Anuj Suthar

CEO

Mumbai, Maharashtra, India5 yrs 5 mos experience

Key Highlights

Over 5 years in Information Security and GRC.
Expertise in aligning security programs with major frameworks.
Strong background in Third-Party Risk Management.

Stackforce AI infers this person is a Governance, Risk, and Compliance (GRC) expert in Information Security.

Contact

Skills

Core Skills

Data PrivacyCompliance Management

Other Skills

Information Security ManagementIT auditISO 27001 Lead AuditorProject ManagementITACVulnerability Assessment and Penetration Testing (VAPT)ITGCCyber-securityPayment Card Industry Data Security Standard (PCI DSS)Vulnerability AssessmentGeneral Data Protection Regulation (GDPR)Security ControlsTechnology RiskThird Party Risk Management (TPRM)Risk Management

About

Information Security and GRC professional with 5+ years of experience helping organizations strengthen governance, manage risk, meet regulatory expectations, and improve security maturity. I have experience across GRC framework implementation, information security compliance, privacy governance, ITGC assessments, regulatory gap assessments, control reviews, and audit readiness. My work has involved aligning security and privacy programs with ISO 27001, SOC 2, PCI DSS, NIST, GDPR, DPDP, and other regulatory or industry requirements. My areas of focus include risk assessment methodology, control governance, policy and process implementation, compliance monitoring, privacy impact assessments, data protection controls, retention practices, business continuity, and incident management support. I also bring a strong background in Third-Party Risk Management, having led vendor due diligence, inherent and residual risk evaluations, contract and security reviews, remediation tracking, and continuous monitoring. I focus on building risk-based, business-aligned, and audit-ready security and privacy programs that strengthen compliance maturity and organizational resilience.