Antarlina Paul

Security Engineer

Gurugram, Haryana, India2 yrs 9 mos experience

Key Highlights

Expert in security controls and compliance audits.
Proven track record in third-party risk management.
Strong background in vulnerability assessment and penetration testing.

Stackforce AI infers this person is a Cybersecurity professional specializing in risk management and compliance in the tech industry.

Contact

Skills

Core Skills

Security ControlsThird-party Vendor ManagementInternal AuditsData PrivacyVulnerability Assessment And Penetration Testing (vapt)

Other Skills

Vulnerability ResearchVulnerability AssessmentPenetration Testing (VAPT)Control TestingInternal ControlsSupplier Risk ManagementVendor AuditEthical HackingSecurity OperationsPrivacy LawGeneral Data Protection Regulation (GDPR)

About

Astute and Proficient. Focused on delivering key outcomes and quickly adapting to new learnings. Driven to deliver excellence.

Experience

2 yrs 9 mos

Total Experience

1 yr 8 mos

Average Tenure

1 yr 1 mo

Current Experience

Paytm

Security Engineer

Mar 2025 – Present · 1 yr 1 mo · Noida, Uttar Pradesh, India · Hybrid

Executed end-to-end control testing and validation across security and compliance domains, ensuring effectiveness of key controls within the risk framework
Assessed control design and operating effectiveness, identifying gaps and tracking remediation to closure in line with defined SLAs
Performed risk assessments and control evaluations for third-party vendors under the Third Party Risk Management (TPRM) program
Supported internal and external audits (ISO 27001, PCI-DSS), including evidence collection, walkthroughs, and closure of control deficiencies
Collaborated with cross-functional stakeholders to align on control requirements, testing outcomes, and remediation actions
Documented test procedures, observations, and risk findings, ensuring accuracy, completeness, and audit-readiness
Monitored and reported on control deficiencies and risk metrics, providing insights to improve control environment effectiveness

Data PrivacyThird-Party Vendor ManagementSecurity Controls

Grant thornton bharat llp

Security Consultant

Jul 2023 – Mar 2025 · 1 yr 8 mos · Gurugram, Haryana, India · On-site

Cyber Security and Data Privacy
Assisted in execution of IT audits and compliance engagements, focusing on evaluation of IT General Controls (ITGC) and business process controls
Supported control assessments by analyzing design and effectiveness of controls across systems and processes
Participated in ISO 27001 audit engagements, including documentation review, control walkthroughs, and evidence validation
Conducted risk assessments to identify potential control gaps and areas of improvement within client environments
Prepared audit documentation, including process narratives, risk-control matrices (RCMs), and audit observation
Supported tracking and closure of audit findings by coordinating with stakeholders and monitoring remediation progress
Performed sample-based reviews and analytical procedures to validate accuracy and consistency of control execution

Third-Party Vendor ManagementData privacyInternal AuditsData Privacy

Ramognee technologies

Security Analyst

Jan 2023 – Jun 2023 · 5 mos · Gurugram, Haryana, India · On-site

Assisted in security and compliance activities, supporting implementation of information security practices across client environments
Supported Vulnerability Assessment and Penetration Testing (VAPT) activities, including identification of vulnerabilities and basic analysis of security findings
Contributed to risk assessments by identifying potential vulnerabilities and gaps in existing processes and controls
Assisted in documenting security policies, procedures, and control frameworks in alignment with industry standards
Participated in audit preparation activities, including evidence gathering, data collection, and basic control checks for further evaluation

Vulnerability ResearchVulnerability AssessmentPenetration Testing (VAPT)Vulnerability Assessment and Penetration Testing (VAPT)