Summary
Overview
Work History
Education
Skills
Certification
Core Qualifications
Timeline
Generic

Varsha Janaj

Bengaluru

Summary

Experienced Information Security Analyst with proven expertise in vendor risk analysis and security compliance. Skilled in developing training programs and executing security assessments to enhance organizational compliance and efficiency. A good team player contributes to achieving information security objectives.

Overview

3
3
years of professional experience
1
1
Certification

Work History

Information Security Analyst

Beaconer Inc
08.2023 - Current
  • Carrying out vendor risk analysis in alignment with SIG and ISO 27001:2022 standards
  • Identified gaps in vendor risk processes, delivering actionable recommendations that enhanced risk management practices.
  • Review and approve the Security questionnaire submitted by the vendor.
  • Performing Vendor Risk Assessment based on different scopes of services.
  • Worked with vendors and Vendor Relationship Managers to ensure ongoing risk assessments are conducted for all vendors.
  • Schedule an assessment discussion with the supplier/vendor to discuss and perform the remote audit.
  • Categorized the vendors into respective groups as per the scope of the Vendor Risk Assessment.
  • Developed third-party FAQ and training manuals, streamlining end-to-end process for improved vendor onboarding.
  • Utilized GRC tools for standard control implementation across multiple frameworks, enhancing compliance and efficiency within the organization.
  • Working knowledge of Data Protection, regulations, and standards for ensuring security compliance.
  • Collaborated with compliance team on PCI DSS, HIPAA, GDPR, and ISO standards to ensure adherence to data security regulations.
  • Conducted a Security Awareness program for all employees.
  • Plan and execute Security training for all stakeholders to create a security culture.
  • Client leadership - Benchmark demo for managed services.

Education

Bachelor of Engineering - Electronics And Communication

KLE College of Engineering
Chikodi, Karnataka
07-2022

Skills

  • Risk management
  • Security Audit
  • Vulnerability management
  • Risk compliance
  • Data regulations
  • GDPR
  • NIST
  • ISO 27001
  • SOC2
  • GRC utilization
  • Data Privacy
  • Awareness programs
  • Governance
  • TPRM
  • Client Relationship

Certification

  • Information Security Risk Management for ISO 27001/ISO 27002

Core Qualifications

  • People Management
  • Problem Solving
  • Interact well with Customers.
  • Good Team player

Timeline

Information Security Analyst

Beaconer Inc
08.2023 - Current

Bachelor of Engineering - Electronics And Communication

KLE College of Engineering
Varsha Janaj