Professional Synopsis

I am a Certified Ethical Hacker (CEH) and an experienced cybersecurity professional with expertise in IT Governance, Risk and Compliance GRC audits. I have successfully executed several projects involving ITGC, segregation of duty (SOD) controls, Data Leak Prevention (DLP) and regulatory compliance based on cybersecurity frameworks such as NIST 800-53 Cyber Security Framework and ISO 27001. Other than these, I have closely studied standards and frameworks such as PCI-DSS, ISO 22301, ISO 31000, BASEL III, CRD IV and COPPA.

Proactive and detail-oriented, I am a dedicated problem solver with a strong focus on strengthening security measures and protecting critical assets, contributing to an organization’s security objectives. My expertise lies in conducting audits, identifying risks and vulnerabilities, and providing actionable recommendations to ensure compliance with regulatory and industry standards.

Driven by a commitment to continuous improvement, I have a good understanding of client needs and preferences, which has enabled me to tailor my services and maintain good client satisfaction.

With a strong background in Information Security Management Systems (ISMS) and Dynamic Application Security Testing (DAST), I also have proficiency in configuring and maintaining SIEM tools such as Splunk for prompt incident management. Additionally, I bring skills in Database Management System (DBMS), SQL, data science, and programming languages like PHP, Python, C, and C++.