About Me
Professional Background
With over 2 years of experience in information systems audit and GRC, I specialize in designing and testing controls to ensure regulatory compliance. I have developed comprehensive audit programs leveraging security frameworks including ISO 27001, SOC2, and GDPR to strengthen organizational governance and controls.
My expertise lies in conducting thorough security audits, performing qualitative risk assessments, and developing policies and procedures that align with international standards and best practices.
Key Competencies
- Information Systems Audit
- Governance, Risk & Compliance (GRC)
- Data Protection & GDPR Compliance
- Security Frameworks (ISO 27001, SOC 2)
- Risk Assessment & Management
Current Roles
Information Systems Auditor & GRC Analyst
Vairav Technology Security Pvt. Ltd.
Developing audit methodologies, conducting comprehensive security audits, and implementing GRC frameworks to enhance organizational security posture.
Data Protection Officer
Vairav Technology Security Pvt. Ltd.
Ensuring GDPR compliance, leading employee training on data privacy, and managing data subject requests and breach responses.
Technical Foundation
I have a solid understanding of basic networking concepts and proficiency in Python programming and SQL. This technical foundation enables me to better understand the systems I audit and to develop data-driven insights from security and compliance data.
Professional Philosophy
I believe that effective security and compliance programs should not be seen as obstacles to business objectives, but as enablers that build trust with customers and stakeholders. My approach focuses on creating practical, risk-based controls that protect organizations while supporting their strategic goals.
I am committed to continuous learning and staying updated with the latest developments in cybersecurity, data protection, and compliance requirements to provide the most current and effective guidance to organizations I work with.