Sai

Summary

• Sai has over 10 years of experience in cybersecurity, specializing in Information Security, Risk Management, and Regulatory Compliance across diverse sectors including BFSI, FMCG, Automotive, Oil & Gas, and Semiconductors.
• Proven expertise in implementing and auditing ISO standards (ISO 27001, ISO 27005), as well as NIST CSF, SOC 2, PCI DSS, and ITGC frameworks, ensuring robust security and regulatory alignment.
• Skilled in Governance, Risk, and Compliance (GRC) with extensive hands-on work in tools like RSA Archer, ServiceNow, and MetricStream.
• Strong background in Cloud Security with experience securing environments on AWS, Azure, and IBM Cloud, and implementation of DevSecOps and SDLC-integrated security controls.
• Deep understanding of data privacy regulations including GDPR, with practical experience in designing and operationalizing data protection frameworks, backed by the CDPSE certification.
• Delivered numerous security posture assessments and third-party risk assessments, helping organizations benchmark and strengthen their security programs.
• Globally certified with credentials such as CISSP, CDPSE, CCSK, and ISO 27001 Lead Auditor, reinforcing credibility in both strategic and technical domains.
• Accomplished trainer and mentor, having conducted professional training sessions in CISSP, ISO 27001, and Risk Management, known for simplifying complex topics with real-world use cases.
• Adept at bridging the gap between business goals and security imperatives through actionable insights, stakeholder communication, and cross-functional collaboration.

Skills

• Governance, Risk & Compliance (GRC)
• Technology Risk Management
• ISO 27001 Implementation & Audits
• Third-Party Risk Management (TPRM)
• Cloud Security (AWS, Azure, IBM Cloud)
• Data Privacy (GDPR, CDPSE)
• Security Posture Assessments
• Regulatory Compliance: SOC 2, PCI DSS, ITGC
• Tools: RSA Archer, ServiceNow, MetricStream
• DevSecOps & SDLC Security Controls
• IT Risk Management

Certification