Chief Information Security Officer
CurrentExperienced IT Infrastructure and Cybersecurity professional with 17+ years of expertise in managing and securing complex IT environments. Drive information security program to enhance the security posture of the organization. Presented IT risk assessments and mitigation strategies to various IT governance committees appointed by the board, ensuring alignment with organizational objectives and regulatory requirements. Ensure compliance with relevant laws, regulations, and industry standards i.e., RBI, ISO 27001, DPDPA etc. Prepare and submit regular compliance reports to management and regulatory bodies. Collaborate with internal and external auditors during security assessments and audits. Develop and enforce security policies, standards, and guidelines. Ensure policies are up-to-date with current cybersecurity trends and regulatory requirements. Guided implementation of company-wide enterprise security strategy for network, disaster recovery, data protection (Data Leakage Prevention, data encryption and Data Classification) and endpoint protection. Facilitated IT audits (internal & external) as per regulatory guidelines. VA/PT (server, network, application), Risk Assessment etc. Drafted training materials and organized target phishing campaign on employees to test the effectiveness of current security controls.