Professional Synopsis:
• Information Technology and Cybersecurity Audits
• Design and Development of Control Frameworks
• Security Control Assessment and Testing
• Cybersecurity Risk Assessment (GDPR, HIPAA, PCIDSS, etc.)
• Vendor Information Security Risk Management
• Security Risk Assessment and Remediation Program
• Alignment with Enterprise Risk Management for managing organizational risks.
• Converting security risks to business risk, bases on impact.
• Policy Exception Management
• Patch and Vulnerability Management
• Client and Vendor Audits Handling
• Mapping Standards with ISO27001 (e.g., PCI DSS, NIST, HIPAA)
• Strategic Planning, Team Leadership, Talent Development
• Capability and Demand Management (DLP, Incident Management)
• Cloud Data Governance and Strategy Documentation
• Integration Lead for DCP Team (CS to UBS)
• Azure cloud setup using Kubernetes
• AI/ML Use Cases in DLP Incident Detection and Response
• Guidance on Security Controls for AI/ML
• 18 Years of Experience in Information Security Management, Risk Management, Implementation of Standards, Control Frameworks, Cybersecurity, Security & Privacy Assessments/Audits, and Business Continuity