Cyber resilience: the gateway to new-age data security

by | Nov 4, 2022 | Data Privacy, GDPR, Governance Risk and Compliance, Managed Services

Experts argue and rightly so that cyber resilience is more than a mere buzzword today. It has been and will always be relevant. As any business grows and modernizes, it demands higher and more efficient governance. A cyber resilience framework pertains to end-to-end governance to keep the security of the business intact. In fact, cybersecurity and resilience solutions are among the most sought-after managed cyber services of all times. Compromised data security has always been heavily taxing.

According to recent research, cybercrime damage is expected to reach $8 trillion USD by 2023. Is your organization part of this pool or does it stand aside?

Technology comes with its own pluses and minuses. It brings with it tons of opportunities to grow but also carries some challenges that cannot be overlooked. As enterprises embrace modern ways of conducting business and move closer to digitization, vulnerabilities associated with data and technology increase. The rising number of data breaches and cybersecurity incidents is a warning for businesses around the world to rethink their risk management strategies.

Today, companies need more than just an information security plan or governance policy to fight hacks and cyber-attacks. They need end-to-end managed cyber services to prevent security incidents, including a bulletproof action plan to counter them when needed. And, that’s where cyber resilience solutions come into the picture.

What is cyber resilience?

Simply put, cyber resilience is the ability of organizations to withstand cybercrime, prepare for possible threats, and build an action plan to recover from it if it ever hits them. It is a comprehensive framework that aims to protect the entire organization, including its people, processes, and information from cyber crises. The holistic integration of managed cyber services can help you plan this strategically.

How is cyber resilience different from cybersecurity solutions?

Broadly speaking, cyber resilience and cyber security sound synonymous. The two terms are closely related, but cannot be used interchangeably. While cybersecurity mainly focuses on protecting business information, cyber resilience solutions are about protecting the business from attacks that can potentially disrupt the entire operation. Cyber resilience is a more integrated and proactive approach that includes cybersecurity as a key element.

Read the case study: Khan Bank mitigates business risk and attains unified governance with Estuate’s GRC framework.
READ NOW

How is cyber resilience different from cybersecurity solutions?

Broadly speaking, cyber resilience and cyber security sound synonymous. The two terms are closely related, but cannot be used interchangeably. While cybersecurity mainly focuses on protecting business information, cyber resilience solutions are about protecting the business from attacks that can potentially disrupt the entire operation. Cyber resilience is a more integrated and proactive approach that includes cybersecurity as a key element.

But, why should you care?

Almost all data-driven organizations have a governance policy or risk management framework in place. You would too. But given the big data breaches at companies like Facebook and Equifax, do you feel good about your security measures?

As your data and business scale, cyber threats increase accordingly. Your business is vulnerable to threats like sensitive data theft, insider breaches, poorly managed processes, and technology-driven attacks. In this high-risk digital landscape, attacks can happen anytime, anywhere. A cyber resilience framework can protect you from security incidents over the long term without disrupting business operations. A skilled cyber managed service provider can help.

Watch: Actionable Data Governance: How to manage my sensitive data risk?

How to achieve cyber resilience in your organization?

  1. Identify the weak spots
  2. Protect the critical IT assets
  3. Detect the early signs of malpractice
  4. Respond with immediate effect
  5. Recover as holistically as possible

Step 1: Identify the weak spots

For a scalable cyber resilience strategy framework, you must first take a closer look at your organization’s vulnerabilities. Where is all your sensitive information stored? Who are the people working with sensitive business information? What equipment is used to perform sensitive processes? Conduct a thorough hygiene check of your business and identify the areas where cyber resilience solutions are urgently needed.The first step to avoiding a data breach in your enterprise is thorough internal awareness.

Read the case study: Estuate helps Al Hilal Bank implement enterprise-wide GRC strategy for long-term success.
READ NOW

Step 2: Protect the critical IT assets

Once you have identified your most critical assets and processes, you need to develop a strategy to protect them from cybercrime. This includes changing security policies, strengthening device encryption, limiting unauthorized use of external devices, educating employees on the importance of cybersecurity solutions, and implementing best practices to prevent malicious activity.

The increasing influx of new technologies makes this step even more important. Take blockchain, for instance. The advent of blockchain has revolutionized the cybersecurity solutions space.

Step 3: Detect the early signs of malpractice

In addition to proactively preventing cybercrime, you must also closely monitor your business processes, employee activities, and sensitive information. Early detection of fraud or malware can minimize the drastic impact on business operations. Any troubling activity must be reported immediately and appropriate action must be taken.

Read: the five steps to enterprise GRC implementation

The 5 steps to a cyber-resilient enterprise
Strict and timely adherence to these steps can help your business with cyber resilience

Step 4: Respond with immediate effect

Cybercriminals are never at rest, and despite the security measures taken, your company can experience a security incident. It could be something as minor as an employee using a personal device for an official task, or as major as the loss of sensitive customer data. As soon as suspicious activity of any kind is uncovered, it must be dealt with immediately and forwarded to the right people in the company to combat it effectively.

Step 5: Recover as holistically as possible

What’s done is done, but you can always mitigate the adversity of cybercrime with the right measures. This step is about the measures that can be taken to ward off malicious activities, prevent them from spreading to different departments, and fix the bug under your control.

The aftermath of a security incident can be devastating. Not only does it hinder business activities, but the company suffers huge financial losses and its brand value is severely impacted. A bulletproof cybercrime prevention strategy is a must for all businesses, regardless of size or type. Cyber resilience is a smart choice to protect your business data, processes, technologies, and employees from cybercrime in the long run.

