Summary
Overview
Work History
Education
Skills
Professional Certifications And Trainings
Accomplishments
Disclaimer
Timeline
Generic
Mayura Yaotkar

Mayura Yaotkar

ISMS and PIMS Auditor

Summary

Dedicated and results-oriented Information Security Management System (ISMS) Internal Auditor with a proven track record in enhancing ISMS awareness and fostering team motivation. Holds an MTech in Instrumentation Engineering with a commendable 78.50%, complemented by multiple certifications in Compliance and Audit Management, demonstrating a commitment to professional development and industry standards. Expertise includes driving compliance initiatives and conducting thorough audits to ensure organizational security integrity. Strong organizational skills promote a culture of continuous improvement and accountability within the workplace.

Overview

13
13
years of professional experience
5
5
years of post-secondary education
3
3
Languages

Work History

Security Technician

FUJITSU CONSULTING INDIA Pvt. Ltd.
08.2024 - Current

Management Systems (ISMS), ISO 27001:2022, and Privacy Information Management Systems (PIMS), ISO 27701:2019. The role involves developing policies, conducting gap analysis, delivering training, and coordinating audits, both internal and external. The individual also demonstrates skills in vendor management, compliance monitoring, and awareness program development.

  • Developed and maintained ISO 27001:2022 policies, procedures, guidelines, and manuals.
  • Conducted gap analyses for ISO 27001:2013 and ISO 27001:2022 standards.
  • Delivered ISMS awareness training to new joiners, third-party resources, and project teams.
  • Planned, coordinated, and executed ISO 27001:2022 internal audits.
  • Facilitated internal audit finding closure and prepared meeting minutes (MOM).
  • Conducted opening meetings for ISMS internal audits and prepared Root Cause Analysis (RCA) reports.
  • Prepared for ISO 27001:2022 external audits, including updating objective documents and reviewing project-related controls.
  • Conducted Onshore Development Centre (ODC) Physical Assessments.
  • Coordinated ISO 27001:2022 external audits.
  • Developed information security awareness decks and conducted awareness sessions for JDU and non-JDU employees.
  • Organized security awareness quizzes (October 2024).
  • Collaborated with prospect vendors for ISMS services.
  • Developed Standard Operating Procedures (SOPs) for ISMS standard processes.
  • Maintained ISMS and PIMS compliance checklist in the intranet portal.
  • Initiated discussions with project SPOCs for preparation of ISMS internal assessments.
  • Conducted internal audits for critical projects.
  • Conducted and monitored monthly compliance checks for corporate functions and projects.

Compliance Lead

SecurityHQ Pvt. Ltd, Pune
03.2024 - 07.2024
  • Developed and implemented information security compliance policies and procedures to ensure adherence to relevant laws, regulations, and policies.
  • Conducted risk assessments to identify non-compliance areas and devised corrective actions.
  • Created and delivered compliance training for employees and interested parties, focusing on ISO induction and data privacy.
  • Collaborated with cross-functional teams (IT, Admin, Legal, HR, and Delivery) to integrate information security into all operational aspects.
  • Managed relationships with external auditors and regulators, providing support during audits and compliance reviews.
  • Developed internal audit scope and plans for the Information Security Management System (ISMS) and Privacy Information Management System (PIMS).
  • Conducted periodic compliance reviews in line with international standards (ISO 27001:2013, ISO 27701:2019).
  • Performed internal audits and prepared audit reports for various projects, sharing findings with stakeholders.
  • Analyzed and evaluated audit reports from consultants, informing relevant parties.
  • Maintained all ISMS/ISO compliance documents.
  • Periodically prepared, reviewed, and updated ISMS and PIMS documentation in consultation with project stakeholders.
  • Conducted Management Review Meetings (MRMs) to discuss audit observations.
  • Continuously followed up with interested parties to close audit gaps.

