Summary
Overview
Work History
Education
Skills
Certification
Languages
Key Achievements
Timeline
Generic
Shivam Bhatt

Shivam Bhatt

Noida

Summary

Information Security professional with almost 8 years of experience specializing in IT auditing, governance, compliance, ISMS implementation, privacy management, and training & awareness. Proven expertise in managing data privacy and cybersecurity projects, conducting audits aligned with ISO 27001 and SOX, executing risk assessments, and performing business impact analyses. Adept at driving awareness campaigns, policy reviews, vendor management, data loss prevention, and compliance gap analyses. Strong technical and ethical characteristics with a commitment to continuous learning and improvement.

Overview

8
8
years of professional experience
6
6
Certification

Work History

Deputy Manager

DS Group
Noida
11.2023 - 08.2024
  • Lead the data privacy implementation project, including stakeholder management and designing privacy-related policies and procedures.
  • Plan and execute ISO 27001 internal audits and manage external surveillance audits.
  • Conduct information security risk assessments and business impact analyses.
  • Design and review policies related to ISMS and data privacy.
  • Lead information security training and awareness programs for employees.
  • Monitor compliance with data privacy regulations and internal policies, identifying and addressing potential compliance risks.

Assistant Manager

Tata Steel Limited
Jamshedpur
09.2021 - 10.2022
  • Conduct risk assessments, prepare risk matrices, and implement appropriate risk treatment measures.
  • Develop, implement, and revise IT process documents, SOPs, and policies in line with ISO 27001 requirements.
  • Manage internal information security audits and provide support.
  • Deliver information security training and awareness programs to employees.

Executive

Reliance Industries Limited
Mumbai
08.2016 - 09.2021
  • Act as a liaison with the GRC team to align site security policies and processes with ISO 27001 standards.
  • Review documents related to IT processes, risk assessments, and business continuity plans annually.
  • Conduct due diligence on contractors and third-party vendors.
  • Coordinate activities to identify training needs for employees, enhancing their personal and professional skills.
  • Oversee compliance monitoring activities to ensure adherence to regulatory requirements and company policies.

Education

Bachelor of Technology -

Kumaon Engineering College
Almora, UT
06-2016

Skills

  • Internal Audit
  • ISMS
  • Privacy Management
  • Risk Management
  • Data Loss Prevention
  • GAPP
  • Stakeholder Management
  • Project Management
  • Privacy Policies
  • Third Party Risk Assessment
  • Training & Development
  • Sentinel One
  • GDPR
  • AI prompt engineering

Certification

  • Certified Information Privacy Manager (CIPM) - IAPP
  • ISO 27001:2022 Information Security Lead Implementer - BSI
  • General Data Protection Regulation (GDPR) - Alison
  • CompTIA Security+ - CompTIA
  • ISO 27001:2013 Information Security Lead Auditor - SkillFront
  • One Trust Privacy Professional - One Trust
  • PIMS Implementation Bootcamp - Infosec Train
  • Completion of CSR project with JMECT Assam - Tata Pro-engage (TSL)

Languages

Hindi
First Language
English
Proficient (C2)
C2

Key Achievements

  • Successfully led and executed internal and external audits, ensuring compliance with ISO 27001 standards.
  • Developed and implemented comprehensive privacy policies, enhancing data protection measures.
  • Streamlined risk assessment processes, resulting in improved risk mitigation strategies.
  • Enhanced IT security training programs, increasing employee awareness and compliance.
  • Led due diligence processes for third-party vendors, ensuring compliance with company standards.
  • Conducted comprehensive compliance monitoring activities, maintaining adherence to regulatory requirements

Timeline

Deputy Manager

DS Group
11.2023 - 08.2024

Assistant Manager

Tata Steel Limited
09.2021 - 10.2022

Executive

Reliance Industries Limited
08.2016 - 09.2021

Bachelor of Technology -

Kumaon Engineering College
  • Certified Information Privacy Manager (CIPM) - IAPP
  • ISO 27001:2022 Information Security Lead Implementer - BSI
  • General Data Protection Regulation (GDPR) - Alison
  • CompTIA Security+ - CompTIA
  • ISO 27001:2013 Information Security Lead Auditor - SkillFront
  • One Trust Privacy Professional - One Trust
  • PIMS Implementation Bootcamp - Infosec Train
  • Completion of CSR project with JMECT Assam - Tata Pro-engage (TSL)

Similar Profiles

  • Aanchal

    Aanchal Aanchal null

    Deputy Manager at DS GroupDeputy Manager at DS Group

    View Profile
  • Saqib Dar

    Saqib DarSaqib Dar

    Sales Officer at Ds GroupSales Officer at Ds Group

    View Profile
  • Sharad Mithrani

    Sharad MithraniSharad Mithrani

    Area Sales Manager at DS GroupArea Sales Manager at DS Group

    View Profile
Shivam Bhatt