Loader.
✧ Experience with JIRA, Confluence, and Microsoft TFS to track projects and assisted business projects on JIRA.2012
Skills
Cybersecurity
DevOps
DevSecOps
Automation
Journals
S Chatterjee
International Journal of Science and Research (IJSR) 13 (Issue 12), 1163-1171
S Chatterjee, SK Malaraju
International Journal For Multidisciplinary Research 7 (1), 1-12
S Chatterjee
International Journal of Science and Research (IJSR) 13 (6), 1931-1935
S Chatterjee
International Journal on Science and Technology 14 (3)
S Chatterjee
IJIRCT 8 (2), 1-8
S Chatterjee
ESP Journal of Engineering & Technology Advancements 1 (2), 272-279
S Chatterjee
ESP Journal of Engineering & Technology Advancements 1 (1), 273-281
S Chatterjee
Journal of Advances in Developmental Research 12 (2), 1-12
S Chatterjee
International Journal For Multidisciplinary Research 3 (4), 1-10
S Chatterjee
International Journal of Innovative Research in Engineering …
S Chatterjee
International Journal of Science and Research (IJSR) 10 (4), 1427-1433
S Chatterjee
International Journal For Multidisciplinary Research 2 (6), 1-12
S Chatterjee
International Journal For Multidisciplinary Research 2 (4), 1-13
S Chatterjee
INTERNATIONAL JOURNAL OF INNOVATIVE RESEARCH AND CREATIVE TECHNOLOGY 6 (2), 1-11
Recogized Coverage
Fox 40
Global Recognition Appoints Suchismita Chatterjee as Judge
Get in touch
ADDRESS: Irving, Texas, USA
EMAIL:suchi.chatterjee19@gmail.com