Summary
Overview
Work History
Education
Skills
Certification
Work Availability
Quote
Timeline
Receptionist
Vijay Chaudhary

Vijay Chaudhary

Cyber Security & Privacy Leader
New Delhi

Summary

A dynamic & passionate cyber security Leader with comprehensive experience of 17+ years in Cyber & Information Security, Risk Management, Compliance, Data Protection & Privacy, Security Audits, and various aspects of Process Improvement & Optimizations across diverse organizational domains. Natural ability to work with business partners /stakeholder to effectively achieve risk reduction and regulatory compliance while supporting business goals and initiatives.

Overview

17
17
years of professional experience
8
8
years of post-secondary education
4
4
Certifications
2
2
Languages

Work History

Vice President - Information Security & Compliance

Hubilo Technologies, Inc
San Francisco, CA
01.2023 - Current
  • Drive and helped organization in successfully certifying on industry gold certification, SOC 2 Type 2 which includes all 5 principles
  • Drive and helped organization in successfully renewing the ISO standards, viz., ISO 27001/27017/27018/27701 for another year with minimum non-conformities
  • Hired and managed employees to maximize productivity while training staff on best practices and protocols.
  • Supported and guided organization on Merger & Acquisition of one of the technology company in Europe by ensuring proper legal, infosec and privacy regulations are being taken care off along with various audit process
  • Devised and presented business plans and forecasts with respect to information security, cyber security, GRC & Compliance to board of directors which can help organization growth in long run
  • Created succession plans to provide continuity of operations during leadership transitions.
  • Communicated department wise business performance, forecasts and strategies to investors and shareholders.
  • Established performance goals for department and outlined processes for achievement.
  • Cultivated company-wide culture of innovation and collaboration.
  • Demonstrated proficient leadership skills to motivate employees and build competent teams.
  • Increased company growth through collaboration with sales and marketing departments by exchanging ideas around the cyber security and compliance which are needed to boost the business
  • Identified opportunities to improve business process flows and productivity.
  • Collaborated with legal, accounting and other professional teams to review and maintain compliance with regulations.
  • Oversaw business-wide changes to modernize procedures and organization.
  • Monitored key business risks and established risk management procedures.
  • Maintained P&L for the department and shouldered corporate fiscal responsibility.
  • Established and maintained strong relationships with customers, vendors and strategic partners.
  • Collaborated with senior management to develop strategic initiatives and long term goals.
  • Mitigated regulatory risks by overseeing adherence to Cyber Security and safety regulations.

Vice President - Information Security & Compliance

fielddrive, a Hubilo Company
Brussels
01.2023 - Current
  • Developed and implemented intact security and privacy framework in order to make organization ready for certifications like ISO 27001/ISO 27701 and SOC 2 Type 2
  • Collaborated with legal, accounting and other professional teams to review and maintain compliance with regulations.
  • Devised and presented business plans and forecasts with respect to information security, cyber security, GRC & Compliance to board of directors which can help organization growth in long run
  • Oversaw business-wide changes to modernize procedures and organization.
  • Collaborated with senior management to develop strategic initiatives and long term goals.
  • Created succession plans to provide continuity of operations during leadership transitions.
  • Established and maintained strong relationships with customers, vendors and strategic partners.
  • Evaluated product development strategies and prepared alternative approaches to goal achievement.
  • Identified opportunities to improve business process flows and productivity.
  • Demonstrated proficient leadership skills to motivate employees and build competent teams.
  • Established performance goals for department and outlined processes for achievement.

