Abhishek Kumar

Results-driven expert with extensive experience across the BFSI, Telecom, Media, and Healthcare sectors. Proven track record in strengthening security frameworks through technical auditing, strategic risk mitigation, and advanced contract negotiation.

Sr. Technology Risk and Compliance at Nielsen Media India Pvt. Ltd. (2025-06 – Present)

• Comprehensive Security Assessments: Managed the full assessment lifecycle, expertly conducting deep-dive vendor risk evaluations while leading high-stakes responses to client security questionnaires and RFPs to ensure seamless business assurance.
• Contract Governance: Scrutinized full-length legal agreements to identify hidden risks and negotiate critical information security clauses, ensuring robust data protection and liability coverage.
• ServiceNow & Tool Augmentation: Spearheaded the technical optimization of Safebase AI and ServiceNow, implementing new security matrices, custom fields, and automated workflows to enhance reporting accuracy and team productivity.
• Operational Standardization: Orchestrated a complete audit and revision of team Standard Operating Procedures (SOPs), streamlining internal processes to align with evolving compliance and industry standards.
• Internal Evangelism & Engagement: Boosted team visibility by launching an "Assurance Evangelism" initiative, authoring a department-wide security newsletter and developing a Team Workflow Matrix to foster cross-functional collaboration.

Senior Consultant at Ernst & Young GDS (2021-11 – 2025-04)

• Lead end-to-end vendor risk assessments and remote assessments.
• Train new team members and create TPRM awareness.
• Maintain risk assessment tracker and vendor risk profiles.
• Perform high-risk 4th party assessments and contribute to risk reduction projects.

Lead Analyst (Info. Sec.) at Shaum Solution Pvt. Ltd. (C2H to Wipro Ltd.) (2021-05 – 2021-11)

• Conducted vendor security and ITGC control testing.
• Organisational risk praised by vendors

Sr. Info. Sec. Analyst at Target Corporation India Pvt. Ltd. (2020-01 – 2021-04)

• Reduced vendor risk by performing comprehensive security assessments. Managed risk profiles
• Performed health checks on medium and low-risk vendors.

Associate at J.P. Morgan Chase (2019-08 – 2020-01)

• Engaged with LOB Delivery Managers to ensure compliance with risk assessments.
• Documented control breaks and vulnerabilities, and worked on remediation with stakeholders.

Senior Consultant at IBM India (2017-01 – 2019-07)

• Performed vendor risk assessments and communicated risks to business leaders. Supported remediation efforts and consolidated security inputs

Associate Consultant at Grant Thornton (2015-11 – 2016-12)

• Conducted ITGC testing and SOX compliance audits.
• Assured security controls effectiveness through vendor assements.

Executive Consultant at KPMG Global Services (2014-12 – 2015-11)

• Performed ITGC testing and SAP controls testing.
• Managed vendor risk assessments and created comprehensive reports.

Associate IT Consultant at ITC InfoTech (UnitedHealth Group) (2013-12 – 2014-11)

• Conducted vendor risk assessments and ensured compliance with regulatory standards. Communicated vendor security risks to business leaders.

Information Security Consultant at AAA Technologies Pvt. Ltd. (2013-03 – 2013-12)

• Conducted process reviews, gap analysis, ITGC reviews, and vulnerability scanning.
• Performed IS audits for various clients, including banks and government agencies.

Guest Faculty at Nitishwar Singh College BRA Bihar University (2010-09 – 2013-02)

• Taught and mentored students on network security and related subjects.

Management Trainee at ANB Consulting Pvt. Ltd. (2010-02 – 2010-07)

• Conducted process and functional compliance audits for reviews, gaps analysis.

MBA, B Tech