Information Security, data privacy, internal audits, process consultant, certification audits

Experienced in conducting risk assessments, information security, processes, change management, management reviews, internal audits, customer audits, review of Bids for proposals, managing organization intranet, customer surveys, supplier audits

• Auditor12 J.
• Certified Information Systems Auditor12 J.
• Informationssicherheit
• Qualitätsmanagement / QS / QA (IT)

Responsible for implementing information security, data privacy, Quality to customer projects and organization
• Hands-on experience in spearheading the planning and execution of requisite information security policies, standards, procedures and guidelines, risk assessments, compliance in line with industry standards globally across organization
• Comprehensive knowledge in preparing and conducting IT and infrastructure audits pertaining to information security policy, regulations, governance, and other security-related requirements and best practices
• Conducting all customer audits, external audits for international standards like ISO 9001:2015, ISO 27001:2013, ISO 27001:2005, BS 25999, SAS 70/SSAE 16 Audit, GDPR
• Responsible for project management, account management and process management of processes across organization
• Providing process roadmap for the organization, carrying out management reviews, and executing industry best practices in line with international parameters
• Responsible as a primary point of contact for the executive management team for governance, risk and compliance for the organization, Data protection officer for the organization
• Managing the planning, streamlining and deploying of process for all 3 business units
• Imparting training to the staff on processes across organization
• Ascertaining that the process updates are effectively communicated to the organization via change management practices
• Administering changes to process through feedback, reviews and audits along with executing changes and rollout in a systematic way
• Handling the project management tool-Mantra for all project management activities comprising timesheets, effort and schedule tracking
• Implemented tools like Requisite pro, Doors for requirements management, knowledge of RUP suite for design and Bugzilla for testing activities
• Supervising the team for the corporate intranet, identifying, developing tools to improve productivity of the organization
• Conducting operations meeting for projects, reviewing projects for schedule, effort and defects, along with commencing corrective actions where deviations are established and tracked to closure
• Carrying out periodic audits, offering project feedbacks in terms of process performance, and conducting root cause analysis in verticals where remedial actions are not helpful
• Ensuring the execution of controls based on risks identified coordination and management of incidents along with key involvement in business continuity plans. A member of the Emergency Response Team for the organization
• Manage customer surveys, internal surveys which includes prepare questionnaire, receive feedback, perform analysis, advise management on future course of action by projects and organization to enhance customer experience
• Ensure a supplier audit plan, communicate, handle Supplier audits, provide reports, follow up for corrective actions. Further improvements are reviewed on a periodic basis to improve efficiency and quality
• Conduct learning reviews, milestone reviews, identify non-conformances, communicate, help projects take corrective actions and follow up for closure
• Outstanding Proof of Concepts, problem solving, communication, presentation and documentation skills

BE, MBA, MS, Professional Qualifications include lead auditor for ISO group of standards like ISO 27001, 9001, 20000, 22301