Kalyan Mondal

Associate Consultant

Kolkata, West Bengal, India5 mos experience

Key Highlights

Strong foundation in GRC and cybersecurity practices.
Experience in implementing ISO and NIST frameworks.
Proficient in defining KPIs for technology projects.

Stackforce AI infers this person is a Cybersecurity and GRC specialist with experience in technology project management.

Contact

Skills

Core Skills

Information SecurityRisk & ComplianceProject ManagementBusiness Analysis

Other Skills

ISO 27001NIST SP 800-53Risk AssessmentAudit & DocumentationKPI AnalysisStakeholder Management4g lte5G New Radio (NR)JavaHTML5Cascading Style Sheets (CSS)Data StructuresSQL

About

I am an MBA (ITBM) candidate with a strong focus on Information Security, Risk & Compliance, and business-driven technology solutions. During my internship, I worked on implementing ISO/IEC 27001:2022 and NIST SP 800-53 frameworks in a defense drone manufacturing environment, contributing to risk assessment, compliance structuring, and development of security policies, SOPs, and audit frameworks. This experience helped me build a solid foundation in GRC and cybersecurity practices. I also completed a project simulation with Siemens Mobility, where I worked on defining KPIs related to safety, efficiency, and sustainability for an urban rail project, and contributed to project tracking and performance analysis. Previously, I gained exposure to 4G/5G telecom systems and protocol stack architecture at Sasken Technologies, strengthening my understanding of secure and scalable system design. Alongside my core focus, I bring capabilities in business analysis, requirement understanding, and process improvement, enabling me to bridge technology with business objectives. I am currently exploring opportunities in Cybersecurity, Assurance, Audit, and GRC-related roles, while also open to Business Analysis, Product Management, and Project Management positions where I can contribute to building secure, scalable, and business-driven technology solutions.

Experience

5 mos

Total Experience

5 mos

Average Tenure

Current Experience

Whoopmasters india

Information Security Management Intern

Apr 2025 – Jun 2025 · 2 mos · Mumbai

Spearheaded the development of the organization’s information security and compliance posture by implementing structured cybersecurity frameworks aligned with industry standards.
ISO/IEC 27001:2022: Performed risk assessments and developed critical ISMS deliverables, including Statement of Applicability (SoA), security policies (Cryptography, Remote Access), SOPs, and audit checklists, etc., to establish a robust compliance and governance framework.
NIST SP 800-53: Evaluated security controls (AC, IA, PL) and conducted gap assessments based on stakeholder inputs. Developed a Threat Analysis Report (GPS spoofing/jamming), RACI Matrix, and structured security recommendations to strengthen access control and overall system resilience, etc.

ISO 27001NIST SP 800-53Risk AssessmentAudit & DocumentationInformation SecurityRisk & Compliance

Sasken technologies limited

Associate Software Enginner

Aug 2022 – Jan 2023 · 5 mos · Bengaluru

Worked on 4G and 5G telecom systems within the protocol stack domain, aligned with 3GPP standards.
Gained practical understanding of protocol stack architecture, OSI model application, and SDLC in real-world telecom environments, including how embedded systems enable wireless communication and data transmission.