Director - Information Security & Compliance

Hubilo Technologies, Inc
San Francisco, CA
03.2021 - 12.2022
  • Drive Information Security, GRC & Compliance along with Information Technology Operations using industry best practices standard align with the global data protection regulations / act for all organization core activities
  • Remained composed and highly professional in fast-paced and constantly changing environment, effectively handling challenging situations and difficult individuals to achieve objectives.
  • Implemented and Managed Information Governance Strategy for protection and innovation, as well as audit & compliance strategy to strengthen the internal controls
  • Worked closely with organizational leadership and board of directors to guide operational strategy.
  • Drafted and distributed reports to assist board members with critical business decisions.
  • Evaluated company documentation to verify alignment with regulatory requirements.
  • Implemented and Managed Information Security Management System (ISMS) and Privacy Information Management System (PIMS) that covers Policy, Processes, People and Technology
  • Drive and helped organization in implementing and certifying on ISO Standards, viz., ISO 27001/27017/27018/27701 framework in just about 3 months of time after joining
  • Drive and helped organization in implementing and certifying on security industry gold certifications, viz., SOC 2 Type 2 and CSA Star Level 1
  • Lead cross functional teams to co-develop remediation actions for minimizing risk of Company Information, Personal Information protection breach and managing information breach incidents
  • Assess the impact of emerging trends and technologies (e.g Security & Privacy enhancing technologies, Cloud Computing, Cyber-Security) and world-wide regulatory developments that pose significant risks associated with Information protection
  • Developed Training Program to educate workforce members on Information Security and Personal Information Protection Policies and Processes / SOP's
  • Supervise team to Conduct timely (half yearly) Compliance Audits, Analysis Findings and Implement changes to address Identified Gaps within the different processes
  • Supervise team in successful implementation of MDM Solution (Jump Cloud) for centralized management of all endpoint devices along with Crowd Strike Falcon, which is a next generation intelligent antivirus + EDR tool for threat management to protect end points with external attacks and threats
  • Supervise team in successful implementation of Google workspace enterprise plus version to enhance the security posture of organization by enabling various services offered like CAA (Context Aware Access), Centralized browser management, SMIME, DLP, MDM for Mac, windows and Mobiles
  • Attrition Management and Performance Management - Expertise on managing different people expectation, aligning them to process goals and developing people based on their career aspirations
  • People Pillar Activities - Assist management with career development activities Subject Matter Experts, including performance management, feedback and training. Map IDP to career aspirations to draw a road-map for over all people development
  • As an added responsibility, handling the Admin & Facilities function as well and supported organization to open offices across the globe in last 6 months
  • Monitored office workflow and administrative processes to keep operations running smoothly.

Group Manager - IT

Wingify Software Pvt Ltd
New Delhi
10.2019 - 02.2021
  • Drive Information Technology Operations, Information Security and Compliance with industry best practices standard align with the global data protection regulations / act for all organization core activities
  • Implement and Manage Information Governance Strategy for protection and innovation, as well as audit & compliance strategy to strengthen the internal controls
  • Lead cross functional teams to co-develop remediation actions for minimizing risk of Company Information, Personal Information protection breach and managing information breach incidents
  • Assess the impact of emerging trends and technologies (e.g Security & Privacy enhancing technologies, Cloud Computing, Cyber-Security) and world-wide regulatory developments that pose significant risks associated with Information protection
  • Manage Information Security Management System (ISMS) and Data Protection Management Program (DPMP) that covers Policy, Processes, People and Technology
  • Helped the organization in renewing ISO/IEC 27001:2013 framework and BS 10012:2017 PIMS framework (Equivalent to GDPR)
  • Managing and maintaining self assessment of Payment card industry framework, PCI-DSS v3.2.1 and Health Insurance framework, HIPAA
  • Perform a timely Risk Assessment and DPIA to Identify, Assess & Address, Business & Regulatory Risks
  • Maintain training program to educate workforce members on Information Security and Personal Information protection policies and processes / SOP's
  • Conduct timely (quarterly) Compliance Audits, Analysis Findings and Implement changes to address Identified Gaps within the different processes
  • Maintaining IMSF (Integrated Management Security Framework) for entire organization aligning Security and Privacy framework with respect to NIST audit regulations
  • Collaborated with cross-functional teams to maintain project progress.
  • Maintained positive customer relations by addressing problems head-on and implementing successful corrective actions.
  • Successfully managed budgets and allocated resources to maximize productivity and profitability.
  • Assisted in organizing and overseeing assignments to drive operational excellence.
  • Acting as a point of escalation for all IT related issues, achieving resolution by engaging all available resources, and minimizing the need for further escalation
  • Reviewing and analyzing performance reports against targets on a weekly/monthly basis for all IT services with respective service Leads/Managers
  • Attrition Management and Performance Management - Expertise on managing different people expectation, aligning them to process goals and developing people based on their career aspirations
  • People Pillar Activities - Assist management with career development activities Subject Matter Experts, including performance management, feedback and training. Map IDP to career aspirations to draw a road-map for over all people development

