Highlights:

Skills:GRC, Risk Management, Compliance, Information Security, ISO 27001

Goal:To leverage 20 years of leadership in IT Governance, Cyber Security, and Risk Management to drive innovative security strategies and ensure robust protection of enterprise systems. Expertise in defining and implementing Information Security Frameworks, fostering secure system integration, and aligning security initiatives with organizational goals. Proven success in leading global teams, optimizing risk processes, and delivering compliance excellence in dynamic environments.

Certification:CompTIA Security+ce, CSOE, CRCMP, ISO 27001 LI

Manager Technology Risk 11/2022 - current
Sutherland Global Services, , India
Spearheading Risk Management activities, ensuring meticulous oversight and the implementation of effective mitigation strategies.
. Actively defining and re-engineering the Risk Management SOP/Policy to seamlessly align with ISO 31000 standards. Introducing a dynamic Risk dashboard to foster enhanced decision-making capabilities. Revamping the risk tracker template for seamless implementation across the organization. Crafting detailed Risk Management plans, conducting thorough Risk Assessments for all technologies and tools, and decisively determining their applicability for prompt risk closure. Preserving strict accountability for the governance of risk-related activities, ensuring the resilience and integrity of organizational operations. Maintaining the Security Compliance Framework as per directives; developing a control framework for security health checks monitoring. Revising end-user security documentation, policies, cheat sheets & induction PPTs; enhancing visibility of security performance by publishing metrics in the risk dashboard. Actively drafting and implementing site-specific policies, procedures & best practices covering information security, corporate security, Business Continuity Management (BCM) & safety programs. Conducting audits, reviewing, and negotiating security in contracts with IT suppliers, leading to an enhanced security environment. Establishing Information System Audit and Information Security functions; developing organization charts and job descriptions, followed by hiring & training team members. Completing Business Continuity Planning (BCP)/ Disaster Recovery Plan (DRP) exercises for the entire organization, including testing. Preparing policies and procedures for the implementation of security controls, performing gap assessments, threat and vulnerability assessments, and risk analysis. Continuously reviewing compliance & governance requirements; conducting risk assessments for overall IT processes as per organizational policies and standards.--

Pt Ravishankar Shukla 11/1998 - 04/2004
, , India
Degree: Bachelor's Degree
Major:Electronics and Telecom
Graduated in Electronics and Telecommunicatio

Login to view resume: GRC -
Login to view resume: GRC - GRC, Cyber security, Information Security, Compliance, ISO