Divya Raman

Operations Associate

Bengaluru, Karnataka, India9 yrs 4 mos experience
Highly Stable

Key Highlights

  • Expert in driving security compliance and audits.
  • Proven track record in managing IT security audits.
  • Strong background in risk management and regulatory compliance.
Stackforce AI infers this person is a Security Compliance and Risk Management expert in the Fintech and SaaS industries.

Contact

LinkedIn

Skills

Core Skills

Information SecurityCompliance ManagementRisk Management

Other Skills

Compliance AuditsCompliance audits managementISO 27001ISO 27001 AuditsIT AuditIT Security AuditsITILInfo SecInformation Security ConsultingInternal AuditsManaged Security ServicesMicrosoft OfficePCI ComplianceRegulatory AuditsRegulatory Compliance

About

Driving security compliance, audits, fortifying resilience and fostering security awareness through proactive problem-solving and strategic planning.

Experience

Deloitte

Deputy Manager

May 2024Present · 1 yr 10 mos · Bengaluru, Karnataka, India

Groww, india

Information Security Analyst

Apr 2021Apr 2024 · 3 yrs · Bangalore Urban, Karnataka, India · On-site

  • Responsible for enforcing Security compliance throughout the organization.
  • Perform Internal ISO 27001 Audits and improving Audit process.
  • Involved in Product discussions on a regular basis to ensure they are PCI
  • Compliant
  • Lead the preparation of IT Security and Compliance Audits such as PCI-DSS, ISO
  • 27001, SOC2, Local regulatory Audits.
  • Compliance Audits and Ad-hoc Bank and Vendor Audits.
  • Recommend and Co-ordinate the implementation of technical controls to
  • support and enforce defined security policies
Security complianceISO 27001 AuditsPCI ComplianceIT Security AuditsTechnical controls implementationInformation Security+1

Ibm

Audit, Risk and compliance

Oct 2016Apr 2021 · 4 yrs 6 mos · Bengaluru Area, India · On-site

  • Manage quarterly compliance audits with PricewaterhouseCoopers (PwC) by way of monitoring and tracking the execution process and ensuring deadlines and deliverables are met.
  • Perform assessments of all in-scope systems, processes and controls (Problem/Change Management, Logical Security, Computer Operations and Physical Security) to verify that controls are designed appropriately and operating effectively in order to achieve 100 % unqualified (satisfactory) audit reports.
  • Assists accounts and global support teams with response reviews and mitigation during the SSAE 16 Multi Client NA audits.
  • Assists in identification, resolution, and track resolution implementation.
  • Ensure audit readiness by using ITCS104, GSD331/ISEC standard guidelines and security self-assessment workbooks. Maintains security policies; processes; and tools and acts as the primary focal for auditors; SARM and delivery teams.
  • Provide effective tracking, follow-up and management reporting in order to enable identification and prioritization of issues, ensure remediation action plan are in place to meet commitments and to continuously review risk issues and control gaps to identify trends.
  • Drive the SSO team which performs Security Health Check, Patch Management, Vulnerability assessment, USER ID validation on Servers with OS platforms like Windows, AIX, Linux and subsystems to adhere to the compliance requirement as per the security policy.
  • Governing all Security Process and Issues and Maintain healthy compliance status for the Account..
  • Servers auditing as per company standard IT Security policy like ISEC, ITCS104, GSD331 etc
  • CIRATS Overview, Compliance, Issue, Risk & APAR Tracking system to ensure security compliance
  • Monitors compliance of information security procedures and policies and reports infringements to the top Management.
Compliance audits managementRisk assessmentSecurity policies maintenanceVulnerability assessmentRisk ManagementInformation Security

Stackforce found 100+ more professionals with Information Security & Compliance Management

Explore similar profiles based on matching skills and experience

DJ

Dollie Juneja

Senior Consultant

at EY

Hoboken, United States8 yrs 3 mos exp
Data AnalysisResearch Support
Aishwarya Shivhare

Aishwarya Shivhare

Senior Delivery Manager

at Tata Consultancy Services

Indore, India0 mo exp
Shreya Das

Shreya Das

Technical Consultant - Risk and Compliance

at IBM

Bengaluru, India4 yrs exp
IT Risk ManagementRisk Management
Sahil Ajitsaria

Sahil Ajitsaria

Head - Cyber Security Operations

at slice

Bengaluru, India10 yrs 9 mos exp
AM

Anshul Mangla

Chief Information Security Officer (CISO) & Data Privacy Officer (DPO)

at Hero FinCorp.

Delhi, India23 yrs 7 mos exp
Information SecurityInformation Security GovernanceSecurity Operations
Manisha Shahi

Manisha Shahi

Manager in Technology Consulting

at Protiviti India Member Firm

Delhi, India5 yrs 3 mos exp
Governance, Risk Management, and Compliance (GRC)Information Security ManagementIT AuditSecurity ConsultingISO 27001 Lead Auditor
Sandeep D Menon

Sandeep D Menon

Senior Security Manager I

at McKinsey & Company

London, United Kingdom9 yrs 3 mos exp
Cloud SecurityCyber Risk ManagementCybersecurityGRCInformation Security Management
Ronak Katariya

Ronak Katariya

CAT Auditor - Enterprise Risk Management

at Wipro

Pune, India5 yrs 3 mos exp
ISO 27001ISO 27001 Lead Auditor