As most data-driven enterprises today center on software applications, a data protection strategy can prove to be handy. When holistic and properly deployed, such a strategy can form the bedrock for your application testing.

Watch the webinar: Securing and protecting enterprise data.

Unlock robust cyber resilience solutions with Estuate’s GRC framework

We integrate all three pillars of GRC under one umbrella to help you enhance business efficiencies.

  • Corporate Governance
    • Policy creation and management
    • Development of a legal and regulatory framework
    • Information and asset management
    • Enterprise-wide information security awareness
  • Risk Management
    • Business and IT risk assessment
    • Risk monitoring and analysis
    • Third-party risk management
    • Issue management and troubleshooting
  • Regulatory Compliance
    • Regulatory intelligence
    • Compliance design
    • Compliance audits and surveys
    • Reporting and metrics

Want to explore further? Dive in here to learn more about our overall GRC ambit

Our GRC solution span covers a wide gamut of specializations: from Cisco, Imperva, Auryc, and more.

So if you are looking for any assistance in the realm of managed cyber services, we’ll be more than happy to help!

How important do you think cyber resilience is for today’s businesses to survive and thrive? What steps are you taking to protect your company’s data? Let us know on LinkedIn, Twitter, or Facebook. We would love to hear from you!

Get FREE access to our datasheet: Estuate’s Governance, Risk & Compliance Practice.

GET ACCESS

Your Five Step GRC Implementation Roadmap

by | Apr 17, 2020 | Governance Risk and Compliance, Product Engineering

The concept of Governance, Risk and Compliance has been around for some time. Although there is no single, universally accepted definition for GRC, it is basically a comprehensive business strategy that aims at ensuring corporate governance and mitigating enterprise risk while staying in compliance with regulatory policies. It establishes clear guidelines for operations and a mechanism to prevent and fight business risks. It comprises of three main pillars.

Governance, ensuring business processes and corporate policies are practiced throughout the organization.

Risk, identifying the potential areas of risk and preparing the organization to minimize and prevent them.

Compliance, the ability to comply with legal and regulatory requirements and business policies.

For years, businesses have followed old school ways of implementing GRC programs using traditional methodologies such as spreadsheets and in-house tools. However, with emergence of breakthrough technologies like AI, Cloud and automation, the concept of GRC has evolved and modernized.

Although we have been slow in adopting technology-driven GRC practices, lately there has been a significant shift towards businesses leveraging automated GRC strategies at enterprise levels. So much so, that the global GRC market is expected to reach $64.61 billion by 2025.

Today, all modern enterprises need to let go of traditional GRC practices and modernize their approach. But how do you get there? How can you adopt a winning GRC strategy? Here is a five-step GRC implementation roadmap that can help you plan, strategize and implement modern GRC practices effectively in your organization.

Revisit your GRC framework

To start with, you need to review your existing GRC framework and identify the gaps that technology can fill. It would mean redefining what governance, compliance and risk means for your enterprise. A clear understanding of your key business objectives and important business processes will help you adopt the right GRC technology and develop appropriate policies, procedures and guidelines for your business.

Select a GRC Solution

In order to ensure effective functioning of a GRC initiative, it is important that you pick the right implementation partner and an ideal GRC solution for your enterprise. There are tons of GRC tools and hundreds of vendors in the market.Cloud based GRC solutions are most popular nowadays. MetricStream, BWise, SAP, Riskonnect, RSA Archer etc. are some market-leading GRC products available today. Go for a solution that comes with all the features you’re looking for. Also, do your research and select an experienced vendor that can implement GRC within a reasonable time-frame with maximum efficiency.

Project Planning

This step involves chalking out a well-defined GRC implementation plan. A business analyst or project manager appointed by the vendor visits your premises and spends time understanding your existing business processes and policies. He also conducts a risk assessment of your business and identifies areas that need to be protected.

He then develops an integrated GRC plan that best suits your organization, including a detailed demo of the selected GRC product, assigning roles and responsibilities and defining project timelines.

Implement GRC Practices

Once a detailed plan is developed, the next and the most crucial step is implementing GRC practices at your enterprise. Today, most GRC programs are Cloud driven and automated. Implementation involves policy and document management, operational risk management, IT risk management and corporate compliance management. It also includes spreading awareness about the new GRC policies and training people within the organization to practice them.

Monitor and Improvise

Implementing a GRC program is not a one-time activity. It is a continuous business practice and must be followed every day across all departments. It is therefore important to closely monitor and ensure that GRC practices are well followed within the enterprise. Also, since the business world is highly dynamic, you must modernize your GRC platform and revise your policies regularly to match business, industry and regulatory requirements.

GRC is essential because it brings about a stability in the way a business performs. It improves the quality of people, processes and information within an organization providing meaningful insights for better decision making. It is not just a good initiative anymore, it is an essential business requisite. Adopting a modern GRC program leads to a remarkable organizational change. However, the key to successful implementation is to have a clear strategy and take one step at a time.

How is GDPR impacting Indian Data Privacy Laws?

by | Sep 5, 2018 | GDPR, Governance Risk and Compliance

GDPR is a trendsetter in the world of data protection and is widely impacting worldwide data privacy laws. Can we expect something similar in India?

Data privacy is one of the biggest risks that modern businesses face. The use of big data elevates the complexity of this challenge even more. The question is; are you doing enough to fight the risk? If you think installing anti-malware software and conducting an audit every six months is enough to keep your sensitive information safe, you certainly need to revisit your data privacy measures. There have been some mega data breaches in the recent past; at massive business groups such as Verizon, Equifax and even Facebook. These data breaches teach us a very important lesson; no business is completely safe from the risk and cybercriminals are never at rest.

