RAJESH KUMAR
Lead Engineer - Cybersecurity Audit Risk Controls & Governance
Chennai
Summary
Skilled IT audit and compliance professional with extensive experience in risk management and regulatory compliance, seeking a challenging role to help organizations achieve and maintain compliance with industry standards and regulations leveraging expertise in IT Audit, GRC, Access Management. Aim to contribute in building robust disclosure frameworks, enhancing process efficiency and ensuring timely and accurate compliance reporting. Certified in ISO27001:2022 ISMS LA and currently pursuing CISA, Committed in delivering high-quality audit engagements and risk management solutions.
Overview
2025
2025
years of professional experience
4
4
years of post-secondary education
2
2
Certifications
2
2
Languages
Work History
Lead Engineer - Cybersecurity
Guardian India Operations Pvt. Ltd
Chennai
1 2022 - Current
- Plan and Execute IT Audits: Conduct audits to assess effectiveness of IT controls, systems, and processes. Conducted end-to-end IT audits from, planning, scoping, and execution of IT audit engagements following industry standards and internal methodologies with a focus on SOX compliance.
- Audit Controls and Processes: Evaluate design and operation of controls across different IT systems (e.g., financial, ERP, cloud-based systems) to ensure integrity, confidentiality, and availability of information.
- Compliance Audits: Help coordinate and support internal and external audits related to compliance. This includes preparing documentation, gathering evidence, and ensuring remediation actions are tracked and completed.
- Evaluating and testing controls over Access Provisioning and Identity Lifecycle Management.
- Experience of audit methodologies, system development life cycle, change management, Access rights and segregation of duties, privilege access management, infrastructure (Network, OS, DB) security.
- Assisted in development and implementation of risk-based audit programs and procedures, prepare process
flow diagrams, and document the same in Risk & Control Matrix. - Conducting Walkthrough, updating & documenting process flow-charts and narratives.
- Good knowledge and understanding of other IT regulations, standards and frameworks used by the IT industry such NIST, PCI-DSS, HIPAA, SOX, COBIT, COSO.
- Reporting: Prepare and deliver compliance reports for management, stakeholders, and regulators, summarizing findings and risk levels.
- Identity Governance: Enable and Administer Internal controls SOC1 and SOC2 for all access on integrated applications.
- IAM: There are about 400+ applications integrated with our Identity Management System and we audit them yearly as per audit period requirements. Based on financial info apps are segregated into different audit cycles.
- Also part of Identity Management Integration Team, I take care of application integration within the system, right from requirement gathering with Business Owner and working with developers to complete integration.
- Sound knowledge in creating SailPoint Roles, Policies, Certifications, Reports.
- Decent knowledge in developing SailPoint rules if necessary and required, I will work with development team to share my knowledge.
- Generic: Mentored junior engineers, contributing to their professional growth and overall team productivity.
- Received and prioritized service requests to optimize resources.
- Enhanced product performance by streamlining design processes and implementing automation tools.
- Presented technical findings clearly and concisely during client meetings, fostering trust and confidence in our engineering capabilities.
- Collaborated with cross-functional teams to ensure seamless integration of new features into existing product lineups.
- Established best practices for documentation, ensuring consistency across all projects and making it easier for team members to collaborate effectively.
- Provided input to Business Owners regarding areas for process and procedural improvement.
- Wrote, reviewed and edited technical document in accordance with template requirements.
IT Service Analyst
ASM Technologies Pvt. Ltd
Chennai
02.2018 - 01.2022
- As IAM Consultant, have administered SailPoint IIQ to manage user's digital identities, credentials and groupings throughout life cycle of their membership of enterprise system
- Working with internal auditors to collect evidence as per audit requirements
- Managing yearly access reviews certifications in SailPoint
- Managing end-to-end implementation life cycles of SailPoint IIQ
- Handling Production support of SailPoint IIQ and have resolved major issues
- Performing enhancement works like creating new rules, policies, certifications as required
- Handling enhancement and production support of Microsoft Azure AD Connect
- Acting as PowerShell admin, have developed scripts for automating processes.
Project Engineer
Wipro Technologies
Chennai
10.2014 - 02.2018
- As an IDM Engineer, administrating Microsoft Forefront Identity Manager (FIM) to manage user's digital identities, credentials and groupings throughout the life cycle of their membership of an enterprise system
- Involved in enhancement and development works on FIM 2010 and MIM
- Managed end-to-end implementation life cycles of Forefront Identity Manager 2010r2
- Handled the Production support of Microsoft FIM 2010r2 and have resolved major issues.
- Involved in enhancement and development works on Azure AD Connect.
- Handled the Production support of AD Connect and have resolved major issues.
- Maintained records for each project and engineering discipline.
- Improved communication among stakeholders through regular updates and meetings.
Education
Bachelor of Engineering - Computer Science and Engineering
KSR College of Engineering
Erode 04.2010 - 04.2014
Skills
IdAM (Identity and Access Management)
IT Audit
Internal Audit
External Audit
IT General Controls
IT Application Controls
SOC Reports (SOC 1, SOC 2)
Risk Management and Risk Assessment
Controls Testing
Sailpoint IIQ
Microsoft Identity Manager
Azure AD Connect
Powershell Scripting
Office 365 Administration
Irius Risk Automated Thread Modelling Tool
NIST CSF
Personal Highlights
- Energetic and result oriented professional with strong Academic background.
- A mindset that will push me until I feel comfortable working in a technology.
- Deep understanding of technology with focus on delivering business solutions.
- Persuasive communicator with exceptional relationship management skills with the ability to relate to people at any level of business and management; highly ethical, trustworthy and discreet.
- Good communication and analytical skills added along with interpersonal and better problem-solving skills.
- Friendly with an upbeat attitude and excellent decision-making skills with a positive approach.
- Dedicated and highly ambitious to achieve personal as well as the organizational goals.
Certification
ISO/IEC 27001:2022 Lead Auditor (ISMS)
Achievements
- Successfully assisted the team to setup Access Reviews for Privileged Accounts/Identities by gathering the account/access information from various teams. Named as unwearied worker because of teams working in different time zones and I have worked with them continuously to meet the audit requirements.
- As an India Integration Lead, I have worked on various application integrations, there by working with various teams to adhere the policy and regulations.
Timeline
ISO/IEC 27001:2022 Lead Auditor (ISMS)
12-2024
CISA (In Progress)
12-2024
IT Service Analyst
ASM Technologies Pvt. Ltd
02.2018 - 01.2022
Project Engineer
Wipro Technologies
10.2014 - 02.2018
Bachelor of Engineering - Computer Science and Engineering
KSR College of Engineering
04.2010 - 04.2014
Lead Engineer - Cybersecurity
Guardian India Operations Pvt. Ltd
1 2022 - Current
Similar Profiles
Saurabh SinghSaurabh Singh
Assistant Manager Underwriting at Guardian India Operations pvt ltd.Assistant Manager Underwriting at Guardian India Operations pvt ltd.
Alwin JAlwin J
Associate at Guardian India Operations Pvt LtdAssociate at Guardian India Operations Pvt Ltd
Bhuvaneshwar HariharanBhuvaneshwar Hariharan
Claim Support Representative at Guardian India Operations Pvt LtdClaim Support Representative at Guardian India Operations Pvt Ltd