Sakthi

SUMMARY

• 23+ years of experience in the IT industry with deep specialization in AI governance, information security, and data privacy.
• Certified ISO/IEC 42001:2023 Lead Auditor and Implementer, currently working as a contractor auditor and trainer with multiple certification bodies.
• Independent Lead Consultant, advising AI startups on implementing AI governance frameworks and ISO 42001 compliance.
• Extensive hands-on experience with global regulatory frameworks, including GDPR, ISO 27001, ISO 27701, ISO 42001, and NIST.
• Led enterprise-scale privacy and data de-identification programs for U.S.-based healthcare clients managing over 15 million records.
• Skilled in designing risk assessment strategies, defining privacy guidelines, and advising on IT and business security controls.
• Experienced in vendor risk assessments, SAR (Subject Access Request) management, incident/data breach handling, and PbD (Privacy by Design) facilitation.
• Conducted ISO 42001 Stage 1 and Stage 2 audits and supported certification bodies in alignment with ISO/IEC 17021 and ISO/IEC 42006 requirements.
• Provides ISO 42001 training, audit checklists, and auditor coaching to help certification bodies achieve accreditation readiness.
• Proficient in managing geographically distributed teams and delivering tailored consulting and training services at scale.
• Actively contributes to AI GRC and global data privacy professional communities, promoting awareness and adoption of responsible AI practices.

SKILLS

• AI Governance & ISO 42001 Implementation.
• Information Security & Privacy Risk Management.
• ISO 27001/27701/42001 Auditing & Training.
• Governance, Risk & Compliance (GRC).
• AI GRC Frameworks & Regulatory Mapping.
• Vendor Risk Assessment & Incident Management.
• Agile Delivery in Privacy & Security Programs
• Privacy-by-Design (PbD) Enablement

Certification Frameworks

• 
• 
• 
• 
• 
• 
• 
• 

related courses