Preferred mode of communication: WhatsApp Messaging,Email Only

Availability: Sunday,Saturday

Brief bio:   Having more than 21 years of experience in ensuring InfoSec, Cybersecurity, Information Security Governance, ITGC, IT Audits, Control testing, ISO 27001 Implementation and Audit etc. In my current profile, I am:
1. Responsible for Information/ Cybersecurity, Compliance, Data Security for all India and Middle East operations.
2. Responsible for Internal Audit and Certification for ISO 27001 and SOC2 of all offices of India and Middle East.
3. Responsible for Vulnerability Management for all India and ME offices.
4. Responsible for BCP/ DR and conducting BCP/ DR test for India and ME.
5. Responsible for Information Security Risk Management for India and ME offices.
6. Responsible for client's/ vendor's Third Party Risk Management and responding TPRM/ IS questionnaire.
7. Responsible for Network/ Application and System security.
8. Responsible for Information Security Training and Compliance.
9. Responsible for conducting and planning phishing campaigns and Information Security/ Privacy awareness quizzes.
10. Responsible for complying with various compliance and standards (ISO 27001, SOC 2 Type 1 & 2, GDPR, HIPPA, ITGC, ITAC, ITIL, SOX , PCI DSS, Cloud Security etc.)
11. Responsible for discussion and approval of client legal agreements like MSA, NDA, SOW, SLA etc related to confidentiality and Data privacy and protection.
12. Responsible for EDR, Security Operation Center, SIEM etc.
13. Responsible for formulation and implementation of ISMS policies and procedures.
14. Responsible for reviewing the ISMS policies on a regular basis.
15. Responsible for Information Security Incident Management.
16. Responsible for monitoring and enforcing privilege access management.
etc.
17. Responsible for TPRM