Experienced Information Security Analyst with a strong foundation in ISO 27001:2022 auditing, third-party risk management, and GRC frameworks. Passionate about enabling secure business operations through proactive risk identification, process improvement, and collaborative security governance. Seeking to leverage my technical expertise and audit proficiency to support an organization's mission of achieving compliance, reducing risk, and fostering a strong security culture.
Over 3 Years of experience as an Information Security Analyst, well experienced in implementing the information security controls and audit policies at Enterprise level. Experienced in supporting internal and external audits within Information Security. Experienced in facilitating audit interviews, collecting evidences and labeling them according to the audit requirements. Hands on experience in ISO 27001 audits and other IT audits. Have a strong knowledge on Third Party risk Assessment process. Experienced in maintains the Statement of Applicability (SOA), ISMS controls mapping to risk register, and develop continuous monitoring procedures. Helping Team in Preparing the Standard operating procedure (SOP). Information security professional well-versed in protecting organizational data and ensuring compliance with industry standards. Known for proactive risk assessment and efficient security solutions. Strong focus on team collaboration and adapting to evolving security threats. Proficient in threat analysis and network security. Information security professional with solid expertise in safeguarding data and mitigating risks. Skilled in threat analysis, vulnerability assessment, and incident response. Strong focus on team collaboration and results, adapting seamlessly to changing needs. Known for reliability and strategic approach to maintaining robust security measures.