Parv Gupta
Ghaziabad
Summary
CISSP-certified Information Security Compliance Specialist with 8+ years in global GRC programs and regulatory audits across BFSI, technology, and consulting sectors. Achieved compliance with ISO 27001, SOC 2, ISMAP, IRAP, GDPR, and PCI DSS, leading to a 40% reduction in audit findings and a 35% increase in process efficiency. Expertise in aligning security initiatives with business objectives, managing third-party risks, and enhancing control frameworks. Proven ability to create audit-ready environments and address high-risk gaps within cross-functional teams.
Overview
9
9
years of professional experience
1
1
Certification
Work History
Information Security Compliance Specialist
SAP Labs India Pvt Ltd
Gurugram
01.2021 - Current
- Successfully led five major global compliance audits (ISMAP, IRAP, SOC 2, ENS, HDS), achieving zero critical findings across all engagements.
- Reduced compliance cycle time by 30% by standardizing evidence collection and automating CFCS compliance workflows.
- Conducted HDS (2018 vs. 2024) gap analysis, and fully onboarded new control network with 100% control mapping accuracy.
- Authored secure architecture documentation and implemented ABAP hardening for 20+ internal systems, improving resilience scores by 25%.
- Led GDPR, IRAP, and SOC 2 assessments for business-critical applications; created audit evidence packs that cut auditor queries by 50%.
- Executed over 40 third-party risk reviews, achieving a 100% remediation rate, and strengthening vendor assurance.
- Delivered access reviews and facilitated threat modeling for the CLM product, reducing exploitable vulnerabilities by 30%.
Information Security Associate II
PwC
Gurugram
01.2020 - 11.2020
- Managed SOC 2 Type 2 audits for BFSI and tech sector clients; delivered 100% on-time completion, with zero major deviations.
- Identified and closed 15+ ITGC gaps, improving client audit readiness by 20% within the first audit cycle.
- Conducted GDPR assessments across two large enterprises, and accelerated compliance achievement by three months using optimized remediation roadmaps.
- Performed process walkthroughs for 10+ systems, ensuring complete alignment between business logic and audit controls.
Assistant Manager
Axis Bank
Mumbai
09.2018 - 09.2019
- Conducted secure architecture and review assessments for 25+ mobile/web apps, reducing security risks in the SDLC by 35%.
- Supported PCI DSS and SOC 2 audits for core banking systems, and helped reduce recurring audit issues by 40% through tighter deployment validations.
- Assessed 30+ change requests in CAB meetings, issuing timely risk advisories that prevented potential production-level breaches.
- Performed vendor due diligence for 15+ strategic partnerships, and mitigated 8 high-risk exposures through robust control advisory.
- Monitored the closure of all high-risk audit findings related to outsourced services, improving compliance tracking accuracy by 20%.
Software Engineer
Capgemini Technology Services
Pune
02.2016 - 12.2017
- Conducted vulnerability scans using Qualys for Morgan Stanley’s Trade Completion platform, and closed 95% of identified findings within SLAs.
- Delivered functional, security, and regression testing, resulting in 40% faster defect triaging during pre-release phases.
- Performed ISO 27001 internal audits and readiness assessments, improving audit preparedness metrics by 25% for global financial clients.
Education
Post Graduate Diploma - IT Infrastructure Systems And Security
CDAC ACTS
Pune08-2018
B.Tech - Electronics & Communication Engineering
ABES Engineering College
Ghaziabad06-2015
Skills
- Cybersecurity governance
- Policy management
- Regulatory compliance
- NIST CSF and COBIT frameworks
- SOC 2 and ISMAP standards
- Secure architecture design
- Risk assessment and management
- Third-party risk evaluation
- Stakeholder engagement strategies
- Audit management practices
- Metrics and KPIs development
- Tools: Qualys, RSA Archer, ServiceNow, Jira, Confluence, advanced Excel
Certification
- CISSP – Certified Information Systems Security Professional | (ISC)²
- ISO 27001 lead auditor
- CEH v10 – Certified Ethical Hacker | EC-Council
- ITIL v4 Foundation
Timeline
Information Security Compliance Specialist
SAP Labs India Pvt Ltd
01.2021 - Current
Information Security Associate II
PwC
01.2020 - 11.2020
Assistant Manager
Axis Bank
09.2018 - 09.2019
Software Engineer
Capgemini Technology Services
02.2016 - 12.2017
Post Graduate Diploma - IT Infrastructure Systems And Security
CDAC ACTS
B.Tech - Electronics & Communication Engineering
ABES Engineering College
Similar Profiles
Saikat BhattacharjeeSaikat Bhattacharjee
Quality Specialist at SAP Labs India Pvt. Ltd. | Project - SAP FieldglassQuality Specialist at SAP Labs India Pvt. Ltd. | Project - SAP Fieldglass
Balaji KulanthaiveluBalaji Kulanthaivelu
Senior Solution Support Engineer at SAP Labs India Pvt LtdSenior Solution Support Engineer at SAP Labs India Pvt Ltd
Adithya K RameshAdithya K Ramesh
SENIOR DEVELOPER at SAP LABS INDIA PVT. LTD.SENIOR DEVELOPER at SAP LABS INDIA PVT. LTD.
ARJUN S DARJUN S D
Senior Developer at SAP Labs India Pvt LtdSenior Developer at SAP Labs India Pvt Ltd
Vikas VibhavVikas Vibhav
Senior SEO Analyst at CleartaxSenior SEO Analyst at Cleartax