Debarshi Nag, CISM CISA

CEO

Kolkata, West Bengal, India27 yrs experience
Highly StableAI Enabled

Key Highlights

  • Expert in Governance, Risk, and Compliance (GRC)
  • Proven track record in regulatory compliance consulting
  • Strong leadership in IT risk management and security
Stackforce AI infers this person is a Governance, Risk, and Compliance expert in the Fintech and IT Security sectors.

Contact

LinkedIn

Skills

Core Skills

Regulatory ComplianceRisk ManagementGovernance, Risk, And Compliance (grc)Infrastructure ManagementIt Security

Other Skills

AI SecurityAI System Impact AssessmentArtificial Intelligence (AI)Artificial Intelligence for BusinessAuditingBusiness AnalysisBusiness ContinuityBusiness DevelopmentBusiness StrategyCISACRMCloud SecurityComputer EthicsCsiteCustomer Relationship Management (CRM)

About

At QRC Assurance, my role as General Manager in Governance, Risk, and Compliance (GRC) is woven around ensuring ISO, PCI, SEBI, RBI compliance and executing IT risk assessments, focusing on system threats, vulnerabilities, and risks for the clients. With a proven track record as a Consultant at NTT DATA, I've honed my expertise in regulatory compliance, specifically within the robust frameworks of PCI DSS and RBI Cyber risk. My approach integrates stringent compliance testing, identification, and remediation of control deficiencies, in partnership with process owners, to fortify our clients' security posture. Our team's commitment led to the development of comprehensive security documentation, policies, and disaster recovery plans, while fostering collaborative relationships across diverse business units and international clients.

Experience

27 yrs
Total Experience
2 yrs 6 mos
Average Tenure
1 yr 8 mos
Current Experience

Qrc assurance and solutions

General Manager -GRC

Oct 2024Present · 1 yr 8 mos · India · On-site

Ntt data, inc.

Consultant-Audit & Compliance

Mar 2024Sep 2024 · 6 mos · Kolkata, West Bengal, India · On-site

  • Risk and Compliance Consultant - UCO Bank NOC project
  • Responsibilities includes compliance with PCI DSS, RBI Cyber risk framework, IS Audits.
CsiteRegulatory ComplianceRisk Management

Hcl technologies

IT Security and GRC Consultant

Mar 2021Mar 2024 · 3 yrs · Noida, Uttar Pradesh, India

  • Roles & Responsibilities:
  • GRC and BCP/DR Consultant (Client facing) for the EMEA based clients (Power & Energy sector, Chemical sector, Retail sector) and reporting to Service Delivery Manager/Delivery Head of the respective projects.
  • SOX Compliance: Responsible to support and facilitate the SOX Compliance Program as a part of GRC delivery for a client engagement. Timely completion of SOX compliance testing activities, timely identification, validation, and communication of control deficiencies, as well as the recommendation of remediation plans in collaboration with the process/control owners.
  • Risk Management: Performed IT risk assessments to identify system threats, vulnerabilities and risks. Developed risk assessment reports and presented to the risk governance board for further actions on the risks identified during the assessments.
  • Audit Management: As per the role, performed the internal audits (security baseline and contractual requirements) for all the tracks of the client engagement teams. Participated in the audits conducted by the Third party auditors (Big 4s) on client environment and point of contact for the scope of the operation activities delivered by HCL and responded to the assessments / control requirements.
  • Third-party Risk Assessment: Conducted risk assessments for third-party suppliers/vendors who are deployed for the projects and documentation presented to the project leadership team of HCL.
IT Risk ManagementInternal AuditsIT Security AssessmentsPayment Card Industry Data Security Standard (PCI DSS)AuditingGovernance, Risk, and Compliance (GRC)+1

Onprocess technology

Information Security Officer

Jan 2018Mar 2021 · 3 yrs 2 mos · Kolkata Area, India · On-site

  • Roles & Responsibilities:
  • Served as the organisation's Information Security Officer (ISO) and subject matter expert for information security requirements and reporting to CIO.
  • Responsible for guiding and providing necessary documentation for an Information System through, completing & maintaining the Certification and Accreditation process for ISO 27001 and PCI DSS standards.
  • Developed security documentation, including security policies, security procedures, business continuity plans and disaster recovery plans
  • Risk Management: Performed IT risk assessments to identify system threats, vulnerabilities and risks. Developed risk assessment reports and presented to the Management for further actions on the risks identified during the assessments.
  • Audit Management: As per the role, performed the internal audits (security baseline and contractual requirements) for all the tracks of the client engagement teams. Participated in the audits (as deputy CISO) conducted by the Third party auditors and responded to the assessments / control requirements.
  • Third-party Risk Assessment: Conducted risk assessments for third-party suppliers/vendors who are deployed as a part of projects and delivery of the support services.
IT Risk ManagementInternal AuditsIT Security AssessmentsPayment Card Industry Data Security Standard (PCI DSS)AuditingGovernance, Risk, and Compliance (GRC)+1

Itpeoplenetwork

Sr. Director - Infrastructure & IT Security

Nov 2016Jan 2018 · 1 yr 2 mos · Greater Chicago Area

  • It Infrastructure Management
  • Information Security Management
  • Project Management
IT Risk ManagementInternal AuditsInfrastructure ManagementIT Security AssessmentsPayment Card Industry Data Security Standard (PCI DSS)Auditing+1

Pinnacle infotech solutions

AGM-IT

Sep 2015Nov 2016 · 1 yr 2 mos · West Bengal

  • It Infrastructure Management
  • Information Security
  • Project Management
Internal AuditsInfrastructure ManagementIT Security AssessmentsAuditingIT Security

Xenolith technologies pvt.ltd.