Data privacy is now a matter of universal concern, a serious problem; just like global warming and terrorism. Today, every nation needs stringent data privacy laws and regulations to ensure fair and safe use of sensitive information. With an aim to discuss the various challenges and concerns underlying in the Indian Data Protection Framework, ASSOCHAM recently conducted a Global Data Privacy Summit in Bangalore. The idea behind the summit was to invite views and suggestions from a multi-stakeholder community on the regulatory and judicial processes around nation-wide data privacy concerns.

Several business groups, IT delegates and data privacy enthusiasts from India and other countries participated in the event. The panelists discussed the challenges, opportunities and probable measures on stimulating issues like Big Data, worldwide Data Privacy, and effects of disruptive technologies on Data Protection among many others. Each discussion was followed by an interactive Q&A and networking session.

Estuate too, was a key participant at the event as the GDPR partner. Our Data and Analytics Head, Mr. Vishwas Balakrishna drove the discussion on “The influence of GDPR on global data privacy laws”. “GDPR is a game-changer in the world of data privacy. If nations across the globe get influenced by this revolutionary law and impose similar regulations, the status of worldwide data privacy will be stronger and more resilient in the days to come.” Vishwas stated.

The European Union’s GDPR is a rather bold and revolutionary step against global cyber risk. The law sets stringent restrictions on the usage of personal information of EU citizens. The good thing is, it is not just confined to the European borders, but applies to all companies across the globe. It is a strong, solid measure that strengthens data privacy despite the uncontrollable risk of breaches.

Data privacy is certainly a burning issue in the Indian ecosystem. In order to address this concern, the Personal Data Protection Bill, 2018 has been recently submitted by the Justice BN Srikrishna committee. The proposed bill is similar to GDPR in many ways. It states that “The right to privacy is a fundamental right and it is necessary to protect personal data as an essential facet of informational privacy.” It also binds any person processing personal information of Indian citizens to do it in a fair and reasonable manner. Non-compliance would lead to penalties up to Rs. 15 crores or 4% of business turnover.

Although it is still a proposed bill and is awaiting approval by the Ministry of Electronics and Information Technology, it is a huge step in the right direction towards fighting cybercrime. If implemented, it could potentially change the face of the Indian Data Protection Framework for good.

Top 5 Managed Services for modern enterprises

by | Jun 27, 2018 | Governance Risk and Compliance, Product Engineering

Hiring a Managed Service Provider (MSP) could be your most cost-effective business decision. Here are the top 5 Managed Service offerings that will optimize your IT operations while cutting company costs.

As technology becomes an integral part of all modern businesses, managing IT operations effectively becomes critical too. Not all businesses are equipped with the best IT staff, and not all of them need one.

That’s where Managed Services come to rescue. Managed Service Providers are third-party vendors that specialize in IT services. They undertake the responsibility of maintaining all IT activities on a 24×7 basis.

There are several benefits of hiring a Managed Service Provider. You get expert IT services at low cost while you can focus on your core business goals. However, with so many Managed IT Services available, it can be a bit overwhelming to decide which ones to manage internally and which ones to outsource. Here are the 5 most critical IT operations you might consider outsourcing to a Managed Services Provider.

Managed Network Services

Managed Network Services are a set of hardware and software communication networks that are operated, secured and managed by a third party. It includes networking infrastructure resources like servers, routers and operating systems as well as software solutions like firewall security, managed WAN and LAN and network monitoring services. It is ideal for non-IT businesses to outsource network services to an MSP since it eliminates the cost of the entire network set-up and in-house maintenance.

Monitoring and Help Desk Services

IT operations in an enterprise must be monitored and looked after vigilantly. A little negligence can cause system downtimes, connectivity issues and a deep impact on the end-user productivity. Hiring a dedicated MSP to monitor your IT activities helps you carry out business operations smoothly and fix system errors immediately. It keeps your IT performance worries at bay and allows you to focus on core business activities effectively.

Managed Security Services

All businesses today deal with personally identifiable client information and other confidential business data. Usage of sensitive information implies a direct risk of cyber security incidents. Also, ensuring information security is not just a good practice, it is a mandate. Hiring experts to look after your IT security is an ideal strategy to avoid cyber risk and maintain data security at a fair cost.

Managed Data Storage

In a data-centric world, almost all businesses face the problem of storing huge data sets efficiently. Traditional data storage systems are no longer effective and investing in new-age data warehouses is an expensive affair. The best solution is to let a third-party host store and manage growing business data effectively. Managed Service Providers offer a host of data storage alternatives based on varied business demands. These include shared or dedicated data storage solutions and outsourced database support with massive storage and archival capacity. The most widely adopted data storage service is Cloud hosting, where the MSP stores business data safely over the Cloud.

Managed Application Services

Businesses need numerous apps to ensure efficient business operations. These apps range include but not limited to end user portals, reporting dashboards, advanced analytics, and ERP applications. Managed application services help you build high performing, customized business apps at low cost, and also maintain those applications remotely. Managed application services include designing, building and maintenance of a range of interactive web apps, portals and dashboards, mobile apps for customer engagement and internal communication and a range of platform modernization applications.

Successful entrepreneurs know how to play to their strengths and how to delegate trivial tasks. Managed IT services is a boon for non-IT companies and the industry is gradually picking up pace. Hiring a Managed Service Provider (MSP) for your IT needs is a strategic business move that will optimize your IT operations, while letting you grow your business peacefully.

