Senior Consultant
Current• Working as Senior consultant, conducting Risk Assessment and Internal Audit for various on premise and Public Cloud (AWS) components.• Participated in the preparation and the implementation of necessary information security policies, procedures and guidelines, in conjunction with the Security Committee to get appropriate approvals and feedback.• Conducting comprehensive risk assessments in close coordination with internal and external stakeholders.• Registering identified risks in to MetricStream tool for tracking.• Assess and design internal controls by applying an understanding of internal control design frameworks and regulatory requirements.• Recommends revisions to internal audit procedures to enhance efficiency. Reviews internal controls throughout the organization by evaluating the adequacy of system controls and recommends improvements. • Conducted suitable information security awareness and training activities.• Adept in InfoSec, Information Risk Management, Audit and Compliance tasks.• Conduct risk assessments and audits and drive risk treatments, and support external audits around information security, business continuity management and data privacy.• Ensure to mitigate security risks, facilitate external and client audits and respond to observations.• Assess public cloud (AWS) information security posture, identify the gaps/risks in the existing environment and suggest mitigating the identified gaps/risk.• Identify opportunities for process improvements to deliver increased operational efficiency in the processes.