ISO 27001 Implementation & Certification
Implementation of Information Security Management System (ISO 27001):
a. Gap Analysis of various processes of Infra, Facilities, HR, Applications teams, etc. across multiple locations in scope.
b. Performed Risk Assessment and developing Risk Treatment plans.
c. Conducted multiple Internal Audits.
d. Developing policies, procedures, standards, guidelines.
e. Conducted Information Security Awareness sessions and Quiz’s and Corporate Technical trainings Incident response and tracking.
f. Facilitate internal teams towards achieving regulatory compliance.
g. Recording and Maintaining Security Metrics Dashboards.
h. Releasing Security Advisories on Zero-day vulnerabilities.
i. Facilitated the Internal Security team to better evaluate Cloud security vendors and Security Product vendors.