Manasa M C
Bengaluru
Summary
A dedicated and results-oriented professional with over 5 years of experience in evaluating and strengthening internal controls, developing and implementing comprehensive regulatory and compliance frameworks, and managing risk assessments. Proven track record in conducting internal security evaluations and ensuring alignment with industry standards, with a focus on mitigating risks and maintaining compliance across various regulatory landscapes.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Information Security Analyst
Pramata Knowledge Solutions
11.2024 - Current
- Led and coordinated organization-wide SOC 1 and SOC 2 Type II audits, ensuring full compliance with regulatory and industry standards.
- Conducted quarterly internal audits to identify risks, strengthen controls, and improve operational efficiency.
- Performed IT General Controls (ITGC) testing to validate system security, access management, and change management processes.
- Managed and delivered timely, accurate responses to customer security and compliance questionnaires, enhancing client trust and transparency.
- Developed and updated security policies and procedures to align with evolving compliance frameworks and industry best practices.
- Supported and streamlined client audit processes, ensuring seamless compliance reviews and maintaining audit readiness.
- Assisted in ISO 27001 audits, performing gap analysis to identify control weaknesses and drive remediation for certification readiness.
- Developed and validated compliance evidence for client security questionnaires, translating complex security policies into clear, business-focused insights on risks and impact.
Analyst
Deloitte Support Services India Pvt Ltd.
03.2023 - 08.2024
- Developed and validated compliance evidence for client security questionnaires, translating policies into clear business-focused risk insights.
- Supported SOC 2 Type II audits by managing evidence, ensuring compliance, and closing audit findings.
- Conducted ISO 27001 risk assessments, identifying control gaps, root causes, and recommending actionable remediation.
- Partnered with technology audit teams to perform risk-based audits, focusing on data accuracy, completeness, and system security.
- Managed multiple audit activities, delivering high-quality outputs on time and in compliance with standards.
Senior Compliance Officer
Mphasis Ltd.
09.2020 - 03.2023
- Managed risk, security, and compliance activities for business processes and accounts, ensuring alignment with company, client, and regulatory requirements.
- Conducted ISO 27001 risk and gap assessments and performed ITGC testing (access, change, backup, system operations) to identify control gaps and strengthen IT governance.
- Coordinated SOC 1 and SOC 2 Type II audits, overseeing evidence collection, remediation, and successful closure of audit findings.
- Executed internal, risk, and contractual assessments against cybersecurity frameworks, delivering actionable remediation plans to maintain audit readiness.
- Led information security awareness programs (newsletters, phishing simulations, and training), driving a stronger security culture across the organization.
- Developed and maintained security policies and procedures while collaborating with cross-functional teams to communicate risks, findings, and compliance requirements.
Education
Bachelor of Engineering - undefined
Channabasaveshwara Institute of Technology
Tumkur01.2019
Skills
- Internal audit
- SOC1 and SOC2 assessments
- Information Security Management system
- ITGC Controls
- Risk Assessment
- Contractual Assessment
- Customer Questionnaire
- ISO 27001
- Infosec Awareness training
- Incident Management
- Client Audits
- Skilled in Excel
- NIST Framework
- Gap Analysis
Certification
- IRCA Certified ISO 27001:2013 LA
- CISA – Pursuing, Expected Completion: Nov 2025
Hobbies and Interests
Reading Novels, Cooking
Timeline
Information Security Analyst
Pramata Knowledge Solutions
11.2024 - Current
Analyst
Deloitte Support Services India Pvt Ltd.
03.2023 - 08.2024
Senior Compliance Officer
Mphasis Ltd.
09.2020 - 03.2023
Bachelor of Engineering - undefined
Channabasaveshwara Institute of Technology