Lead delivery on the client expectation for IT & Cybersecurity standardsPlan, organized, and executed internal IT security best practices aligned with strategy, protected information assets, and implemented risk control measurementsImplementation of policies, standard procedures, and compliance standards such as ISO 27001, ITIL, PCI-DSS, Six Sigma, HIPAA, SOC-2 Type IIExecute organization-wide VA&PT, manage third-party assessment for ISO 27001, PCI-DSS, HIPAA, SOC-2 Type IIPerform BIA (business impact analysis) and risk assessment to implement controls after review with management and key stakeholdersProvide oversight and guidance during security incidents and investigations, ensure root cause analysis is undertaken and input suggested approaches to deal with lessons identifiedRegular review of existing security practices and mechanisms to recognize needed improvements and enhancements as per changing business needs

Experienced Professional in Field Information Security & Data Privacy, GDPR and Risk Management with diversified work experience focusing on Data Privacy, DPIA and PIA along with IT Risk Assurance & Advisory Services, Information Security Audits, IT Risk & Threat Assessments and Regulatory Compliance for various industries along with implementation experience in Enterprise Security Product in a multi-Platform environment.

Responsible for the implementation of Information Security processes. Access Management, Risk Management, Threat and Vulnerability Management, Security Incident Management and SOCR reporting coordination. The experience includes working on transition/transformation projects from incumbent service providers and setting up processes to comply with Organization policies and regulatory requirements.

Responsible for implementation of IT Standards like ISO 27001, PCI-DSS, BCP framework. Plan and conduct Training and Awareness workshops for the Continuity plan for the different sets of audiences. Implementing and improving policies, processes, and procedures of the same.

Responsible for implementation and managing define IDS on the firewall (Checkpoint & ASA), password policies and group policies on the domain. Implementing IT policies to increase security & stability of the systems, Networks, Email/Data communications. Monitoring systems and firewall logs to tracks the error and keep the stability of system and Networks