Rohit Rane
mulund west
Summary
CISA certified. Seasoned Cybersecurity Professional with over 12 years of experience specializing in compliance and audit. Experience in developing and implementing security policies and procedures to ensure adherence to industry standards such as ISO 27001 and data privacy. Skilled in conducting comprehensive security audits, risk assessments, and vulnerability management to identify and mitigate potential threats. Proven track record in leading cross-functional teams to achieve regulatory compliance and enhance organizational security posture. Adept at collaborating with stakeholders to design and execute effective cybersecurity strategies. Committed to continuous improvement and staying abreast of the latest cybersecurity trends and regulatory changes. Working domain incudes Banks, Insurance, manufacturing sectors.
Overview
14
14
years of professional experience
1
1
Certification
Work History
Deputy General Manager
Holcim Global Hub Services pvt Ltd / Adani Cements
Mumbai
08.2021 - Current
- Deployment of Operational Technology (OT) security solution for risk management and remote access at the Cement Locations
- Coordinating with the respective site team for the mitigation of risk identified in the OT and IT environment
- Conducting Vendor Risk Assessment before the vendor is on boarded
- Coordinating with respective teams for closure of NC points related to IT security audit highlighted in the external audit report
- Implement organization wide best information security practice
- Conducting IT/Cyber Security assessment for manufacturing plants
- Conducting IT security internal audit for ISO 27001 and facilitating external audit for ISO 27001
- Designing Information Security Awareness Flyers related to topics such as social engineering, social media, Phishing, Vishing, Smishing, Ransomware, etc. and Facilitating Phishing, Vishing, Smishing and Ransomware simulation for APAC region as part of Holcim’s information security awareness program
- Conducting IT Risk assessment for Global and India region
- Drafting of region-specific policies such as Information Security Policy, Mobile Device Management Policy, Encrypted USB Policy, Third Party Information Security Risk Management Framework
- Monitored progress against key performance indicators to evaluate effectiveness of operational activities.
Assistant Manager
KPMG
Mumbai
01.2020 - 08.2025
- Conducting RBI Cyber Framework Assessment for bank
- Conducting NIST Cyber Maturity Assessment
- Deployed for a vCISO role for an advisory firm for overlooking at their information security posture - Closure of the general security control assessment for a current client conducted by a third party and review their current cyber security posture and addressing any gaps found. Achieving and validating the minimum expectation for Cyber Security Controls set by their client. Review the client’s information security policy, prepared Access Management, Asset Management and Change management framework and has also prepared procedures for Patch management, Control Against Malware and Malicious Code, New Joiner requirements – IT, Vulnerability Assessment Procedure , publishes information security newsletter for the client on monthly basis. Preparing a general cyber security assessment control checklist inspired by ISO 27001 and minimum expectation of their clients and conducting the assessment on quarterly basis
- Conducting GDPR gap assessment for pharmaceutical company and preparing data inventory
Senior Security Auditor (manager)
HDFC Bank
Mumbai
04.2017 - 12.2019
- Performing the assessment of COBIT controls for various application including Test of Design (TOD) and Test of Effectiveness (TOE)
- Responsibility includes preparation of audit report, discussion with auditee on audit report, audit observation and tracking.
- Conduct Cobit control audit for banking financial applications (product assessed includes PayZapp, Chillr, Mobile Banking App, SMS Banking architecture etc)
- Effectively interact with and communicate results to auditees, audit management, business unit and senior management
- Prepare formal written audit reports and supporting workpapers that document testing and conclusions on the adequacy of controls
- Communicates audit progress and results to both department and business unit management
- Perform risk-based assessment for any new application / model that is about to go live
- Provide relevant data required to third party auditor / RBI
- Conducting assessment as per the defined governance policy
Security Engineer Level 2
Paladion Networks Pvt LTD
Mumbai
01.2012 - 04.2015
- Performed regular system audits to identify any potential vulnerabilities or threats.
- Monitored user activities on servers, networks and other IT resources for suspicious activity or policy violations.
- Developed and implemented security policies, standards, and procedures.
- Analyzed system logs to identify malicious behavior or attempts at unauthorized access.
- Investigated security breaches, evaluated risk factors, and developed remediation plans.
- Contributed to task list for maintaining network security across workstations, servers and peripherals.
Education
PRISM (Programming in Information Security Management) - Information Security
MIEL E-Security PVT LTD
01-2011
Bachelor of Science - Computer Science
Bhavna Trust's Junior & Degree College of Commerce
06-2010
HSC -
L.E.M.S – School & Junior College
06-2006
SSC -
St. Pius X High School
06-2004
Skills
- Operational technology security
- IT risk assessment
- Cyber security audit
- Policy drafting
- Vulnerability assessment
- Stakeholder communication
Certification
- CISA Certified
Timeline
Deputy General Manager
Holcim Global Hub Services pvt Ltd / Adani Cements
08.2021 - Current
Assistant Manager
KPMG
01.2020 - 08.2025
Senior Security Auditor (manager)
HDFC Bank
04.2017 - 12.2019
Security Engineer Level 2
Paladion Networks Pvt LTD
01.2012 - 04.2015
PRISM (Programming in Information Security Management) - Information Security
MIEL E-Security PVT LTD
Bachelor of Science - Computer Science
Bhavna Trust's Junior & Degree College of Commerce
HSC -
L.E.M.S – School & Junior College
SSC -
St. Pius X High School
Similar Profiles
Vikas KuteVikas Kute
Process Lead at Holcim Global Hub Business ServicesProcess Lead at Holcim Global Hub Business Services
Priydarshan PathakPriydarshan Pathak
General Manager - Core & Digital Tech at Holcim Global Digital HubGeneral Manager - Core & Digital Tech at Holcim Global Digital Hub
SHIV RAM DEYSHIV RAM DEY
"Regional Lead" Planning, Pricing [Sales Cordina ] at Ambuja Cements Limited [Adani Group]"Regional Lead" Planning, Pricing [Sales Cordina ] at Ambuja Cements Limited [Adani Group]
Amee SanghviAmee Sanghvi
Consultant at Own Start upConsultant at Own Start up
NAMRATA CHOUDHARYNAMRATA CHOUDHARY
AVP Marketing at IKS HealthAVP Marketing at IKS Health