The Facebook-Cambridge Analytica Scandal: What you need to know

by | Mar 26, 2018 | Data and Analytics, Digital Transformation, Governance Risk and Compliance

The Cambridge Analytica scandal has caused a worldwide debate. Here’s all you need to know about it and more.

You thought Facebook was safe? Well, we all thought so until the infamous Cambridge Analytica scandal shook up social media and global politics like never before.

What is this scandal all about? Should you, as an entrepreneur be more concerned about data security at your enterprise now? This article gives you the inside story of what exactly happened and what you must learn from the Cambridge Analytica data scandal.

Cambridge Analytica is a London based data analytics and political consulting firm incorporated in 2013. It helps political parties with data mining and elections strategies. It all started in 2014 when Aleksandr Kogan, a researcher developed a personality quiz app on Facebook. As much as 270,000 Facebook users installed the app and took Kogan’s quiz. Little did they know that the developers were able to access their personal data through the app. That’s not all; they could access personal information of their “Facebook friends” as well (without their permission).

All this personal information, which should have ideally been deleted, was being saved in a private database and sold to Cambridge Analytica. Allegedly, personal data of about 50 million Facebook users was hacked in this manner. Cambridge Analytica used this information to create about 30 million psychographic profiles to influence elections. The company has worked on elections all over the world, including the Bihar Assembly Elections in India in 2010. It is also said to have a major role in influencing the recent US Presidential Elections.

Quite obviously, this massive scam has affected the social media giant too. Soon after the news was out, the hashtag #DeleteFacebook went viral on social media, impelling people to quit Facebook. The company’s shares immediately tumbled in the stock market, and accounted for a loss of $35 Billion in a single day.

Facebook CEO, Mark Zuckerberg wrote on his account, “We have a responsibility to protect your data, and if we can’t then we don’t deserve to serve you.” He also addressed the media expressing his apologies on the matter and assured that the Facebook team is investigating all applications that use personal user data and auditing suspicious activities more closely.

Cybersecurity incidents affect an enterprise adversely in multiple ways. They lead to legal implications, cause loss of reputation and create financial dents too. But does it affect you? When a data breach as big as that can occur at Facebook, it can affect any business any time. Enterprises collect heaps of information from a variety of devices on a daily basis. The more information you collect, the more accountable you are to protect it and avoid any kind of misuse.

This incident has increased the need for IT security across the globe. It’s time to learn a lesson from the Cambridge Analytica scandal and review your Information Security programs for better. To prevent cybersecurity incidents at your enterprise, you need more than just a data security program. You need to educate your employees about the importance of business data, instill best practices around data privacy and monitor your IT operations more diligently; and continue this throughout the information lifecycle.

Data Governance – What challenges do you face as a CIO?

by | Nov 29, 2017 | Governance Risk and Compliance

Implementing an enterprise-wide Data Governance program sets multiple challenges for CIOs and business owners. What’s holding you back?

In today’s technology driven expanse, enterprises recognize the critical importance of their data. It is not just a strategic asset; it is also growing in volumes at an alarming rate. When left unmanaged, this sheer volume of data proves to be a costly affair in terms of storage and risky in terms of security and maintenance.

This is where data governance comes into picture. Data governance (DG) is a set of multi-disciplinary structures, policies and procedures that encompasses an enterprise’s people, processes and information to ensure high quality of business data throughout its lifecycle. It performs the overall management of the availability, usability, integrity, and security of the data employed in an enterprise.

A robust data governance program ensures that CIOs and CXOs can derive the maximum benefit out of their data and can channelize it towards achieving business goals. However CIOs and CXOs face several setbacks in executing a successful data governance program.

Planning out a governance strategy
A data governance strategy involves clear decision making, management and accountability of the enterprise data at stake. Many enterprises understand the need for a strong data governance framework, but they’re not sure where to start from. Especially when there’s heaps of historical data, and fresh data that won’t stop piling up, it becomes all the more complicated. An effective data governance needs a well thought plan that can be built with the assistance of top management and stakeholders, and consulting from industry experts.

Bringing together IT and Business stewards
A successful governance strategy is a result of a solid partnership between business and technology. In most enterprises, there’s no clear understanding between the IT and business heads.  Most DG programs revolve around the IT front, because that’s where all the data sits, but they fail to address critical business challenges. The IT and business sides of an organization need to come together and build a holistic plan that works for the optimum best.

Resource allocation
Implementing a DG program starts with appointing a committee that would be responsible for the enforcement and supervision of the project. Finding the right people, with the right understanding to carry out data governance effectively becomes a key challenge. Another key aspect of data governance is selecting the right technology or software for the best results. With so many software tools in market, going with the right governance solution is critical for decision makers.

Getting it done right
As much as setting the right goals and assigning the right roles is essential, getting it done right is very critical. Executing enterprise-wide data governance is a huge responsibility for CIOs. And even if the DG strategy is ideal, the model is perfect and the resources are experts in their areas, successful implementation is subject to other dynamic factors. In absence of a holistic platform, where all the elements of a DG initiative can be integrated, the best of the strategies can sometimes crumble down.

Compliance with DG policies
CIOs and decision makers put a lot of effort into developing data governance policies. However, over time, these policies become merely printed words and lose their value because they’re not followed in day-to-day operations. Organizations fail to ensure that their governance practices are in compliance with the standard policies, and this affects the quality of data in the long run.

Conclusion:
Good governance allows businesses to tame their data effectively, builds confidence in business data and brings value to it. Pitfalls like these can turn the best practices into the worst practices. However, when the top representatives from IT and business work together with the right software, data governance can lead an enterprise to newer heights.