Senior Manager - IT

Wingify Software Pvt Ltd
New Delhi
08.2018 - 09.2019
  • To drive Information Technology Operations, Information Security and Compliance with industry best practices standard align with the global data protection regulations / act for all organization core activities
  • Implement and Manage Information Governance Strategy for protection and innovation, as well as audit & compliance strategy to strengthen the internal controls
  • Lead cross functional teams to co-develop remediation actions for minimizing risk of Company Information, Personal Information protection breach and managing information breach incidents
  • Implementation of SIEM tool (ELK Stack/OSSEC) across the organization for real time analysis of security alerts generated by various enterprise level applications and network hardware
  • Implementation and management of overall SOC operations which includes achievement of 99.99% SLA along with continuous monitoring of enterprise level services
  • Assess the impact of emerging trends and technologies (e.g Security & Privacy enhancing technologies, Cloud Computing, Cyber-Security) and world-wide regulatory developments that pose significant risks associated with Information protection
  • Implement and Manage Information Security Management System (ISMS) and Data Protection Management Program (DPMP) that covers Policy, Processes, People and Technology
  • Helped the organization in implementing and getting externally certified on ISO/IEC 27001:2013 framework and BS 10012:2017PIMS framework (Equivalent to GDPR)
  • Implementing and getting organization self assessed on Payment card industry framework, PCI-DSS v3.2.1 and Health Insurance framework, HIPAA
  • Perform a timely Risk Assessment and DPIA to Identify, Assess & Address, Business & Regulatory Risks
  • Develop Training Program to educate workforce members on Information Security and Personal Information Protection Policies and Processes / SOP's
  • Conduct timely (quarterly) Compliance Audits, Analysis Findings and Implement changes to address Identified Gaps within the different processes
  • Implemented IMSF (Integrated Management Security Framework) for entire organization aligning Security and Privacy framework with respect to NIST audit regulations
  • Implementation of JAMF-PRO, an MDM tool specially for MAC machines in order to manage the end point machines centrally through G-Suite LDAP integration
  • Implementation of Carbon Black, which is a next generation intelligent antivirus + EDR tool for threat management to protect end points with external attacks and threats
  • Up-gradation of G-Suite model from Basic to Enterprise and implementing enhanced security features like DLP, S/Mime across organization to prevent major cyber-attacks and safeguard organization assets
  • Introduction of SSO through G-Suite within the organization for all enterprise level tools in order to enhance security through one identity and password across various tools
  • Migration of billing of all IT related assets including GCP (Google Cloud Platform) from diverse paying methods to a centralized billing team to keep a check on financial budgets and EBITDA value
  • Automation of Asset Management from manual sheet to centralized tool to ensure granular level access and visibility to all assets across Organization
  • Acting as a point of escalation for all IT related issues, achieving resolution by engaging all available resources, and minimizing the need for further escalation
  • Reviewing and analyzing performance reports against targets on a weekly/monthly basis for all IT services with respective service Leads/Managers
  • Attrition Management and Performance Management - Expertise on managing different people expectation, aligning them to process goals and developing people based on their career aspirations
  • People Pillar Activities - Assist management with career development activities Subject Matter Experts, including performance management, feedback and training. Map IDP to career aspirations to draw a road-map for over all people development

Manager IT

RateGain Travel Technologies Pvt Ltd
Noida
08.2013 - 08.2018
  • Implemented and managed Information Security Program and Policy for organization and maintain documentation in accordance with mandated policies
  • Conduct compliance audit and information security audit in the annual calendar as per the contextual framework of the organization
  • Communicate and assist management in understanding and ensuring compliance of regulatory requirements in compliance with ISO 27001:2013, GDPR, PCI-DSS and NIST audit regulations and get achieve amicable agreement
  • Facilitating the implementation of the annual security risk assessment ensuring all key risks are assessed and recommending internal control improvements that may include operational enhancements or efficiencies
  • Implementation and management of overall SOC operations which includes achievement of 99.99% SLA along with continuous monitoring of enterprise level services
  • Collaborated with other departments to help meet IT needs and properly integrate and secure systems.
  • Managed network and system performance, conducting troubleshooting, security patching, and maintenance.
  • Interacted and negotiated with vendors, outsources and contractors to secure products and services.
  • Analyzed network security and current infrastructure to assess areas in need of improvement and develop solutions.
  • Developed and implemented measures and procedures to protect IT systems from cyber threats and data breaches.
  • Implementation of SIEM tool (Splunk/Wazuh) across the organization for real time analysis of security alerts generated by various enterprise level applications and network hardware
  • Helped the organization in implementing and certifying externally on GDPR compliance and PCI-DSS v3.2
  • Helped the organization in doing the self assessment of ISO/IEC 27001:2013 framework which is the first step to safeguard CIA (Confidentiality, Integrity & Availability) of information security/assets
  • As a legislative auditor, I am responsible for reviewing procedures and technology to ensure the confidentiality, integrity, availability, security and privacy of the information life cycle
  • Implementation of VOIP services across the globe at all sites with reduction in cost up to 30%
  • Acting as a point of escalation for all IT related issues, achieving resolution by engaging all available resources, and minimizing the need for further escalation
  • Reviewing and analyzing performance reports against targets on a weekly/monthly basis for all IT services with respective service Leads/Managers
  • Attrition Management and Performance Management - Expertise on managing different people expectation, aligning them to process goals and developing people based on their career aspirations
  • People Pillar Activities - Assist management with career development activities Subject Matter Experts, including performance management, feedback and training. Map IDP to career aspirations to draw a road-map for over all people development

