Harish Nair

IT Audit & GRC professional with 4+ years’ experience delivering audit assurance, strengthening controls, and improving security posture for banking and financial services clients.

• Planned and executed IT General Controls (ITGC) and application audits covering Access Management, Backup & Patch Management, Malware Protection, Incident Management, Physical Security, BCP/DR — identified control gaps and provided prioritized remediation recommendations.
• Led audit and compliance activities within the Chief Information Technology Security Office (CITSO): developed and refined information security policies, standards and procedures to meet regulatory expectations.
• Managed security exceptions, KRIs and issue-tracking processes for a major private bank; coordinated cross-functional stakeholders to ensure timely risk mitigation and control improvements.
• Managed security exceptions, KRIs, and issue-tracking processes for a major private bank; coordinated cross-functional stakeholders to achieve timely risk mitigation and implement control improvements.
• Conducted vendor risk assessments, branch and internal audits, and control testing; delivered audit reports with actionable observations and remediation plans for senior management.
• Mentored and supervised junior auditors, improving team efficiency and audit quality through structured reviews and knowledge-sharing.
• Cultivated strong relationships with stakeholders to enhance communication and streamline project completion.
• Liaised with team members, stakeholders and vendors to coordinate activities, provisioning, environment setup, risk mitigation and follow-up.