Divya Shakti Shukla
Noida
Summary
ISO 27001 Certified Information Security Compliance Manager with hands-on experience implementing and managing ISMS frameworks. Proven ability to ensure data protection, reduce risk, and meet regulatory requirements through clear policies, internal audits, and team collaboration. Strong focus on aligning information security with business goals while driving continuous compliance and awareness across the organisation.
Overview
8
8
years of professional experience
Work History
Project Coordinator
UIDAI
09.2022 - 09.2024
- Led implementation and maintenance of ISO 27001-compliant Information Security Management System (ISMS).
- Conducted risk assessments and developed treatment plans to mitigate security threats.
- Developed and enforced security policies, procedures, and compliance frameworks.
- Monitored regulatory compliance (e.g., GDPR, NIST) and supported incident response.
- Delivered security awareness training to enhance organizational compliance culture.
- Collaborated with cross-functional teams and stakeholders to align security with business goals.
Website Manager
Noida International University
12.2021 - 09.2022
- Monitored website infrastructure for security vulnerabilities, ensuring continuous protection against potential threats.
- Implemented and maintained SSL certificates, secure protocols (HTTPS), and enforced web application security best practices.
- Regularly updated CMS platforms, plugins, and third-party integrations to prevent exploitation of known vulnerabilities.
- Conducted routine security audits and vulnerability assessments of the website and backend systems.
- Managed access control and user permissions, enforcing the principle of least privilege to safeguard sensitive data.
- Assisted in the development and enforcement of internal website security policies aligned with organizational information security frameworks.
- Ensured compliance with industry standards such as ISO 27001, NIST Cybersecurity Framework, and OWASP Top 10 during website design and operations.
- Documented standard operating procedures (SOPs) for secure website management, content updates, and incident response.
- Participated in risk assessments and policy reviews to identify gaps in current website security practices and propose mitigation strategies.
- Collaborated with IT and compliance teams to align web operations with broader organizational security policies and regulatory requirements.
Deputy Manager (CMS) - Website Content
Shiksha.com
04.2016 - 10.2021
- Oversaw content workflows within a custom PHP-based CMS, ensuring secure publishing practices and auditability of changes.
- Worked closely with developers to implement secure coding standards in PHP, mitigating risks such as XSS, CSRF, and SQL injection.
- Managed CMS user access through role-based permission systems, reducing exposure to unauthorized modifications or data leaks.
- Conducted content integrity checks and enforced security policies to prevent the upload or publication of malicious or non-compliant materials.
- Coordinated with IT and InfoSec teams to apply regular security patches and updates to the PHP CMS and associated server environments.
- Participated in vulnerability assessments and code reviews for the CMS backend to identify and address potential weaknesses.
- Ensured compliance with data protection laws (e.g., GDPR, CCPA) through secure handling and publishing of personal or sensitive content.
- Developed and maintained CMS operational procedures and content governance policies, aligning with frameworks like ISO 27001 and NIST.
Education
BJMC -
Amity University
Lucknow, Uttar Pradesh05.2014
MBA -
Amity University
Noida, Uttar Pradesh04-2026
Skills
- Access Control Management
- Vulnerability Identification
- Compliance with Data Privacy Regulations
- Secure Content Publishing
LANGUAGES
English
Timeline
Project Coordinator
UIDAI
09.2022 - 09.2024
Website Manager
Noida International University
12.2021 - 09.2022
Deputy Manager (CMS) - Website Content
Shiksha.com
04.2016 - 10.2021
BJMC -
Amity University
MBA -
Amity University
Similar Profiles
MAHIMANVITHA DHARAVATHMAHIMANVITHA DHARAVATH
Intern at UIDAIIntern at UIDAI
Shristy SaxenaShristy Saxena
Grievance Officer at @UIDAI with NISGGrievance Officer at @UIDAI with NISG
PRUDHVI REDDICHERLAPRUDHVI REDDICHERLA
Application Operations Engineer at Managed Services Application Provider For UIDAIApplication Operations Engineer at Managed Services Application Provider For UIDAI
Prashant KashyapPrashant Kashyap
Consultant at TATA CONSULTANCY SERVICESConsultant at TATA CONSULTANCY SERVICES
Gautam NagpalGautam Nagpal
Cloud Engineer at Control RisksCloud Engineer at Control Risks