Mar 2023 – Present · 3 yrs 1 mo · Global · Hybrid

• Providing strategic cybersecurity and privacy advisory, assessing technology risks, aligning IT frameworks with compliance requirements, guiding leadership, and enabling organizations to strengthen security posture and regulatory adherence.
• ✅ Advising executive teams on technology risk and privacy strategies globally.
• ✅ Conducting ISO 27001 and HIPAA assessments for enterprise clients.
• ✅ Implementing security frameworks to improve compliance and risk management.
• ✅ Reviewing IT processes to ensure alignment with regulatory expectations.
• ✅ Guiding organizations through complex risk scenarios with practical solutions.

Mar 2023 – Apr 2025 · 2 yrs 1 mo · Chennai, Tamil Nadu, India

• Led organizational effectiveness and compliance initiatives, conducted risk assessments, and guided teams to deliver sustainable cybersecurity and regulatory solutions for diverse enterprise clients.
• ✅ Spearheaded HITRUST compliance implementation at major healthcare organizations successfully.
• ✅ Conducted risk-based IT audits for non-banking financial companies effectively.
• ✅ Delivered SOC 2 Type 2 attestation for enterprise-level clients.
• ✅ Mentored teams to improve performance, training, and operational effectiveness.

Jan 2023 – Present · 3 yrs 3 mos · Chennai, Tamil Nadu, India · Hybrid

• Delivering HITRUST advisory and security consulting, executing compliance assessments, guiding organizations through certification, and enabling clients to strengthen risk management, data protection, and operational cybersecurity resilience.
• ✅ Leading HITRUST implementations for diverse healthcare and financial clients successfully.
• ✅ Performing detailed assessments to validate controls and security measures.
• ✅ Advising clients on remediation strategies to reduce compliance risks.
• ✅ Coordinating with stakeholders to streamline evidence collection efficiently.
• ✅ Ensuring accurate documentation for certification and audit readiness consistently.

Jun 2021 – Nov 2022 · 1 yr 5 mos

• Directed HITRUST assessments and compliance projects, converted leads into clients, and strengthened cybersecurity governance, delivering measurable certification and risk management results for enterprise organizations.
• ✅ Converted leads into clients, contributing directly to business growth successfully.
• ✅ Conducted validated HITRUST assessments and interim audits for clients efficiently.
• ✅ Coordinated walkthroughs and evidence validation across all nineteen HITRUST domains.
• ✅ Mentored team members, enhancing auditing quality and technical expertise.

Aug 2020 – Jun 2021 · 10 mos

Apr 2019 – Jul 2020 · 1 yr 3 mos

• Advised clients on IT risk, cybersecurity, and compliance, executing audits and controls that strengthened enterprise IT governance and mitigated operational and regulatory risks effectively.
• ✅ Identified IT and cybersecurity risks across ERP, networks, infrastructure efficiently.
• ✅ Recommended controls to mitigate risks and enhance security posture.
• ✅ Supported IT-enabled process transformation initiatives for client organizations successfully.

Jul 2017 – Mar 2019 · 1 yr 8 mos · Africa, India & Middle East (AIM)

• Delivered IT risk and cybersecurity advisory across 50+ countries, leveraging EY AIM’s 7000+ professionals and 280 partners to strengthen client compliance and operational security globally.
• ✅ Executed HITRUST and ISO 27001 engagements impacting 40% global markets.
• ✅ Conducted SOC audits and Agreed Upon Procedures for multinational clients.
• ✅ Developed information security policies and templates aligned with international standards.