Jayaram R
Hyderabad,Telangana
Summary
With almost 4 years of experience in Information Security, I specialize in helping organizations enhance their security posture. Skilled in managing ISMS programs, conducting risk assessments, developing and maintaining security policies, and overseeing compliance audits. Expertise in GRC frameworks including ISO 27001 (ISMS) and NIST CSF, along with risk management, BCP, incident response, TPRM, privacy, and internal audit. Currently serving as a Information Security Engineer at Infosys, where I lead risk management initiatives, vulnerability management, and compliance tracking efforts, while enhancing information security objectives and driving internal assessments and security improvement
Overview
4
4
years of professional experience
Work History
Information Security Engineer
Infosys Limited
12.2023 - Current
- Conducting the internal assessments which is aligned with ISO27001 framework
- Supporting the external audits with organization security policies & procedures
- Conducting end to end information security risk assessment
- Verifying & supporting the implementation of all the contractual requirements within the engagements
- Handled various standards, regulatory and compliance requirements such as ISO 27001, PCIDSS, HIPPA
- Respond to RFPs and RFIs and review of client SOW/Master service agreements
- Conducting security awareness sessions within organization
- Liaisons with other functions like legal and data privacy to ensure successful deals are closed within fixed timelines
- Conducted due diligence and risk assessments on third-party vendors by reviewing security documentation, conducting questionnaires, and performing audits to ensure they meet security and regulatory compliance standards
Project Engineer : GRC Analyst
Wipro
08.2021 - 11.2023
- Conduct regular risk assessments and develop risk mitigation strategies, resulting in a reduction in identified risks over the past year
- Collaborate with cross-functional teams to establish and maintain a robust business continuity and disaster recovery plan, minimizing business disruptions during critical events
- Part of the Incident Response Team, responsible for leading the investigation, containment, and resolution of security incidents and breaches
- Ensured incident resolution within industry-standard response times, followed by conducting security awareness sessions to prevent recurrence and enhance organizational security posture
- Oversee and conduct internal audits, evaluating compliance with security policies and controls
- Developed and implemented process enhancements resulting in an increase in overall security posture
- Stay current with evolving regulations and industry standards, ensuring the organization's ongoing compliance with relevant laws, regulations, and certifications
- Conducted comprehensive risk assessments, established risk criteria, performed risk analysis, and evaluated risks, resulting in the development of effective risk treatment strategies
- Recommended corrective actions and remediation plans based on risk assessments, ensuring proactive risk mitigation
- Conducted gap analysis, internal audits, and spot checks across various support departments (HR, Admin, IT, Applications) to ensure adherence to information security controls
- Provided recommendations for improvements and ensured timely follow-up and closure of identified gaps
- Demonstrated excellent verbal and written communication skills while collaborating as a key team player in GRC initiatives
- Designed and delivered training and awareness programs on compliance and security within the organization.
Education
Bachelor of Technology - Computer Science And Engineering
Vignan's Institute of Information Technology
Visakhapatnam, India09-2020
Skills
- GRC
- Risk Assessments
- Internal audit
- TPRM
- Incident Management
- Business Continuity Management
- Privacy
- IT Audit
- Change management
- ISO 27001
Languages
English
Advanced (C1)
Telugu
Bilingual or Proficient (C2)
Hindi
Upper intermediate (B2)
Timeline
Information Security Engineer
Infosys Limited
12.2023 - Current
Project Engineer : GRC Analyst
Wipro
08.2021 - 11.2023
Bachelor of Technology - Computer Science And Engineering
Vignan's Institute of Information Technology
Similar Profiles
Ekta DakhaneEkta Dakhane
Technology Analyst at Infosys LimitedTechnology Analyst at Infosys Limited
BISWANATH DASBISWANATH DAS
Project manager at Infosys LimitedProject manager at Infosys Limited
Sriram Chennimalai SubbukrishnanSriram Chennimalai Subbukrishnan
Technology Architect | Oracle EBS R12.2.4 Enhancements at Infosys LimitedTechnology Architect | Oracle EBS R12.2.4 Enhancements at Infosys Limited