Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Anshita Joshi

Summary

Results-driven GRC Consultant adept at completing tasks efficiently and productively. Skilled in risk management, policy development, and compliance auditing to support organizational objectives. Excel in communication, problem-solving, and teamwork, ensuring seamless integration of governance strategies with business operations.

Overview

11
11
years of professional experience
1
1
Certification

Work History

GRC Consultant

ShareChat
Gurgaon
09.2022 - Current
  • Conducted internal control reviews to assess effectiveness of existing controls.
  • Identified gaps between current state of operations and desired future state based on industry standards or best practices.
  • Prepared reports outlining findings from assessments of internal control systems.
  • Analyzed business processes to identify potential risks and develop mitigation strategies.
  • Coordinated activities with external auditors during audit engagements.
  • Reviewed customer contracts for compliance with applicable laws and regulations.
  • Facilitated workshops to educate stakeholders on relevant GRC topics such as regulatory changes and best practices.
  • Evaluated third-party vendors for security compliance according to company requirements.
  • Ensured that corrective action plans are properly documented after completion of audits.
  • Assisted in developing key performance indicators for tracking progress against goals.
  • Designed training programs for staff members on GRC principles, processes, tools.
  • Collaborated with cross-functional teams to ensure effective communication regarding GRC initiatives.
  • Developed and implemented GRC policies, procedures, and controls to ensure compliance with applicable laws and regulations.
  • Documented and reported on key risks and recommended mitigation strategies.
  • Facilitate Finance team and external auditors to conduct ITGC audit.

Senior Information Security Engineer

Flipkart
Bangalore
02.2021 - 09.2022
  • InfoSec Policy Governance and Management - Alignment of all ISMS documents as per NIST standard
  • Third Party Risk Management Programme - Performed third party risk assessments to identify appropriate security countermeasures
  • NIST/ISO 27001 Compliance validation - Developed KPIs for various functions to validate the compliance status as per NIST/ISO 27001 standard
  • Information Security Awareness Programme- Developed Information security awareness strategy from scratch and implemented successfully.

Principal - IT Security

Home Credit India Finance Pvt. Ltd.
Gurugram
10.2018 - 01.2021
  • Information Security & Cyber Security
  • Home Credit India Finance Private Limited, IT Security
  • Assisted IT Security Head for creating Cyber Security Strategy Framework
  • Effectively worked with management to create IT Strategy Framework, agenda and Minutes of meetings for IT Strategy meetings
  • Defined Key Risk Indicators for IT functions (IT Security, IT Admin, IT Network,
  • IT Asset, IT Service Delivery)
  • Performed mapping of Compliance Requirements within the existing IT
  • Policies/Processes
  • Conducted IT process assessment in order to ensure the correct implementation of policies/processes
  • Conducted cloud assessment for the vendors providing cloud services
  • Coordinated recurrent training for team members as well as initial training for new hires
  • Created & managed reports specific to team activity and performance

Senior Consultant

Deloitte Consulting USI, Primus Global Technologies Private Limited
05.2018 - 09.2018
  • Cyber Security
  • Project- Security Assessment Based on NIST Cyber Security Framework
  • Assisted on-site team in performing cyber security assessment based on NIST
  • CSF
  • Assisted on-site team in preparation of cyber security assessment deliverablesthat includes identifying security gaps, opportunities for improvement andproviding recommendations
  • Assisted on-site team in creating a roadmap towards Information Security &
  • Cyber Security improvement in the short and long term

Associate Consultant

Indiabulls Housing Finance Limited
01.2016 - 04.2018
  • Information Security
  • ISO 27001:2013 Implementation and Management
  • Conducted audits of information systems and related processes & review relatedsecurity policies and procedures
  • Participated in full life cycle and implementation of ISO 27001:2013 frameworkand ISO 27002 code of practice
  • Developed Information Security Processes and procedures as per standardsand best practices
  • Conducted Risk Assessment as per the requirement of ISO 27001:2013
  • Defined Correction & Corrective Action as per Audit Findings/Observations andcoordination with the team for the closure
  • Imparted Information Security Awareness via newsletters, mailers,presentations, conducting quiz session to all employees
  • Created Management Review Meeting presentation for Top Management

IT Quality Analyst

Cyient Limited
01.2014 - 06.2016
  • IT
  • Reviewed Service Level Agreements to improve quality of service, which wasnot in practice earlier
  • Initiated Transactional surveys and informal discussions with the users hashelped the improvement in processes in line with the end user expectations
  • Implemented best practices and global standards through training, demos
  • Performed audits of all ITS assets throughout the enterprise
  • Created Internal Audit schedule for performing audit of all IT assets within team
  • Reviewed compliance of organization's goods with the Audit standards
  • Created audit reports and report the non-conformity of the productsspecifications
  • Performed Root Cause Analysis to compute the reasons behind inefficiencies
  • Coordinated with team to eliminate shortcomings
  • Supervised and monitor performance feedback for team members

Education

B.Tech - Electronics & Communication Engineering

Shri Ram Murti Smarak College of Engineering &Technology
Bareilly

Intermediate -

Kendriya Vidyalaya IFFCO
Aonla

High School -

Kendriya Vidyalaya IFFCO Aonla
Bareilly

Skills

  • ISO 27001 Implementation
  • Third Party Risk Management
  • Security Compliance Management
  • MS Office (Excel, Powerpoint,Word)
  • Incident Management via Data Loss Prevention (Forcepoint) tool
  • Documentation (Defining, Reviewing Policies, Process)
  • NIST Cyber Security Framework
  • Information Security Awareness Program
  • IT General Controls Review
  • Information Security Awareness Program
  • Compliance Monitoring
  • Adaptability
  • Internal Auditing

Certification

  • ISO 27001 Lead Auditor

Timeline

GRC Consultant

ShareChat
09.2022 - Current

Senior Information Security Engineer

Flipkart
02.2021 - 09.2022

Principal - IT Security

Home Credit India Finance Pvt. Ltd.
10.2018 - 01.2021

Senior Consultant

Deloitte Consulting USI, Primus Global Technologies Private Limited
05.2018 - 09.2018

Associate Consultant

Indiabulls Housing Finance Limited
01.2016 - 04.2018

IT Quality Analyst

Cyient Limited
01.2014 - 06.2016

B.Tech - Electronics & Communication Engineering

Shri Ram Murti Smarak College of Engineering &Technology

Intermediate -

Kendriya Vidyalaya IFFCO

High School -

Kendriya Vidyalaya IFFCO Aonla
  • ISO 27001 Lead Auditor

Similar Profiles

  • Himanshu Srivastava

    Himanshu SrivastavaHimanshu Srivastava

    Senior Product Analyst at SharechatSenior Product Analyst at Sharechat

    View Profile
  • Anita Choudhry

    Anita ChoudhryAnita Choudhry

    Manager- Talent Acquisition at ShareChatManager- Talent Acquisition at ShareChat

    View Profile
  • Anshul Gulati

    Anshul GulatiAnshul Gulati

    Team Lead at SharechatTeam Lead at Sharechat

    View Profile
Anshita Joshi