Prem Shankar Patel
Senior Manager
Prem brings nearly three decades of analytics and information management experience to Estuate. He is a recognized expert who has received several awards over the years. In 2003, he was awarded the Center of Excellence (CoE) Champion Award for introduction of advanced training and certification for BIDW architects and consultants. In FY03-04 and FY04-05, he received the Best Faculty of the Year Award for his significant and effective contribution as a faculty member in the delivery of BIDW training. Previously in 2005, he received the Feather in My Cap (FIMC) Award for defining metrics for BIDW projects and establishing organizational norms. Prior to joining Estuate, Prem worked in various strategic positions at Wipro Limited and R S Software (India) Ltd. He holds an M. Tech in Computer Science from the Indian Statistical Institute, Kolkata.
Nagaraja Kini
Founder and Chief Financial Officer
Nagaraja has more than two decades of engineering, business development, consulting, alliances and management experience in software development, integration and implementation. He has worked extensively with global teams to consistently simplify ERP implementations for businesses. Nagaraja brings with him the commitment, willingness, and capability to anticipate and act on the continually evolving needs of a business.
Prior to founding Estuate, Nagaraja served at Oracle as Director in Application and Industry Solutions group within Global Sales Support. Nagaraja holds a Master of Technology in Industrial Electronics from the National Institute of Technology, Surathkal, and a Bachelor’s in Engineering from the SJ College of Engineering, Mysore, India.
Nagaraja Kini
Founder and Chief Financial Officer
Nagaraja has more than two decades of engineering, business development, consulting, alliances and management experience in software development, integration and implementation. He has worked extensively with global teams to consistently simplify ERP implementations for businesses. Nagaraja brings with him the commitment, willingness, and capability to anticipate and act on the continually evolving needs of a business. Prior to founding Estuate, Nagaraja served at Oracle as Director in Application and Industry Solutions group within Global Sales Support. Nagaraja holds a Master of Technology in Industrial Electronics from the National Institute of Technology, Surathkal, and a Bachelor’s in Engineering from the SJ College of Engineering, Mysore, India.
Marc Hebert
Chief Operating Officer
Marc joined Estuate in December, 2008 as its first Chief Operating Officer. Marc is a recognized expert on offshore outsourcing. He has appeared on CNN’s Lou Dobbs Tonight, was interviewed in Investor’s Business Daily, and has been widely quoted in major media publications, including the Wall Street Journal, Forbes, Fortune, Financial Times, New York Times and Boston Globe on offshore outsourcing. He is recognized as an “IBM Champion” for his role in expanding the market for IBM’s Information Lifecycle Governance product line.
Prior to Estuate, he served in leadership roles at large global corporations, including as the CMO at Virtusa Corporation; EVP, Marketing and Alliances for Sierra Atlantic; and Vice President for eight years at Oracle Corporation. Marc holds a Bachelor of Science degree in experimental psychology from Harvard University, and an MBA from Stanford University.
Marc Hebert
Chief Operating Officer
Marc joined Estuate in December, 2008 as its first Chief Operating Officer. Marc is a recognized expert on offshore outsourcing. He has appeared on CNN’s Lou Dobbs Tonight, was interviewed in Investor’s Business Daily, and has been widely quoted in major media publications, including the Wall Street Journal, Forbes, Fortune, Financial Times, New York Times and Boston Globe on offshore outsourcing. He is recognized as an “IBM Champion” for his role in expanding the market for IBM’s Information Lifecycle Governance product line. Prior to Estuate, he served in leadership roles at large global corporations, including as the CMO at Virtusa Corporation; EVP, Marketing and Alliances for Sierra Atlantic; and Vice President for eight years at Oracle Corporation. Marc holds a Bachelor of Science degree in experimental psychology from Harvard University, and an MBA from Stanford University.
Seemakiran Upadhya
Global Delivery Head and Managing Director, India
Seemakiran brings to Estuate more than 25 years of experience in the IT industry. She has been successful in building high-performing teams for the Delivery, Sales, and Operations departments. She was instrumental in setting up Estuate’s India center. Prior to joining Estuate, Seemakiran worked at Satyam, where she developed, tested, and implemented software projects in Oracle Technologies across multiple domains. She is highly proficient at working with a global client base.
Seemakiran holds a Bachelor’s degree in Electronics & Communication Engineering from Karnataka University.
Seemakiran Upadhya
Global Delivery Head and Managing Director, India
Seemakiran brings to Estuate more than 25 years of experience in the IT industry. She has been successful in building high-performing teams for the Delivery, Sales, and Operations departments. She was instrumental in setting up Estuate’s India center. Prior to joining Estuate, Seemakiran worked at Satyam, where she developed, tested, and implemented software projects in Oracle Technologies across multiple domains. She is highly proficient at working with a global client base. Seemakiran holds a Bachelor’s degree in Electronics & Communication Engineering from Karnataka University.
Prem Shankar Patel
Senior Manager
Prem brings nearly three decades of analytics and information management experience to Estuate. He is a recognized expert who has received several awards over the years. In 2003, he was awarded the Center of Excellence (CoE) Champion Award for introduction of advanced training and certification for BIDW architects and consultants. In FY03-04 and FY04-05, he received the Best Faculty of the Year Award for his significant and effective contribution as a faculty member in the delivery of BIDW training.
Previously in 2005, he received the Feather in My Cap (FIMC) Award for defining metrics for BIDW projects and establishing organizational norms. Prior to joining Estuate, Prem worked in various strategic positions at Wipro Limited and R S Software (India) Ltd. He holds an M. Tech in Computer Science from the Indian Statistical Institute, Kolkata.
Prem Shankar Patel
Senior Manager
