Anchal Mishra
Summary
Over 6 years of expertise in Information Security Management Systems, specializing in the development of security documentation such as policies and procedures. Proficient in compliance frameworks, including ISO 27001, GDPR, and HIPAA, with a strong grasp of Prudential Regulation Authority requirements. Adept at developing and managing risk frameworks, implementing cybersecurity strategies, and aligning business continuity practices with global regulatory standards, including PRA and EBA. Proven track record of managing vendor risk assessments, client cybersecurity agreements, and cross-functional collaboration with stakeholders.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Assistant Manager
EY GDS
Gurgaon
09.2021 - Current
- Lead and manage a team of security experts to drive comprehensive execution of TPRM initiatives, guaranteeing prompt completion of risk assessments, adherence to regulations, and persistent process refinement.
- Spearheaded comprehensive review and execution of CyberSecurity Agreement between US financial service client and vendors, ensuring adherence to security policies, regulatory mandates, and enterprise risk management goals.
- Developed TPRM programs tailored for US, UK, and European financial services clients, including systematically important financial institutions.
- Performing initial risk assessments for onboarding vendors and facilitating ongoing reviews.
- Assess BCP and Exit plans to ensure alignment with EBA regulatory requirements.
- Assisting clients in understanding the gaps and streamlining the PRA Process Guidelines.
Information Security Analyst
Iris Software
Greater Noida
07.2019 - 09.2021
- Performed gap assessments across multiple projects to ensure adherence to SOC 2 requirements.
- Developed and implemented comprehensive GRC Frameworks, policies and procedures to ensure alignment with company policies and standards.
- Performed internal audits to assess compliance with organizational policies.
- Facilitated Data Loss Prevention (DLP) implementation and executed incident investigations.
- Maintained risk and incident tracking dashboards to ensure ongoing risk visibility and response.
- Led awareness programs on ransomware, BCP, and secure development practices.
Education
B.tech - Information Technology
A.K.T.U
Skills
- Risk Management
- Third Party Risk Management (TPRM)
- ISO 27001
- SOC2
- PRA
Certification
- Advanced Cloud Security Auditing for CSA STAR.
- ISO 27001:2013 Lead Auditor Certified.
Timeline
Assistant Manager
EY GDS
09.2021 - Current
Information Security Analyst
Iris Software
07.2019 - 09.2021
B.tech - Information Technology
A.K.T.U
Similar Profiles
Santhosh NallamothuSanthosh Nallamothu
Assistant Manager_Private Equity Funds at EY GDSAssistant Manager_Private Equity Funds at EY GDS
Elton Allen D'CostaElton Allen D'Costa
CCASS Senior at EY GDSCCASS Senior at EY GDS
Fakrutheen M SFakrutheen M S
Assistant Manager at EY GDS India pvt LtdAssistant Manager at EY GDS India pvt Ltd
Gowtham BaluGowtham Balu
Senior Manager, Transfer Pricing at EY GDSSenior Manager, Transfer Pricing at EY GDS
Piyush Rajkumar ChauhanPiyush Rajkumar Chauhan
Assistant Manager at DSV AIR & SEA PVT LTDAssistant Manager at DSV AIR & SEA PVT LTD