Summary
Overview
Work History
Education
Skills
Certification
Accomplishments
Timeline
Generic
AYESHA AKHTAR

AYESHA AKHTAR

Assistant Manager- Information Security
Delhi

Summary

Experienced security professional with 9+ years of expertise in conducting information security audits, driving cybersecurity initiatives, and implementing policies. Skilled in overseeing internal/external audits, ensuring cloud compliance, and conducting third-party risk assessments. Holds ISO 27001 Lead Implementer Certification, dedicated to strengthening organizational security posture and maintaining regulatory compliance standards.

Overview

9
9
years of professional experience
4
4
years of post-secondary education
2
2
Certifications

Work History

Assistant Manager - Information Security & Audit

Grant Thornton Bharat
Delhi
10.2022 - Current
  • Led audits for cloud environments (AWS) ensuring compliance with SOC2, ISO 27001:2022, C5, and ENS standards.
  • Conducted third-party risk assessments and supported clients in internal and external audits.
  • Developed ISMS strategies, including ISO 27001:2022 change management for clients.
  • Collaborated with stakeholders to mitigate vulnerabilities and strengthen security posture.
  • Supported audit readiness for data privacy, BCP, and cybersecurity compliance programs.
  • Assisted large enterprises with enterprise-wide cybersecurity programs and governance initiatives

Manager- Information Security

Sterlite Power
06.2021 - 10.2022
  • Established Cyber Crisis Management Plan (CCMP) with Power Grid Corporation of India (PGCIL).
  • Designed and implemented Third-Party Risk Assessment Framework.
  • Managed security projects including DLP and MDM implementation.
  • Coordinated internal audits, ISO 27001:2013 recertification, and external audit readiness.
  • Led access reviews, SAP role validation, and BIA activities.
  • Delivered training modules on Information Security, Data Governance, and AIP.

Associate Manager - Information Security

Sterlite Power
01.2018 - 06.2021
  • Performed IT infrastructure and application process audits.
  • Drove closure of audit points with external partners.
  • Key contributor to ISO 27001 recertification and IT security policy implementation.
  • Rolled out self-training modules for Information Security awareness.

Lead Information Security

Sterlite Power
07.2016 - 01.2018
  • Conducted IS audits, policy reviews, and vulnerability assessments.
  • Supported ISO 27001:2013 implementation and regulatory compliance.
  • Led third-party risk assessments and security awareness initiatives.
  • Recommended security process improvements based on audit findings.

Education

Bachelor of Technology - Computer Science

Maulana Azad National Institute of Technology
01.2012 - 01.2016

Skills

  • Information Security Audits (Cloud & Infra)

  • SOC2

  • ISO 27001

  • Cloud Security (AWS Compliance)

  • Internal & External Audit Management

  • Project Management

  • Risk Assessment

  • Data Privacy

  • ITGC

  • IT Security

  • BCP

  • Crisis Management

  • Cybersecurity Awareness

  • Training

Certification

Certified ISO 27001:2013 Lead Auditor, BSI

Accomplishments

    Received Spot Award from management as an appreciation of work done - June 2025

Timeline

Assistant Manager - Information Security & Audit

Grant Thornton Bharat
10.2022 - Current

Manager- Information Security

Sterlite Power
06.2021 - 10.2022

Associate Manager - Information Security

Sterlite Power
01.2018 - 06.2021

Lead Information Security

Sterlite Power
07.2016 - 01.2018

Bachelor of Technology - Computer Science

Maulana Azad National Institute of Technology
01.2012 - 01.2016

Similar Profiles

CREATE PROFILE
AYESHA AKHTARAssistant Manager- Information Security