Prem brings nearly three decades of analytics and information management experience to Estuate. He is a recognized expert who has received several awards over the years. In 2003, he was awarded the Center of Excellence (CoE) Champion Award for introduction of advanced training and certification for BIDW architects and consultants. In FY03-04 and FY04-05, he received the Best Faculty of the Year Award for his significant and effective contribution as a faculty member in the delivery of BIDW training. Previously in 2005, he received the Feather in My Cap (FIMC) Award for defining metrics for BIDW projects and establishing organizational norms. Prior to joining Estuate, Prem worked in various strategic positions at Wipro Limited and R S Software (India) Ltd. He holds an M. Tech in Computer Science from the Indian Statistical Institute, Kolkata.
Sreekantha B. S.
Head Strategic Projects
Sreekantha brings to Estuate more than 33 years of experience in IT. He has successfully sold and delivered over 130 turnkey software projects worldwide for various clients across a variety of sectors - from software, finance, manufacturing, utilities, services, and more. Prior to joining Estuate, Sreekantha led Buzznet (a Malaysian software company) for 17 years and Inventa Corporation (a US-based software company having an office in Malaysia) for 6 years.
Through his experience, Sreekantha brings in-depth knowledge of software engineering, delivery, and implementation of software projects across all technology sectors that have emerged over the last 30+ years. Sreekantha holds a Bachelor of Engineering in Electronics & Communications from Mysore University and a Master of Business Administration in Marketing from Newport University, USA.
Sreekantha B. S.
Head Strategic Projects
Sreekantha brings to Estuate more than 33 years of experience in IT. He has successfully sold and delivered over 130 turnkey software projects worldwide for various clients across a variety of sectors - from software, finance, manufacturing, utilities, services, and more. Prior to joining Estuate, Sreekantha led Buzznet (a Malaysian software company) for 17 years and Inventa Corporation (a US-based software company having an office in Malaysia) for 6 years. Through his experience, Sreekantha brings in-depth knowledge of software engineering, delivery, and implementation of software projects across all technology sectors that have emerged over the last 30+ years. Sreekantha holds a Bachelor of Engineering in Electronics & Communications from Mysore University and a Master of Business Administration in Marketing from Newport University, USA.
Naveen Shankar
Associate Director – Talent Acquisition
Naveen is a seasoned professional in the field of Human Resources and brings to Estuate a rich experience of 14 years. He holds more than 12 HR-related certifications, including some in the space of Diversity & Inclusion. Over the years, he has been consistently recognized as a change maker in his respective organizations. Before joining Estuate, Naveen led ForthPage as the Director-Cofounder.
He has also worked with organizations such as General Electric, Time Inc., and Lumen Technologies in critical HR-centric roles. Naveen holds a Master of Business Administration from XLRI - Xavier School of Management, Jamshedpur.
Naveen Shankar
Associate Director – Talent Acquisition
Naveen is a seasoned professional in the field of Human Resources and brings to Estuate a rich experience of 14 years. He holds more than 12 HR-related certifications, including some in the space of Diversity & Inclusion. Over the years, he has been consistently recognized as a change maker in his respective organizations. Before joining Estuate, Naveen led ForthPage as the Director-Cofounder. He has also worked with organizations such as General Electric, Time Inc., and Lumen Technologies in critical HR-centric roles. Naveen holds a Master of Business Administration from XLRI - Xavier School of Management, Jamshedpur.
Piyush Singh
Practice Head - Insurance
Piyush has fifteen years of work experience, including one year with Estuate. Piyush holds a Master of Computer Applications degree from Bharati Vidyapeeth University, Pune. Piyush is a highly accomplished professional with a wealth of experience in IT services and product engineering. Piyush has worked with PwC and Accenture in the past and his last positions were Delivery Manager and Dev Lead respectively.
He has received the Great Performance award from PwC and the ACE award from Accenture. Piyush has also delivered many end-to-end projects on a medium to large scale.
Piyush Singh
Practice Head - Insurance
Piyush has fifteen years of work experience, including one year with Estuate. Piyush holds a Master of Computer Applications degree from Bharati Vidyapeeth University, Pune. Piyush is a highly accomplished professional with a wealth of experience in IT services and product engineering. Piyush has worked with PwC and Accenture in the past and his last positions were Delivery Manager and Dev Lead respectively. He has received the Great Performance award from PwC and the ACE award from Accenture. Piyush has also delivered many end-to-end projects on a medium to large scale.
Subbarao Satyavolu
Chief Delivery Officer, Americas
Subbarao is a results oriented Senior Leader with 30+ years experience in Enterprise Solution Consulting, Enterprise Program Management, Digital Enterprise Transformation/IT Modernization, Product Engineering, Governance, Risk & Compliance (GRC), IT Service and Operations Management (ITSM/ITOM) and Strategic Account management. Global experience in building & managing high performing teams in solving complex business & technological challenges for the clients
Subbarao is a proven problem solver with extensive experience in the IT industry. He has been recognized as an outstanding performer by his employers, Hitachi/Sierra Atlantic and Computer Sciences Corp (CSC). Subbarao has also been certified in Six Sigma and Project Delivery Excellence by CSC University. In addition, Subbarao is certified in Supply Chain Management and IT Infrastructure Library (ITIL). Subbarao holds an M. Tech in Computer Aided Engineering from the Indian Institute of Technology (IIT) Kharagpur and has also completed an Executive Development program at Cornell University in New York.
Subbarao Satyavolu
Chief Delivery Officer, Americas
