Summary
Overview
Work History
Education
Skills
Websites
Certification
Accomplishments
Languages
Hobbies and Interests
Personal Information
Participations
Timeline
Generic
Pankaj Singh

Pankaj Singh

Mumbai

Summary

IT professional with 14+ years of experience in cybersecurity, pivoting into IT auditing to leverage extensive knowledge of network infrastructure and threat mitigation. Proven ability to lead security overhauls, enhance data protection measures, and ensure compliance with best practices. Skilled at leading and managing application security audits, preparing comprehensive reports, and driving procedural improvements. Experienced in web security testing and application management, with the ability to communicate complex findings clearly across all levels of management. Actively seeking opportunities within organizations that value integrity, cross-functional collaboration, and long-term professional development.

Overview

14
14
years of professional experience
1
1
Certification

Work History

Vice President

Mizuho Bank
Mumbai
01.2022 - Current
  • Led risk-based audits across IT and business domains, including Internal Audit, IS Audit, and Cybersecurity, ensuring alignment with enterprise risk frameworks and regulatory expectations.
  • Directed policy reviews and control assessments for Cybersecurity, Access Management, and Change Management, enhancing governance across Asia Pacific offices (Singapore and Tokyo).
  • Performed regulatory-required special reviews and validation for submission of ad-hoc regulatory returns to RBI/CSITE, including SWIFT control assessments, Cyber KRI returns, and vendor access reviews, ensuring timely and accurate compliance.
  • Conducted IT audits across customer-facing digital platforms (web, API, Cloud security), core infrastructure (Data Centres), operating systems (Windows, Linux), and enterprise databases (Oracle, SQL Server), as well as key business functions evaluating technology governance, SDLC, access controls, and cybersecurity to ensure compliance with internal and regulatory requirements.
  • Played a key role in digital audit transformation initiatives, conducting user testing and training teams on new platforms for risk assessment, control testing, and reporting.
  • Managed third-party risk assessments for outsourced activities, including captive GIC operations (Mizuho Global Services India), and evaluated vendor controls and service delivery effectiveness.
  • Conducted thematic reviews of cybersecurity controls mapped to NIST and COBIT frameworks, identifying control gaps and recommending remediation strategies.
  • Reviewed Audit Focus Points Worksheets (AFPW) and collaborated with concurrent auditors to define scope, align deliverables, and strengthen internal control partnerships.
  • Defined audit scope, developed risk matrices, and executed testing strategies for special audits and operational reviews, ensuring thorough documentation and stakeholder engagement.
  • Delivered audit findings through comprehensive reports and executive-level discussions, driving strategic improvements in internal control systems and risk mitigation.
  • Contributed to the development and refinement of internal audit programs, recommending policy updates and control enhancements based on operational trends and data analytics.
  • Supported the annual audit planning process, including risk assessment of auditable entities, resource allocation, and project creation in audit systems.

Chief Manager

IndusInd Bank
Mumbai
04.2017 - 01.2022
  • Led a team of auditors in conducting a comprehensive analysis of IT infrastructure, resulting in strengthened cybersecurity measures for a major banking institution.
  • Ensured compliance with internal control procedures by systematically reviewing records, reports, operating practices, and documentation.
  • Evaluated security controls in banking applications, identifying critical vulnerabilities pre-release and enhancing overall software resilience.
  • Partnered with IT teams to perform post-implementation reviews of key systems, ensuring alignment with business goals and IT strategy.
  • Coordinated cross-functional reviews of IT controls, regulatory compliance, and security frameworks, contributing to improved IT governance.
  • Optimized cloud control processes, reducing potential vulnerabilities by 30% through targeted enhancements and risk mitigation strategies.
  • Assessed control effectiveness in complex environments and delivered actionable recommendations, leading to a 50% reduction in audit findings over two years.
  • Led documentation initiatives, including checklists for network/database controls, vendor management audits, and data center assessments.
  • Aligned control frameworks with ISO 27001, NIST SP 800-53, and PCI DSS standards through collaborative efforts with inter-departmental teams.

Manager

Kotak Mahindra Bank
Mumbai
04.2016 - 04.2017
  • Expanded audit coverage by integrating cybersecurity risk assessments into the annual audit plan, enabling a more holistic and risk-focused audit approach.
  • Evaluated internal control adequacy through detailed audit questionnaires and documentation reviews; communicated findings via formal audit reports and stakeholder discussions.
  • Led third-party vendor audits, ensuring outsourced IT services complied with internal standards and external regulatory requirements.
  • Conducted manual security testing of banking systems using Burp Suite, identifying and remediating vulnerabilities—achieving a 70% reduction in infrastructure risk.
  • Collaborated cross-functionally to support audit objectives, contributing to team success and timely delivery of audit milestones.

