Sourav Choudhury

HR Manager

Bengaluru, Karnataka, India12 yrs experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Expert in regulatory compliance and risk management.
  • Proven track record in conducting internal audits.
  • Skilled in managing information security for FinTech.
Stackforce AI infers this person is a Fintech Compliance and Risk Management expert with extensive experience in information security.

Contact

LinkedIn

Skills

Core Skills

Regulatory ComplianceRisk Management

Other Skills

Business Continuity PlanningCC++Change ManagementCommunicationCompliance ManagementContract ManagementCore JavaCyber SecurityCyber Security RiskHTMLISO 27001ISO 27001 Lead AuditorITGCIncident Management

About

CISA, ISO 27001: 2013 Lead Auditor working as an Compliance Manager managing information security, external audits and regulatory compliance requirements for a leading FinTech in India.

Experience

Phonepe

2 roles

Senior Manager

Promoted

Jul 2024Present · 1 yr 8 mos

Manager

Dec 2018Aug 2024 · 5 yrs 8 mos

  • Conduct risk assessments on products and systems related to businesses of PPI, BBPoU, UPI, Payment Aggregator/Gateway, Credit Card, Tokenization, lending, consumer and merchant life cycle.
  • Conduct Management Control Testing (MCT) for ITGC covering Manage Access, Manage Change, Manage Operations, Cyber security, and CUEC controls for Cloud based applications.
  • Preparing RACM and reporting Internal Controls testing outcome to the management, facilitate external audits such as ICOFR and SOX 404 Compliance
  • Oversee the ISO 27001: 2013, NIST CSF, PCI DSS, SARs’, Data Localization, and regulatory inspections by RBI, NPCI, IRDAI, UIDAI and various partner bank audits
  • Ensure necessary security hygiene is maintained for the outsourced business processes by conducting vendor due diligence prior to onboarding and periodic TPRM activities
  • Act as a custodian to the BCP policy, develop function specific BCP plans and procedures; and conduct timely review of the BIA of relevant products and businesses.
  • Drive the ITDR team to timely conduct the necessary DR drills by providing guidance.
  • Facilitate various cyber security related activities and support technical audits such as network VAPT, Configuration audit, Application Security, API security testing and Secure code reviews.
  • Conduct security assessment of Cloud service providers; review of SOC 2 reports and perform additional CUEC control testing.
Risk AssessmentRegulatory ComplianceISO 27001PCI DSSCyber Security RiskIncident Management+2

Tech mahindra

2 roles

Information Security Consultant

Promoted

Feb 2016Nov 2018 · 2 yrs 9 mos

  • Perform internal audits based on contractual obligations, ISO 27001: 2013, ISO 22301:
  • 2012 standards.
  • Ensuring compliance requirements are fulfilled by various business functions, delivery units
  • by way of periodic assessment, rigorous follow-ups, and awareness sessions.
  • Identifying security risks by conducting periodic gap assessment, risk assessment, document
  • and process review.
  • Responding to RFI/RFP and business proposal queries. Assisting pre-sales team in
  • demonstrating the security posture implemented in the organization during sales bid.
  • Assess and review the Business continuity/disaster recovery plans to ensure that they meet
  • the desired objectives.
  • Ensuring security breach incidents are addressed, preventive controls implemented, and
  • necessary actions are taken on the offender.
ISO 27001Risk AssessmentInternal AuditsCompliance ManagementRegulatory ComplianceRisk Management

Change Management Manager

Jan 2014Jan 2016 · 2 yrs

  • Optimizing network resources through a flexible change process without compromising on
  • the quality and availability of the network. Facilitate resolution of issues, such as detecting
  • collisions and scheduling conflicts in the calendar
  • Review installation, backout, and fallback plans for accessibility and soundness and act as a
  • approval authority for non-emergency changes
  • Provide necessary support to the CAB
Change ManagementNetwork Optimization

Education

IBMR, Pune University

Master of Business Administration (M.B.A.)

Jan 2012Jan 2014

Rashtrasant Tukadoji Maharaj Nagpur University, Nagpur

Bachelor of Engineering - BE — Computer Engineering

Aug 2008Jun 2012

BDCOE, Nagpur University

BE — Computer Engineering

Jan 2008Jan 2012

St. Edmund's College, Shillong

HSLC — Science

Jan 2006Jan 2008

St. Edmund's School, Shillong

Jan 2002Jan 2006

Bapurao Deshmukh Engineering College, Sewagram

Bachelor of Engineering - BE — Computer Science

Stackforce found 100+ more professionals with Regulatory Compliance & Risk Management

Explore similar profiles based on matching skills and experience

Pallav Bhanti

Pallav Bhanti

Head - Risk and Compliance Sol

at Amazon Pay India

Bengaluru, India25 yrs 11 mos exp
ComplianceCustomer ServiceFraud PreventionOperational ControlOperations Management
Sahil Ajitsaria

Sahil Ajitsaria

Head - Cyber Security Operations

at slice

Bengaluru, India10 yrs 9 mos exp
Divyansh Singh

Divyansh Singh

Strategist and Dealer

at JKTVS Solution

Delhi, India3 yrs 7 mos exp
Mark Short

Mark Short

Recruiter and Quartermaster

at SEEKR

London, United Kingdom18 yrs 3 mos exp
Program managementProject managementGeopolitical risk analysis
kartik dey

kartik dey

Assistant Manager in RMS prop Desks

at mastertrust

Delhi, India7 yrs 4 mos exp
Prashant Mahajan

Prashant Mahajan

Senior Product Compliance Associate

at Amazon

Pune, India1 yr 1 mo exp
Legal ComplianceProject Management
Rohan Gaikwad

Rohan Gaikwad

Founding Member & Principal Officer

at CoverSure

India18 yrs 6 mos exp
Vivek Bajaj

Vivek Bajaj

Chief Risk Officer / Head of risk Management

at United Overseas Bank Limited (UOB)

Mumbai, India25 yrs 11 mos exp
AnalyticsCredit RiskOperational RiskRisk AnalyticsRisk Management