Delhi, India
A seasoned professional handling Governance, Risk & Compliance, strategizing an organization’s information security program with expertise in implementing Information Security Programs touching people, processes and technology. Managing the entire gamut of Information risk management operations and continually evolving a security strategy, policies, processes, controls & best practices. Strong exposure in providing consultancy on Information Security standards, regulations, best practices, vulnerability findings & policy non-compliance remediation. Proficient in developing an effective assurance framework supporting delivery of risk management strategy expertise in providing a solution-based approach to clients focused on resolving their needs and maintaining excellent relations. An avid photographer and a health enthusiast.... believer of "a healthy body has a healthy mind"
Heading centralized Information Security Office to lead various InfoSec projects and enforce policy across the group for centralized management and review • Running effective governance for security operations centre (SoC), metrics and analytic reporting including Incident Monitoring, Incident Response • Sustenance and implementation of frameworks like ISO 27001 and NIST CSF in group companies • Process and automation of site-level risk and control self-assessment for IT processes for effective compliance monitoring. • Foster change in organizational culture that can embrace new and challenging security requirements by improving communication, education and awareness at all the levels of organizational hierarchy
Lead Information Security office for DPLI as CISO with reporting line to Board and headed the cost centre and investments related to security controls • Headed information security team with appropriate competencies and attitude to deliver information security program; Coordinated with national-level authorities and regulators such as CERT-IN, NCIIPC