Aviral Srivastava — Operations Associate
I am a seasoned Third Party Cyber Security Risk professional with over 11 years of experience across IT audits, cybersecurity assessments, and regulatory compliance and Third party risk management. My work has spanned a wide range of industries including banking, insurance, telecom, and technology, where I’ve helped organizations build stronger, more secure, and compliant environments. Over the years, I’ve led and supported both on-site and remote IT audits and security assessments, focusing on evaluating third-party risk, reviewing control environments, and identifying compliance gaps. My projects have included implementing GDPR frameworks for global banks, designing enterprise-wide risk and policy structures, and supporting large-scale security transformation programs. I bring a comprehensive understanding of core domains within information and cyber security, including: Cloud security, application security, data privacy, identity & access management (IAM), network & endpoint security, asset management, contract review and management, business continuity planning (BCP), disaster recovery, security governance, and IT general controls (ITGC). I have also worked closely on issues related to data classification, vendor risk profiling, regulatory audits (e.g., RBI, MAS), and internal risk frameworks. With a strong controls mindset and a collaborative approach, I’ve consistently delivered in high-pressure, regulated environments. I’m known for my ability to bridge technical and non-technical stakeholders, drive complex initiatives, and manage risks in a pragmatic and business-aligned manner. Key competencies include: Risk Management | IT & Cybersecurity Audits | Third Party Security Assessments | Regulatory Compliance | Cloud & Application Security | Data Privacy | IAM | Network & Asset Security | Contract Review | ITGC | BCP & DR | Security Governance | Stakeholder Engagement Awards & Certifications: • Top 15% Line Managers – Barclays (Global Recognition) • Developed remote work compliance framework (Org-level Recognition) • ISO/IEC 27001:2022 Certified • CISA Training – Infosec Institute I remain deeply committed to continuous learning, collaboration, and helping organizations navigate the ever-evolving landscape of cyber and information security.
Stackforce AI infers this person is a Cybersecurity Risk Management expert with extensive experience in regulated industries.
Location: Bengaluru, Karnataka, India
Experience: 12 yrs 9 mos
Career Highlights
- Over 11 years in Cyber Security Risk management.
- Expert in GDPR frameworks for global banks.
- Strong controls mindset in regulated environments.
Work Experience
KPMG
Assistant Manager (11 mos)
Senior Consultant (3 yrs)
Barclays
Assistant Manager (4 yrs 6 mos)
Team Lead (2 yrs 3 mos)
Business Analyst (2 yrs)
Education
Bachelor of Business Administration - BBA at Shri Venkateshwara University - India
Bachelor of Commerce - BCom at Delhi University
Master of Business Administration - MBA at Shri Venkateshwara University - India
