Experience

• 

  Datamatics global services ltd, india

  Nov 2011 - May 2012

  Web researcher

  • Acted as a web researcher for International Client• Involved in sourcing & validating the Unique Product Code of every product available on the eBay site

• 

  Network intelligence

  Nov 2012 - Dec 2013

  Senior analyst

  • Executed ISO 27001 standard at well know the multinational conglomerate company and financial organization• Performed ISO 27001 IT internal audits for renowned banks & NBFC organizations and ISO 27001 audit reporting

• 

  Network intelligence

  Jul 2015 - Jul 2019

  Security consultant

  • Implemented ISMS calendar activities to maintain ISO 27001 certification • Prepared ISO 27001 surveillance audit & re-certification audit and conducted ISO 27001 risk assessments for multinational companies

• 

  Self-employed

  Jul 2019 - Jan 2020

  Iso27001 implementer and auditor

  • Executed Vendor Risk assessment projects and ISO 27001:2013 Internal Audit Projects for multinational conglomerate companies

• 

  Eclerx

  Feb 2020 - Aug 2021

  Associate process manager

  • Implemented annual ISMS maintenance activities• Effectively organised department/process audits as per planned audit cycle based on ISO 27001:2013 and vendor audits as per ISO 27001:2013 Standards and IT best practices• Performed ISO 27001:2013 risk assessment of various process; audit non-conformity closure follow-up and tracking• Implemented several miniature activities related to security compliance and reviewed IT security policies & procedures as per the defined frequency• Organised monthly Information security awareness training for new joiners Show less

• 

  Upstox

  Aug 2021 - Sept 2022

  Senior associate - cyber security

  • Spearheading Cyber-security Governance Risk and Compliance team and developing ISO 27001:2013 policy & procedures in adherence to business objectives of the organisation• Managing regulatory audits to attain their requirements and executing ISO 27001:2013 (ISMS) across the organisation• Carrying out a risk assessment of IT and business processes to identify information security risks and coordinating the same to close the existing information security risks• Studying the different processes and analysing their information security controls • Identifying information security risks by performing periodic vendor audits using ISO 27001:2013 • Executing vendor on-boarding & software procurement process and information security awareness Programs like awareness training for new joiners, half-yearly awareness training and monthly security awareness mails to the audience Show less

• 

  Marsh mclennan

  Sept 2022 - now

  Senior manager