K

Kalpavi Jayaprakash

Director of Engineering

Bengaluru, Karnataka, India18 yrs 9 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Over 15 years of experience in Governance, Risk and Compliance.
  • Led multiple consulting engagements for clients in the US and India.
  • Expertise in automating cybersecurity controls testing and reporting.
Stackforce AI infers this person is a Governance, Risk and Compliance expert with a strong focus on cybersecurity and business development.

Contact

LinkedIn

Skills

Core Skills

Risk ManagementInformation Security

Other Skills

SOX 404 attestation auditsGeneral Computer ControlsOperations and Change ManagementBusiness ControlsRisk and control assessment servicesBusiness process analysisRisk-based approachTechnical and audit expertiseTesting systemsDatabase managementGovernanceRisk and ComplianceInformation Security Management SystemData Privacy and ProtectionCloud Security

About

Consulting | Business Development | Client Relationship Consulting experience of over 15 plus years in the Governance, Risk and Compliance domain including Information Security Management System (ISMS), Data Privacy and Protection, Cloud Security Cyber Program Maturity Assessment, InfoSec and Cyber Strategy and Roadmap, Risk Management (RM), Data Privacy, SOC (1 & 2) Reporting, Internal Audits, ITGC, Vendor Risk Management, etc. Worked in various industries such as IT/ITES, Technology, Global Captive Centres (GCCs), Start-up ecosystem, CPG / Retail, etc.Focus on business development, sales and account relationship management. Have successfully led multiple consulting engagements in GRC space for various clients in US and India. Including but not limited to developing their cyber strategy, defining the control structure/framework, embedding security and compliance in the application development lifecycle, continuous controls monitoring, risk quantification. Have automated cyber security controls testing and reporting across organization bring in efficiency and cost reduction.Competent in pre-sales and RFPs, on-site/off-shore project delivery, development of various models/tools, paper/journals/articles.Core areas:Cyber Governance Risk and ComplianceSecure by Design/DevSecOps,Continuous Controls MonitoringCloud Security Applied Research, Market Research and Competitive Analysis (Factiva, Forrester, Gartner, Hoover, IDC, One Source)Certification: CISA

Experience

18 yrs 9 mos
Total Experience
7 yrs 7 mos
Average Tenure
14 yrs 10 mos
Current Experience

Ey

2 roles

Director

Dec 2020Present · 5 yrs 5 mos

Senior Manager

Apr 2015Present · 11 yrs 1 mo

Ernst & young llp

2 roles

Manager

Promoted

Jul 2012Present · 13 yrs 10 mos

Senior Consultant

Jul 2011Jul 2012 · 1 yr

Deloitte and touche llp

Sr. Consultant

Aug 2009Jan 2012 · 2 yrs 5 mos

  • Responsible for performing SOX 404 attestation audits (external and internal) for 5 fortune 500 companies in Telecommunication, Media, Technology, Medical and Public Sectors.
  • Responsible for leading client walkthrough meetings and data center visits.
  • Responsible for testing of General Computer Controls around the areas of Information Security, Operations and Change Management as well as Business Controls.
  • Responsible for creating and maintaining a budget for the audit to be performed within strict deadlines.
  • Responsible for the development and delivery of risk and control assessment services including planning, program development, testing and evaluation of internal controls, work paper preparation and review, and reporting for technological and operational control reviews.
  • Responsible for communicating deficiencies to the client and providing valuable recommendations to improve their processes.
SOX 404 attestation auditsGeneral Computer ControlsInformation SecurityOperations and Change ManagementBusiness ControlsRisk and control assessment services+1

Enterprise risk services

Consultant

Aug 2007Aug 2009 · 2 yrs

  • Analyzed client's business processes and using a risk based approach identified controls to mitigate the risks.
  • Applied technical and audit expertise to suggest appropriate approaches, tools and techniques to resolve client issues and/or improve current processes.
  • Performed testing primarily around the following systems: SAP, AS400, SQL, Oracle, Sybase, UNIX, Windows, Mainframe security, Application Controls and Computer Generated Information (CGI).
  • Built an employee training database for Deloitte's National Training using MS Access and SQL. The database is used to administer and manage employee training programs and schedules at a national level.
Business process analysisRisk-based approachTechnical and audit expertiseTesting systemsDatabase managementRisk Management+1

Bloomberg lp

Technical Associate

Jun 2007Aug 2007 · 2 mos

  • Provided software, hardware, networking and mobile communication support to users of the Bloomberg Terminal.

Education

Syracuse University

M.S. in Information Management — Information Security and Risk Management

Jan 2005Jan 2007

Visvesvaraya Technological University

B.E. — Electronics and Communication

Jan 2001Jan 2005

Sophia

Stackforce found 100+ more professionals with Risk Management & Information Security

Explore similar profiles based on matching skills and experience

Sahil Ajitsaria

Sahil Ajitsaria

Head - Cyber Security Operations

at slice

Bengaluru, India10 yrs 10 mos exp
Akshat Sanwal

Akshat Sanwal

Security Analyst

at Zoom

Bengaluru, India6 yrs 8 mos exp
Jagan Sivathanu

Jagan Sivathanu

IT Audit Lead

at PhonePe

Bengaluru, India18 yrs 1 mo exp
SM

Shalin K Mishra

Senior Manager, Internal Audit - IT Audit

at Intel Corporation

Bengaluru, India12 yrs 5 mos exp
Risk ManagementCompliance ManagementWeb Development
VN

Vishwak N.

Information Technology Security Manager

at Everise

Bengaluru, India11 yrs 9 mos exp
Compliance ManagementIT OperationsIT Security OperationsIncident ResponseProject Management
Shashank K.

Shashank K.

Co-Founder

at Redacto

Bengaluru, India14 yrs 2 mos exp
Data PrivacyData Security
Dhirendra Kumar

Dhirendra Kumar

Head Tech Risk and Cyber Control

at Barclays

Gurugram, India25 yrs 10 mos exp
Crisis ManagementCyber ResilienceInformation Risk ManagementOperational Resilience
Krish Dagar

Krish Dagar

SOC Analyst

at Bolster AI

Australia1 yr 11 mos exp
Cybersecurity