Acting Team Manager/Subject Matter Expert - IT

Dell International Services India Pvt Ltd
Gurgaon
02.2008 - 08.2013
  • As a member of the information security team I am involved in planning, implementation and patching vulnerability over network, server & application
  • As a member of information security team, helped the organization in achieving ISO/IEC 27001:2008 certification for various business units
  • Helped organization in doing the self assessment of the payment card industry standard, PCI-DSS
  • Provided consultancy to organization internal clients like HSBC and Bank of America on payment card industry framework like PCI-DSS, Information security framework like ISO to safeguard CIA of assets
  • Involved in preparation of SOP and Vulnerability Management process document for various clients
  • Managing day-to-day operations of the team, ensuring delivery of team productivity, quality and customer service targets
  • Analyzing reports on complex data associated with key business performance indicators, identifies and drives improvement actions across the business
  • Analyzing the overall performance of the team, identifying the improvement areas and implementing the adequate measures to improve
  • Maintaining expert knowledge of service offerings along with future industry products and technologies
  • An active participant of POWERING THE POSSIBLE social program for underprivileged children as an initiative by Dell

Technical Support Consultant

IBM Global Services
Gurgaon
12.2006 - 01.2008
  • Involved in technical checks of broadband services provided to external customers by various clients of IBM like Virgin Media
  • Took active participation in maintaining and managing different type of Windows Servers like Win 2003 server, Win 2000 Adv Server, NT Server
  • Responsible for the project implementation, preparation of the project report and complete project support
  • Provided technical support to customers for computer and network components and peripherals
  • As an IT initiative within the business unit participated in security programs to check and analyze various vulnerabilities

Education

PGDBA - Business Administration And Management

Symbiosis Centre For Distance Learning
Pune
08.2008 - 08.2011

Master of Science - Biotechnology

CCS University
Meerut
08.2004 - 07.2006

Bachelor of Science - Botany

CCS University
Meerut
08.2001 - 06.2004

Skills

    Information Security, Data Privacy & GRC Compliance

undefined

Certification

ISO/IEC 27001:2022 - Lead Auditor

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Quote

Security is enough until one day it is not !

Timeline

Vice President - Information Security & Compliance

Hubilo Technologies, Inc
01.2023 - Current

Vice President - Information Security & Compliance

fielddrive, a Hubilo Company
01.2023 - Current

Director - Information Security & Compliance

Hubilo Technologies, Inc
03.2021 - 12.2022

ISO/IEC 27701:2019 - Lead Implementor & Internal Auditor

01-2020

Group Manager - IT

Wingify Software Pvt Ltd
10.2019 - 02.2021

ISO/IEC 27001:2022 - Lead Auditor

03-2019

Senior Manager - IT

Wingify Software Pvt Ltd
08.2018 - 09.2019

PMP Trained

10-2013

Manager IT

RateGain Travel Technologies Pvt Ltd
08.2013 - 08.2018

ITIL Foundation 2011

08-2011

PGDBA - Business Administration And Management

Symbiosis Centre For Distance Learning
08.2008 - 08.2011

Acting Team Manager/Subject Matter Expert - IT

Dell International Services India Pvt Ltd
02.2008 - 08.2013

Technical Support Consultant

IBM Global Services
12.2006 - 01.2008

Master of Science - Biotechnology

CCS University
08.2004 - 07.2006

Bachelor of Science - Botany

CCS University
08.2001 - 06.2004

Similar Profiles

  • Pradeep Vishwakarma

    Pradeep VishwakarmaPradeep Vishwakarma

    Senior Manager - Customer Experience & Project Management at Hubilo & FielddriveSenior Manager - Customer Experience & Project Management at Hubilo & Fielddrive

    View Profile
  • Pranshu Pandey

    Pranshu PandeyPranshu Pandey

    Client Experience Manager at Fielddrive (a Hubilo Company)Client Experience Manager at Fielddrive (a Hubilo Company)

    View Profile
  • Subhankar Nandi

    Subhankar NandiSubhankar Nandi

    Associate Engineering Manager - QA at Hubilo Softech Private LimitedAssociate Engineering Manager - QA at Hubilo Softech Private Limited

    View Profile
Vijay ChaudharyCyber Security & Privacy Leader