CHANDRAKANTH KAMPARA
Mumbai
Summary
Over 6 years of IT general controls as an internal auditor. Experience in working and handling access management projects, control areas of SOX 404 compliance, and internal audits. Experience with the fieldwork stage of audits, which includes identifying, planning, execution, evaluation, reporting, and testing in areas of ITGC controls, with experience in handling security and compliance audits. Strong understanding of SOC reports and risk assessments across different industries, including food and associated banking operations. Worked on ITGC controls for the following domains: logical access, change management, and operation controls.
Overview
6
6
years of professional experience
2
2
Certifications
Work History
Assistant Manager - Information Security & Risk Management
Teleperformance
Mumbai
04.2025 - Current
- Spearheading implementation, auditing, and continual improvement of ISO 27001:2022 ISMS across multiple Teleperformance delivery centers.
- Planning, coordinating, and executing internal audits, surveillance audits, and external audit support, ensuring full regulatory and contractual compliance.
- Leading risk assessment exercises, identifying vulnerabilities, analyzing threats, and developing risk treatment plans to minimize exposure.
- Maintaining a comprehensive asset inventory and data classification framework to strengthen protective measures for sensitive client and organizational data.
- Collaborating with cross-functional stakeholders including IT, Operations, HR, and Compliance teams to address audit findings, close non-conformities, and enhance security posture.
- Conducting awareness training sessions and workshops for employees and management to promote a culture of compliance and data security.
- Driving compliance readiness for BFSI (Banking, Financial Services, and Insurance) clients, ensuring secure handling of financial and customer data.
- Preparing detailed audit reports, dashboards, and compliance metrics for senior leadership to support decision-making and continuous improvement.
ITGC Internal Auditor
Godrej Agrovet Ltd
Mumbai
12.2021 - 01.2025
- Conducted full-cycle ITGC audits including identification, planning, execution, evaluation, testing, and reporting across critical IT domains.
- Coordinated security and compliance audits for IT operations, integrating SOX 404 controls to ensure compliance with corporate governance and regulatory requirements.
- Performed detailed audits across the following areas: Change Management: Reviewed system changes, approvals, and controls for IT processes.
- User Access Management: Oversaw access provisioning, de-provisioning, access reviews, terminal controls, privileged access, and password parameters.
- Backup & Recovery Management: Ensured effective data backup strategies, recovery mechanisms, and compliance with IT security standards.
- Conducted Test of Design (TOD) and Test of Effectiveness (TOE) for ITGC controls, validating operational resilience.
- Participated in control walkthroughs with process owners, documented key findings, and prepared audit deliverables.
- Collaborated with SOX managers to finalize audit communications and closure of audit points, demonstrating strong documentation and consultation skills.
- Applied knowledge of SOC reports to improve data maintenance accuracy and enhance audit effectiveness.
IT Auditor
RM Food Pvt Ltd
Hyderabad
09.2019 - 12.2021
- Conducted ITGC audits for IT systems supporting food industry operations, with a focus on security, availability, and operational compliance.
- Assisted in risk assessments and compliance reviews for financial and banking-related IT systems.
- Evaluated logical access controls, user management policies, and change management practices to ensure compliance with IT and business policies.
- Ensured adherence to operational risk management frameworks, focusing on IT security, data integrity, and regulatory compliance.
- Gained hands-on experience with SOC 1 and SOC 2 reports, applying findings to enhance audit coverage and effectiveness.
- Supported SOX 404 audits by executing security and maintenance controls and providing evidence of compliance.
- Documented key findings, prepared audit reports, and presented results to management, improving transparency and remediation tracking.
Education
Bachelor of Science -
Adikavi Nannaya University
01.2018
Skills
- SOX 404 Controls
- SOC 2
- ISO Documentation
- ISO Implementation
- Change Management Controls
- Operation Management
- Controls, Risk Management
- Problem Management
- Logical Controls
- Risk Management
- Test of Effectiveness
- Third Party Risk Management
Certification
CISA - Certified Information Systems Auditor.
DECLARATION
I hereby declare that the above furnished information is true to the best of my knowledge.
Chandrakanth
Timeline
Assistant Manager - Information Security & Risk Management
Teleperformance
04.2025 - Current
ITGC Internal Auditor
Godrej Agrovet Ltd
12.2021 - 01.2025
IT Auditor
RM Food Pvt Ltd
09.2019 - 12.2021
Bachelor of Science -
Adikavi Nannaya University