Senior Manager - IT

Nov 2013Sep 2015 · 1 yr 10 mos · Greater Kolkata Area

  • It Infrastructure Management
  • Information Security Management
  • Project Management
IT Risk ManagementInternal AuditsInfrastructure ManagementIT Security AssessmentsAuditingIT Security

Srei sahaj evillage limited

Sr. Manager-IT Infrastructure

Dec 2007Oct 2013 · 5 yrs 10 mos · Kolkata

  • It Infrastructure Management
  • Information Security Management
  • Project Management
IT Risk ManagementInternal AuditsInfrastructure ManagementIT Security AssessmentsAuditingIT Security

Sgs

Regional IT Head

Jul 2006Dec 2007 · 1 yr 5 mos · Kolkata

  • IT INFRASTRUCTURE MANAGEMENT
  • PROJECT MANAGEMENT
Infrastructure Management

Cms infosystems pvt. ltd.

Sr. Team Leader

Apr 2001Jul 2006 · 5 yrs 3 mos · Kolkata

  • IT INFRASTRUCTURE MANAGEMENT
  • PROJECT MANAGEMENT
Infrastructure Management

Microdata computer services (p) ltd

Sr. technical executive

Jan 1996Jan 1998 · 2 yrs · Greater Kolkata Area

  • IT INFRASTRUCTURE MANAGEMENT
Infrastructure Management

Education

ISACA

CISA — Computer and Information Systems Security/Information Assurance

Jan 2019Jun 2026

BSI

Passed the Lead Auditor Training Course — Business Continuity Management Systems (ISO 22301:2012)

Jan 2014Jan 2014

BSI

Passed the Lead Auditor Training Course — ISO 27001:2013 Lead Auditor

Jan 2014Jan 2014

ITIL

ITIL v3 Foundation — Computer and Information Sciences and Support Services

Jan 2011Jan 2011

NIIT

Professional Diploma in Systems and Management — Computer Systems Networking and Telecommunications

Jan 1993Jan 1996

Madurai Kamaraj University

Bachelor of Science (B.Sc.) — Mathematics

Jan 1999Jan 2002

Kendriya Vidyalaya

Higher Secondary — Physical Sciences

Jan 1988Jan 1990

simplilearn

PMP Training Program (35 PDU) — Project Management

Jan 2016Jan 2016

Stackforce found 100+ more professionals with Regulatory Compliance & Risk Management

Explore similar profiles based on matching skills and experience

Lakshmi Mylavaram ,PMP

Lakshmi Mylavaram ,PMP

Senior Project Manager

at GeekyAnts

Bengaluru, India10 yrs 7 mos exp
Project ManagementAgile MethodologiesAccount ManagementRevenue GrowthCustomer Service
Vinay Kumar Chandra

Vinay Kumar Chandra

Data Engineer

at HubSpot

Syracuse, United States3 yrs 9 mos exp
Data EngineeringCloud Data Platforms
Shiva Kumar

Shiva Kumar

Lead Security Engineer

at Air India Limited

Hyderabad, India3 yrs exp
CybersecurityCloud Security
Sridhar Perumal

Sridhar Perumal

Senior Information Technology Specialist

at Great Learning

Bengaluru, India3 yrs 8 mos exp
Vulnerability AssessmentEndpoint SecurityTechnical SupportAsset ManagementNetwork Troubleshooting
DEEPALI DONGRE

DEEPALI DONGRE

Assistant Manager

at Deloitte

Mumbai, India3 yrs 10 mos exp
IT Audit & AssuranceIT Risk Management
Shivani Shete

Shivani Shete

SDET Automation Engineer (Senior Associate)

at Bajaj Life

Navi Mumbai, India3 yrs 9 mos exp
Quality AssuranceAutomation TestingData AnalyticsMachine LearningArtificial Intelligence
Akhil Mankunnu

Akhil Mankunnu

Business Analyst

at Sapiens

Bengaluru, India7 yrs 6 mos exp
Business AnalysisAgile Project ManagementStakeholder ManagementIT Business Analysis
Sundar V

Sundar V

Senior Talent Acquisition Specialist

at Tata Consultancy Services

Trivandrum, India4 yrs 11 mos exp
Global Talent AcquisitionRecruitingData-driven Decision MakingEmployer Branding