Subbarao is a results oriented Senior Leader with 30+ years experience in Enterprise Solution Consulting, Enterprise Program Management, Digital Enterprise Transformation/IT Modernization, Product Engineering, Governance, Risk & Compliance (GRC), IT Service and Operations Management (ITSM/ITOM) and Strategic Account management. Global experience in building & managing high performing teams in solving complex business & technological challenges for the clients. Subbarao is a proven problem solver with extensive experience in the IT industry. He has been recognized as an outstanding performer by his employers, Hitachi/Sierra Atlantic and Computer Sciences Corp (CSC). Subbarao has also been certified in Six Sigma and Project Delivery Excellence by CSC University. In addition, Subbarao is certified in Supply Chain Management and IT Infrastructure Library (ITIL). Subbarao holds an M. Tech in Computer Aided Engineering from the Indian Institute of Technology (IIT) Kharagpur and has also completed an Executive Development program at Cornell University in New York.
Satya Bobba
SVP, Global Head of GRC and Customer Success
Satya Bobba brings more than 20+ years of experience in building market-leading enterprise SaaS products and solutions. Her experience spans engineering, cloud strategy, business development and customer success. Her passion is to help customers achieve GRC goals while simplifying their processes and reduce implementation costs. She brings more than 14 years of domain experience in building and delivering GRC solutions to top enterprise customers across Financial Services, Life sciences, Hi-Tech, Healthcare and Quality verticals.
Prior to joining Estuate, she worked at MetricStream as AVP Cloud Strategy, Global Head of Platform Engineering and Head of Advanced Engineering GRC Products and Services. Earlier in her career, at AOL and Netscape she held technical roles in enterprise server technologies and personalization frameworks. She has a bachelor degree in Computer Science from Andhra University.
Satya Bobba
SVP, Global Head of GRC and Customer Success
Satya Bobba brings more than 20+ years of experience in building market-leading enterprise SaaS products and solutions. Her experience spans engineering, cloud strategy, business development and customer success. Her passion is to help customers achieve GRC goals while simplifying their processes and reduce implementation costs. She brings more than 14 years of domain experience in building and delivering GRC solutions to top enterprise customers across Financial Services, Life sciences, Hi-Tech, Healthcare and Quality verticals. Prior to joining Estuate, she worked at MetricStream as AVP Cloud Strategy, Global Head of Platform Engineering and Head of Advanced Engineering GRC Products and Services. Earlier in her career, at AOL and Netscape she held technical roles in enterprise server technologies and personalization frameworks. She has a bachelor degree in Computer Science from Andhra University.
Prasanna Kulkarni
Vice President - Sales and Marketing
Prasanna is a seasoned Technology & Sales leader with over two decades of valuable global experience. Prasanna has been with Estuate for the past 5 years, leading the Sales and Marketing department with excellence. Prasanna holds a Bachelor of Engineering from GCoE, Amravati and a Stanford Advanced Program Management qualification from Stanford Center for Professional Development. Before joining Estuate, Prasanna held various leadership roles at HCL, Wipro, Nihilent Technologies, and Godrej.
Prasanna Kulkarni
Vice President – Global Sales and Marketing
Prasanna is a seasoned Technology & Sales leader with over two decades of valuable global experience. Prasanna has been with Estuate for the past 5 years, leading the Sales and Marketing department with excellence. Prasanna holds a Bachelor of Engineering from GCoE, Amravati and a Stanford Advanced Program Management qualification from Stanford Center for Professional Development. Before joining Estuate, Prasanna held various leadership roles at HCL, Wipro, Nihilent Technologies, and Godrej.
Stanley Perumala
Global Practice Delivery Lead
Stanley Perumala is the Global Practice Delivery Lead with 8.6 years at Estuate. He holds a Masters degree in Computer Science from International Technological University, which is his area of specialization. Stanley has 16 years of experience and has held various positions at Netpace, Cognizant and Hewlett-Packard. He has received multiple accolades for his achievements such as building an innovation segment with zuora and leading the BRM practice.
Stanley is a key contributor for the BRM practice, having built the team from the ground up and building the core team for the same.
Stanley Perumala
Global Practice Delivery Lead
Stanley Perumala is the Global Practice Delivery Lead with 8.6 years at Estuate. He holds a Masters degree in Computer Science from International Technological University, which is his area of specialization. Stanley has 16 years of experience and has held various positions at Netpace, Cognizant and Hewlett-Packard. He has received multiple accolades for his achievements such as building an innovation segment with zuora and leading the BRM practice. Stanley is a key contributor for the BRM practice, having built the team from the ground up and building the core team for the same.
Prakash Balebail
Founder and Chief Executive Officer
Prakash brings more than two decades of software development & implementation experience, including over 16 years in several key roles in Oracle Corporation. His management principle has been to provide commitment to continuously improve how he serves all of his customers, partners, and employees by anticipating their needs and exceeding their expectations through a culture of creativity & forward thinking.
Prior to founding Estuate, Prakash was the Senior Director in Oracle Applications Global Sales Solutions team, which built complex Oracle E-Business Suite application demonstrations for Sales activities. Additionally, he had leadership roles in the development of Oracle’s much-acclaimed Business Flow Accelerator (BFA) for the E-Business suite. During this time, Prakash also built the highly-regarded India operations team from the ground up. Prakash holds a BS in Electrical Engineering from Karnataka University in India.
Prakash Balebail
Founder and Chief Executive Officer
Prakash brings more than two decades of software development & implementation experience, including over 16 years in several key roles in Oracle Corporation. His management principle has been to provide commitment to continuously improve how he serves all of his customers, partners, and employees by anticipating their needs and exceeding their expectations through a culture of creativity & forward thinking. Prior to founding Estuate, Prakash was the Senior Director in Oracle Applications Global Sales Solutions team, which built complex Oracle E-Business Suite application demonstrations for Sales activities. Additionally, he had leadership roles in the development of Oracle’s much-acclaimed Business Flow Accelerator (BFA) for the E-Business suite. During this time, Prakash also built the highly-regarded India operations team from the ground up. Prakash holds a BS in Electrical Engineering from Karnataka University in India.
