Aryan Radhakrishnan
Bengaluru
Summary
Cyber security professional with over 3.5 years of experience specializing in areas such as ISO 27001:2022 Implementation Services, Cyber Maturity Assessments, Security Assessments, and Digital Payment Security Controls Assessments. He has assisted several end-to-end Information Security assessments including application security review for SaaS/PaaS applications to ensure that clients are compliant with various regulations such as PAPG, PPI, HIPAAA, NYDFS, ISNP, SG MAS, CSSF as well as aligned with ISO and NIST frameworks.
Overview
3
3
years of professional experience
1
1
Certification
Work History
Assistant Manager
Deloitte Touché Tohmatsu India LLP
06.2025 - Current
- Performed security & compliance assessments for a global e-commerce company covering Indian payment regulations (PAPG, ISNP, IRCTC, PPI, UPI, etc.) as well as global non-payment regulations (NESA, SG MAS, NYDFS, GLBA, CSSF, HIPAA etc.), following a unified control framework developed on their environment.
- Worked with the findings management team for an e-commerce client to drive remediation of security vulnerabilities identified during the security assessment, ensuring timely closure of issues and maintaining security compliance standards.
- Facilitated training sessions for junior staff, improving team performance and knowledge retention.
Consultant
Deloitte Touche Tohmatsu Limited
07.2022 - 05.2025
• Conducted Cyber Maturity Assessment for a Life Sciences company, assessing them and providing current and target maturity ratings on key cyber capabilities such as: Cloud Security, Network Security, Third-Party Supplier Management, Cyber Threat Intelligence, Patch and Vulnerability Management, Incident Management, Business Continuity & Disaster Recovery, etc.
• Created and developed Information Security Policies, Procedures, and associated documentation for a leading AI-based software company, based on latest ISO 27001:2022 standard. Collaborated closely with key stakeholders to assess organizational needs and requirements, ensuring alignment with ISO 27001 standards and best practices.
• Conducted risk assessment across multiple business functions for an AI-based software company in accordance with ISO 27001 & 27005 standards. Created and maintained the Risk Register; along with developing a Risk Treatment Plan to track and address the identified risks.
• Performed digital payment security controls (DPSC) assessments for over 50+ applications for a private sector bank to address cyber security risks prevalent in their overall digital payment landscape.
• Performed vendor risk assessments for third party service providers in order to assess the risks associated with utilization of their products and services. Performed UIDAI Assessment for a leading life insurance organization and SWIFT Assessment for a private sector bank.
Education
BTech - Electronics & Communication
PES University
Bengaluru, India07-2022
Indian School Certificate - Science
Bishop Cotton Boys' School
Bengaluru05-2018
Skills
- AWS Cloud
- ServiceNow GRC tool
- Risk Assessment
- MS Office Suite
- IS0 27001:2022 Implementation
- Cyber Maturity Assessment
- Digital Payment Security Controls (DPSC)
- Indian payment regulations such as PAPG, PPI, UPI, ISNP, IRCTC, etc
- Global regulations such as HIPAA, NYDFS, CSSF, GDPR, etc
- NIST Cybersecurity Framework (CSF) 20
Certification
ISO 27001:2022 Lead Auditor
Key Focus Areas
- ISO 27001 Implementation
- Security Assessments against Indian and global regulations
Timeline
Assistant Manager
Deloitte Touché Tohmatsu India LLP
06.2025 - Current
Consultant
Deloitte Touche Tohmatsu Limited
07.2022 - 05.2025
BTech - Electronics & Communication
PES University
Indian School Certificate - Science
Bishop Cotton Boys' School