Mohan Bapat

Experience

• 

  Brisk Electronic Services

  Jul 1991 - May 1994

  Senior Engineer – Customer Support
• 

  Tandem Machines Pvt. Ltd.

  May 1994 - Feb 2001

  Asst. Manager – Technical (FM Services)
• 

  NODS Consulting Pvt. Ltd

  Mar 2001 - Jul 2005

  Senior Technical Consultant
• 

  Centrum Direct Limited

  Jul 2005 - Sept 2006

  Manager-IT

  • Successfully, operated CTCL Server (SDG - ORION), BOLT as well as other front-end and back-end systems.• Shouldered the onus of ensuring the compliance and adherence to all systems requirements for BSE, NSE, CDSL etc.

• 

  Tandem Machines Pvt. Ltd

  Oct 2006 - Feb 2007

  Manager IT

  Consultation services to setup trading setups by, • Conducted network architecture design, feasibility and cost studies • Designed, analyzed, and implemented the CTCL Server (SDG - ORION), BOLT as well as other front-end and back-end systems• Ensured compliance adherence to all systems requirements for BSE, NSE, CDSL etc

• 

  Toyo Engineering Corporation

  Oct 2007 - Oct 2016

  Information Security Manager (Dy. Manager)

  As an Information Security Manager, shouldered responsibilities of Chief Information Security Officer (CISO) towards Information Security Governance, for the organization.Strategic Planning : • Spearheaded development and deployment of comprehensive security strategy explicitly aligned with Business and IT objectives; applicable legal, regulatory and contractual requirement by establishing and enforcing framework for,- Information Security Risk Management- Information Security Performance Monitoring- Information Security Incident Management- Continual Improvement- Business Continuity and Disaster RecoveryInformation Security Management :• Lead and coordinated development of organization specific information security policies, procedures, guideline and processes in consultation with various stake holders and in accordance with ISO/IEC 27001, QMS Standard, J-Sox, applicable legal, regulatory and contractual requirement.• Monitored compliance with information security policies and procedures, Monitoring information security incidents and breaches; Advising the organization with current information about information security technologies & related regulatory issues.• Ensured remedial action to reduce / diminish the impact of information security incidents and breaches. Issued alerts and advisories with respect to new vulnerabilities / threats to all concerned.Audit: Played pivotal role in multiple certification audit cycles of ISO 27001. Managed Information Security Audit programs. Prepared information security audit reports providing recommendations for improving information security.Management Communication :Appraised the management about performance and effectiveness of the established Information Security System with periodic updates on changes in internal and external environment including technology, process and regulatory requirement; changes due to dynamic risk scenarios. Show less

• 

  Self-employed IT professional

  Nov 2016 - now

  Information Security Consultant and Auditor

  As freelance Information Security professional executed projects in association with firms such as Infocounselors, Ecom Infotech. o Consultation services • Developing and Deploying comprehensive security policies required for establishing ISMS • Aligning established ISMS with GDPR requirementso Audit services • Information Security Audits, • SOC-II type 2 Audits • Process Auditso Training servicesEmpaneled trainer with TUV India Pvt. Ltd. For Conducting ISO/IEC 27001:2013 trainings for corporate clients, • Awareness program for ISO 27001:2013 • Internal Auditors for ISO 27001:2013 Show less