Strategic and results-oriented technology risk and cybersecurity executive with over 16 years of experience in safeguarding critical assets across diverse sectors, including banking, IT, ITES, manufacturing, healthcare, and pharmaceuticals. Proven track record in conceptualizing and deploying enterprise-wide cybersecurity strategies while maturing Governance, Risk, and Compliance (GRC) frameworks. Expertise includes managing end-to-end technology risk assessment projects, AI governance, and designing and implementing ISMS frameworks. A strong operational background in ISO standards and NIST RMF enhances the ability to communicate information security risks in business terms while collaborating with technical SMEs and business stakeholders.
The role multi-faceted with aspects of engagement with the India team and Primarily working with the US counter part. Both are described below
US centric work -
India Centric Responsibilities -
• Managing large BCM engagement for Single point of failure & BCM framework design & consolidation of existing structure for a major ecommerce firm
• Managing large IT Sox engagement for a major process operation transformation & management firm
• Managed a engagement for application decommissioning risk assessment for a manpower providing in heavy engineering
• Managed IT security & data governance review for a analytics based company for a large group
● Performed Multiple ITGC & BCP reviews for Banking ,IT Manufacturing , Retails Clients across India
● Performed IT Sox review for US based storage and Data management company
● Performed Risk assessment for largest bank based in Australia
● Performed Configuration review for various client across industry
● Delivered Proposals for Key areas such as ISMS BCMS and ITGC reviews
● Performed Multiple IT Vendor review for a Leading bank in India & Global Swiss Bank.
● Responsible for performing security risk assessment globally and technology consulting for a major global FMCG Firm
● Performed Audit of one of the GSS center which covered the SOD at system level and BCP areas
● Performed IT asset management audit for EY Global
● Supported in EY global access management audit
● Audited test of design and effectiveness of IT process based on framework defined by the bank
● Performed specialized audit as per the regulatory requirement
● Identified Process improvement areas
● Key member of GRC platform selection
● Understanding client requirement for business continuity and providing strategy for disaster recovery
● Following compliance (IS0 270001, ISO 20001) for continuity services ,facing audits & process improvement
● Responsible for call tree testing, simulation test, walkthrough test for projects based in three locations
● Providing management inputs according to the state of Business continuity
● Organizing business continuity awareness week.
Information security Management
Enterprise risk management
Operational risk management
Audit management
Business continuity planning
Team leadership
Data Security Council of India
ISACA
ISC2
DRI
PMP
ISAC
ITIL V3