Ambaji bodekar

Executive - Information Security officer @Datamatics

South Mumbai, Maharashtra, India

About

Experience

  • Executive at Datamatics
    Jan 2025 - Present · 1 yr 7 mos

    Spearheaded Third-Party Risk Management processes, conducting vendor assessments and due diligence reviews to ensure compliance with security standards and contractual obligations. Contributed to the design and implementation of Information Security Management System (ISMS) aligned with ISO 27001 standards. Conducted comprehensive security and compliance assessments aligned with ISO 27001 controls and regulatory requirements. Supported Internal and External Audits including ISO 27001, SOC 1, SOC 2, and client audits, ensuring timely closure of audit observations. Led resolution of high-risk client security questionnaires under tight deadlines, ensuring structured risk articulation and timely client delivery. Collaborated cross-functionally with IT, Legal, and Compliance teams to strengthen Governance, Risk, and Compliance (GRC) practices. Actively participated in Incident Management and Change Management processes to minimize operational risks. Conducted Desktop Security Audits and Endpoint Security Compliance checks across organizational systems. Monitored SIEM logs and supported Wazuh implementation for threat detection and security monitoring. Assisted in Business Continuity Planning (BCP) and conducted BCP testing and reporting. Led Access Management initiatives to maintain secure user authentication and authorization controls. Delivered Information Security Awareness Training and conducted induction sessions for new employees. Monitored Email Access and Mobile Device Security compliance across users. Played a key role in continuous improvement of security controls, supporting governance and compliance initiatives. Supported risk assessments and vulnerability management activities to strengthen overall security posture.

  • Intern information security at Anzen Technologies Private Limited
    Jun 2024 - Dec 2024 · 7 mos

  • Regulatory Compliance Analyst at Anzen Technologies Pvt. Ltd.
    Jun 2024 - Dec 2024 · 7 mos

    Executed Third-Party Risk Management processes, including vendor risk assessments and due diligence reviews to ensure compliance with contractual and security requirements. Worked extensively with ISO 27001 standards to support implementation, assessment, and continuous improvement of Information Security Management Systems (ISMS). Reviewed and updated information security policies, procedures, and documentation to ensure alignment with ISO 27001 and organizational security requirements. Supported governance and compliance initiatives to strengthen overall security posture and regulatory adherence.