Deputy Manager -II

ICICI Bank Limited
Mumbai
08.2011 - 04.2016
  • Ensured compliance with internal control procedures by examining IT records, reports, operating practices, and documentation aligned with RBI/FIU-IND regulatory expectations.
  • Conducted over 100 audits across intranet/ internet applications, thick clients, core banking systems, network infrastructure, vendor assessments, and the Bank’s public-facing website ensuring coverage of RBI-mandated control areas.
  • Developed control checklists for Change Management, Identity & Access Management, and application-level controls, mapped to RBI guidelines and global standards such as ISO 27001, NIST SP 800-53, and PCI DSS.
  • Performed manual security testing using tools like Burp Suite, identifying vulnerabilities and reducing infrastructure risk by 70%.
  • Led third-party vendor audits, ensuring outsourced IT services met internal standards and regulatory requirements.
  • Completed audit workpapers with detailed documentation of audit tests and findings; communicated results through formal reports and discussions with auditees, ensuring transparency and traceability.
  • Maintained and enhanced internal control systems by updating audit programs and questionnaires, and recommending new policies and procedures in line with RBI Master Directions and circulars.
  • Prepared specialized audit and control reports by analyzing operational data and identifying trends, contributing to risk-based audit planning and regulatory reporting.
  • Managed departmental administrative functions, including appointment of IT consultants and serving as Fire Marshal, contributing to operational continuity and compliance.
  • Collaborated cross-functionally with internal teams, vendors, and external stakeholders to ensure smooth execution of audits, effective risk remediation, and timely follow-up.

Education

Master's - Computer Management

Pune University
Pune, Maharashtra
01.2013

Post Graduate Diploma in Management (PGDM) - Marketing

Sinhgad Institute Of Management-SIOM
Pune, Maharashtra
01.2011

Bachelor of Arts - English

Chhatrapati Shahu Ji Maharaj University
Kanpur, Uttar Pradesh
01.2006

Skills

  • Web application security
  • Data backup and disaster recovery
  • Identity access management
  • Change management
  • Vendor management
  • Risk assessment and internal audit
  • OWASP standards
  • Information security and IT audit
  • Cybersecurity controls
  • IT general controls
  • Data center infrastructure audit

Websites

Certification

  • Certified Information Security Manager (CISM)
  • CISA - Certified Information Systems Auditor
  • Cisco Certified Network Associates
  • IT Security and Prevention of Cyber Crimes and Fraud Management
  • IT Security
  • MS-Office Certification

Accomplishments

  • Head Office, Tokyo was recognized as the best and most enthusiastic IT Auditor and took home the APAC Region's First Prize in 2023.
  • Received an appreciation and awarded for SWIFT Control review by Head Office, Tokyo and IAD Management in 2024.
  • Received an appreciation from HR Head of IndusInd bank for HRMS application audit in 2021.
  • Received an appreciation from Board member, Senior Management and Head of Audit for identifying the critical vulnerabilities in ChatBot and Video banking application 2020.
  • Received an appreciation from Head of Data Centre & Security of IndusInd bank for Data Centre audit in 2017.

Languages

  • English
  • Hindi

Hobbies and Interests

  • Reading
  • Travelling
  • Playing Cricket
  • Watching Movies

Personal Information

Marital Status: Married

Participations

  • Received certification of participation on several training programs conducted by DELOITTE TOUCHE INDIA PVT. LTD.
  • Received certification of participation on several training programs conducted by PALADION NETWORKS.
  • Received certification of participation on Hands-on Web Application Security Training by SECURITY BRIGADE.
  • Participate in Bank training organized by Institute of Development and Research of Banking Technology (IDRBT) for brief overview of Vulnerability Assessment & Penetration Testing and Cyber Defense.

Timeline

Vice President

Mizuho Bank
01.2022 - Current

Chief Manager

IndusInd Bank
04.2017 - 01.2022

Manager

Kotak Mahindra Bank
04.2016 - 04.2017

Deputy Manager -II

ICICI Bank Limited
08.2011 - 04.2016

Master's - Computer Management

Pune University

Post Graduate Diploma in Management (PGDM) - Marketing

Sinhgad Institute Of Management-SIOM

Bachelor of Arts - English

Chhatrapati Shahu Ji Maharaj University

Similar Profiles

CREATE PROFILE
Pankaj Singh