🔐 Cybersecurity & GRC Consultant | ISO 27001 | SOC 2 | TPRM | VAPT | Cloud Sec | AI Compliance
🔐 Cybersecurity & GRC Consultant | ISO 27001 | SOC 2 | TPRM | VAPT | Cloud Sec | AI Compliance
I’m a seasoned Cybersecurity and Compliance Strategist with 5+ years of experience helping product-based enterprises and global IT firms secure their ecosystems, ensure regulatory compliance, and streamline third-party risk management (TPRM).
With a background in Governance, Risk & Compliance (GRC), Secure SDLC, VAPT, Cloud Security, and Automation, I specialize in building scalable, audit-ready security frameworks aligned with ISO 27001, SOC 2, and NIST. I've worked extensively with cross-functional teams to embed secure code reviews, SOD policies, DevSecOps, and compliance pipelines into CI/CD environments.
🔍 Key Skills
ISO 27001, SOC 2, NIST Compliance
Risk Assessments & Third-Party Vendor Reviews
GRC Tools: Archer, ServiceNow GRC, Vanta, Drata
Vulnerability Assessment & Penetration Testing (VAPT)
Secure SDLC, DevSecOps Controls
Cloud Security (AWS/GCP), SASE, EDR, SIEM
AI Governance, LLM Risk Mapping & Compliance
Compliance Automation & Continuous Evidence Collection
🎯 Let’s connect if you need:
A fractional CISO/GRC lead
Cyber risk assessments and remediation roadmaps
Vendor risk evaluations or SOC 2 readiness
Secure code and SDLC compliance in product pipelines
🔐 Delivering security, one control at a time.
Let’s build trust, reduce risk, and stay compliant—together.
Work Terms
Clear Requirements before advance booking.
Attachments (Click to Preview)
-