Compliance Associate

Fulcrum Digital Pvt. Ltd, Pune
01.2022 - 02.2024
  • Developed and implemented information security compliance policies and procedures to ensure adherence to relevant laws, regulations, and policies.
  • Conducted regular audits and risk assessments to identify non-compliance areas and devised corrective actions.
  • Created and delivered compliance training for employees and interested parties, focusing on ISO induction and data privacy.
  • Collaborated with cross-functional teams (IT, Admin, Legal, HR, and Delivery) to integrate information security into all operational aspects.
  • Managed relationships with external auditors and regulators, providing support during audits and compliance reviews.
  • Developed internal audit scope and plans for the Information Security Management System (ISMS) and Privacy Information Management System (PIMS).
  • Conducted periodic compliance reviews in line with international standards (ISO 27001:2013, ISO 27701:2019).
  • Performed internal audits and prepared audit reports for various projects, sharing findings with stakeholders.
  • Analyzed and evaluated audit reports from consultants, informing relevant parties.
  • Maintained all ISMS/ISO compliance documents.
  • Periodically prepared, reviewed, and updated ISMS documentation in consultation with project stakeholders.
  • Conducted Management Review Meetings (MRMs) to discuss audit observations.
  • Continuously followed up with interested parties to close audit gaps.

Assistant Professor in Instrumentation Engineering

Dr. D.Y. Patil Institute of Technology, Pune
08.2012 - 12.2021
  • Served as a dedicated Internal Auditor for three years, auditing National board of Accreditation (NBA), National Assessment and Accreditation Council (NAAC), and National Institutional Ranking Framework (NIRF).
  • Developed internal audit scope and plans for academic improvement initiatives.
  • Acquired, analyzed, and evaluated research documentation as a research coordinator.
  • Designed industry-oriented syllabi for select subjects.
  • Taught over 8 subjects and practical courses.
  • Worked as a paper setter, examiner, evaluator, and subject expert for Savitribai Phule Pune University.
  • Prepared and presented audit reports reflecting results, and documented processes for course files.
  • Conducted training under the Bosch CSR BRIDGE program to train trainers for establishing training centers.

Education

Master of Technology - Instrumentation Engineering

Shri Guru Gobind Singh's Institute of Engineering And Technology (SGGSIET)
Nanded, India
04.2010 - 01.2011

Bachelor of Engineering - Instrumentation Engineering

Government College of Engineering
Amravati, India
01.2007 - 01.2008

Diploma in Engineering - Instrumentation Engineering

Government Residential Women's Polytechnic
01.2002 - 01.2005

Skills

The role involves managing and maintaining Information Security Management System (ISMS) and Privacy Information Management System (PIMS) in accordance with ISO/IEC 27001:2022 and ISO/IEC 27701:2019 standards

Professional Certifications And Trainings

  • Certified in Cyber Security (CC)
  • Certified in ISO/IEC 27001:20122 Lead Auditor
  • Completed Diploma in Cyber law by Asian school of cyber law, Mumbai
  • Certified in 'IT Audit' by Princeton Academy
  • Completed CISA, CISM and CRISC Training
  • Microsoft Certified Azure Fundamentals AZ-900
  • Microsoft Certified Azure Security & Compliance SC-900

Accomplishments

  • Successful Audit Completion: Completed both internal and certification audits for Information Security Management System (ISMS) ISO 27001: 2022 and Privacy Information Management System (PIMS) ISO 27701:2019 in 2025.
  • ISMS Awareness Session: Conducted an awareness session on ISMS for over 6000 employees in 2025.
  • ISMS Internal Audit for Critical Projects: Successfully carried out ISMS internal audits for critical projects from August 2024 to December 2024.
  • Best Coordination Compliment: Received recognition for outstanding coordination in achieving ISO 27001:2022 certification and conducting internal audits in 2024.
  • Academic Achievement: Awarded the University Merit in BE from Sant Gadge Baba Amravati University in 2008.
  • Professional Recognition: Received the best Professor Award at the Institute level in 2019.

Disclaimer

I confirm that the information provided by me is true to the best of my knowledge and belief.

Timeline

Security Technician

FUJITSU CONSULTING INDIA Pvt. Ltd.
08.2024 - Current

Compliance Lead

SecurityHQ Pvt. Ltd, Pune
03.2024 - 07.2024

Compliance Associate

Fulcrum Digital Pvt. Ltd, Pune
01.2022 - 02.2024

Assistant Professor in Instrumentation Engineering

Dr. D.Y. Patil Institute of Technology, Pune
08.2012 - 12.2021

Master of Technology - Instrumentation Engineering

Shri Guru Gobind Singh's Institute of Engineering And Technology (SGGSIET)
04.2010 - 01.2011

Bachelor of Engineering - Instrumentation Engineering

Government College of Engineering
01.2007 - 01.2008

Diploma in Engineering - Instrumentation Engineering

Government Residential Women's Polytechnic
01.2002 - 01.2005
Mayura YaotkarISMS and PIMS Auditor