Geetha Somayaji
Vice President Finance & Human Resources
Geetha brings over two decades of experience to Estuate in her role as an accomplished leader of Finance and Human Resources. Since joining the company in 2011, she has been instrumental in developing the financial infrastructure of the company alongside the founders, and she has come to be known a a cherished mentor to many within the organization. Geetha holds a Bachelor’s of Business Administration and Accountancy from Bangalore University, India.
Prior to her role at Estuate, she worked in payroll processing and tax returns for Gene's Fine Foods and Jay's Tax & Keeping Services. In her personal time, Geetha enjoys exploring the outdoors and spending quality time with her family.
Geetha Somayaji
Vice President Finance & Human Resources
Geetha brings over two decades of experience to Estuate in her role as an accomplished leader of Finance and Human Resources. Since joining the company in 2011, she has been instrumental in developing the financial infrastructure of the company alongside the founders, and she has come to be known as a cherished mentor to many within the organization. Geetha holds a Bachelor’s of Business Administration and Accountancy from Bangalore University, India. Prior to her role at Estuate, she worked in payroll processing and tax returns for Gene's Fine Foods and Jay's Tax & Keeping Services. In her personal time, Geetha enjoys exploring the outdoors and spending quality time with her family.
Brad Rickman
Chief Revenue Officer (CRO)
Brad Rickman is Estuate's Chief Revenue Officer (CRO) providing oversight and leadership for customer success, sales, marketing as well as strategic partnerships. He is passionate about building customer relationships that grow multiple years over through delivering world class value as a technology partner. Brad has over 30 years experience in the software and technology industry in verticals of telecom/media, retail and ecommerce, financial Services, utilities and healthcare.
Prior to Estuate, Brad was CEO of SmarTek21 for six years, a technology services company where he led a team that grew top line revenues by 3X and EBITDA by 5X in his tenure. Prior experiences include Senior leadership positions in sales and marketing at T-Mobile, Ericsson, Deloitte, and six early stage software companies that grew to market values of over $1B.
Brad Rickman
Chief Revenue Officer (CRO)
Brad Rickman is Estuate's Chief Revenue Officer (CRO) providing oversight and leadership for customer success, sales, marketing as well as strategic partnerships. He is passionate about building customer relationships that grow multiple years over through delivering world class value as a technology partner. Brad has over 30 years experience in the software and technology industry in verticals of telecom/media, retail and ecommerce, financial Services, utilities and healthcare. Prior to Estuate, Brad was CEO of SmarTek21 for six years, a technology services company where he led a team that grew top line revenues by 3X and EBITDA by 5X in his tenure. Prior experiences include Senior leadership positions in sales and marketing at T-Mobile, Ericsson, Deloitte, and six early stage software companies that grew to market values of over $1B.
Ron Judd
SVP, Business Development
Ron Judd is a client-focused and problem-solving senior leader who focuses on balancing business impact and technology for clients. Ron's curious nature challenges teams to discover "how the client benefits in both quantifiable and qualitative results." Ron brings deep domain knowledge in technologies, including digital transformation, enterprise resource planning (ERP), experience management (CX), governance, risk & compliance (GRC), IT service and operations management (ITSM/ITOM),
content management (WCM), hierarchical decision analysis, tech-debt reduction programs, application programming interfaces (API), robotic processing automation (RPA), and chatbot, from across financial services, healthcare, consumer products, retail, and manufacturing industries. With over 30 years of experience in client engagement roles, Ron focuses on developing and maintaining relationships across organizations.
Prior to joining Estuate, Ron served in sales, marketing, and product leadership roles with IBM, SmarTek21, RoadBotics, InMoment, OpenText, Interwoven, PictureTel, and NEC Japan, as well as several early-stage technology startup firms. Ron lives and works in the Greater Boston area with his wife and family and maximizes his personal time by spending it with family, officiating college soccer, and taking care of several horses. Ron graduated from Rochester Institute of Technology (RIT) with degrees in Business and Computer Science.
Ron Judd
SVP, Business Development
Ron Judd is a client-focused and problem-solving senior leader who focuses on balancing business impact and technology for clients. Ron's curious nature challenges teams to discover "how the client benefits in both quantifiable and qualitative results." Ron brings deep domain knowledge in technologies, including digital transformation, enterprise resource planning (ERP), experience management (CX), governance, risk & compliance (GRC), IT service and operations management (ITSM/ITOM), content management (WCM), hierarchical decision analysis, tech-debt reduction programs, application programming interfaces (API), robotic processing automation (RPA), and chatbot, from across financial services, healthcare, consumer products, retail, and manufacturing industries. With over 30 years of experience in client engagement roles, Ron focuses on developing and maintaining relationships across organizations. Prior to joining Estuate, Ron served in sales, marketing, and product leadership roles with IBM, SmarTek21, RoadBotics, InMoment, OpenText, Interwoven, PictureTel, and NEC Japan, as well as several early-stage technology startup firms. Ron lives and works in the Greater Boston area with his wife and family and maximizes his personal time by spending it with family, officiating college soccer, and taking care of several horses. Ron graduated from Rochester Institute of Technology (RIT) with degrees in Business and Computer Science.