Gaurav Dhale

Risk & Internal Audit focused professional MBA in IT Business Management with hands-on experience in ISO 27001 ISMS implementation, ITGC assessments, privacy governance (ISO 27701), and cybersecurity maturity assessments (NIST CSF 2.0). Strong understanding of internal controls, risk assessment, process gap analysis, compliance documentation, and audit readiness. Proficient in data analysis using MS Excel and Power BI.

Flutter Software Developer at Blue Horizon Automation Research (2021-10 – 2023-11)

Developed mobile applications for clinic management and turf booking systems

• Developed UI-UX of mobile application available on both Android and iOS platforms which served as a comprehensive solution for clinic management. It handled employee time tracking, salary calculation and patient tracking. This application is one-stop solution for efficiently managing clinic operations
• Designed Turf Booking Application to streamline the process of booking one of the 82 turfs located across India. It employed a pattern-based Model-View-Controller (MVC) architecture for a structured and efficient user experience. The backend was powered by Google Apps Script, ensuring scalability. Application was solution to the challenges faced by turf administrators in managing both bulk and individual bookings seamlessly.

Cybersecurity Analyst Intern at Open Security Alliance (2025-04 – 2025-06)

Cybersecurity and ISO 27001 compliance audit support

• Organized RBI regulatory documentation (licensing, KYC, settlement, reporting) into a structured repository.
• Created and classified content into control sheets, standards, white papers, audit questionnaires, and policy documents.
• Enabled centralized access through a shared online repository to support compliance and audit teams.
• Improved information retrieval and audit readiness for compliance, legal, and risk teams.
• Delivered a team presentation explaining the documentation structure and its relevance to regulatory compliance.
• Participated in a live external ISO 27001 audit for Finacus, conducted by a banking client.
• Supported ISMS documentation review including policies, risk register, and SoA.
• Assisted in evidence collection and control validation aligned with Annex A.
• Contributed to audit walkthroughs, gap identification, and compliance checks.
• Collaborated with stakeholders to ensure audit readiness and regulatory compliance.
• Drafted ISMS policies including data backup, HR security, network management, email security, and privileged access management.
• Supported risk assessment workshops and control mapping with Annex A.
• Contributed to the development of the Statement of Applicability (SoA).
• Conducted gap assessments across information security domains.

MBA in Information Technology Business Management – Symbiosis Centre for Information Technology (SCIT) (2024-06 – 2026-03)

B.E in Mechanical Engineering – University of Mumbai (2021-05)