Harish Kumar Juluri

IT Audit and Risk & Compliance Professional with experience in IT General Controls (ITGC) reviews, internal audits, ISO 27001:2022 implementation, AS9100D compliance, risk assessments, and control testing within enterprise environments. Experienced in audit planning, walkthroughs, evidence validation, access management reviews, change management reviews, incident management assessments, compliance monitoring, and corrective action tracking. Skilled in identifying control gaps, evaluating operational effectiveness, and supporting certification and surveillance audits.

Strong exposure to governance, risk, and compliance (GRC) activities, process audits, and cybersecurity compliance frameworks.

ISO Executive / IT Audit & Compliance - Zen Technologies Limited - Hyderabad, India

(2022-03)

Key Responsibilities & Achievements

• Conduct IT General Controls (ITGC) reviews covering user access management, password controls, change management, incident management, and logical access controls.
• Performed internal audits aligned with ISO 27001:2022, AS9100D, ISO 9001:2015, ISO 14001:2015, and ISO 45001:2018 standards.
• Supported external certification and surveillance audits by coordinating audit evidence, walkthroughs, compliance records, and corrective action tracking.
• Conducted risk assessments to identify threats, vulnerabilities, compliance gaps, and control weaknesses across organizational processes.
• Developed and monitored Risk Treatment Plans (RTPs) for effective mitigation of identified information security and operational risks.
• Reviewed design and operating effectiveness of controls through audit evidence validation and process walkthroughs.
• Participated in compliance monitoring activities and audit follow-ups to ensure timely closure of observations and non-conformities.
• Worked on CMMI Level-5 QA process implementation, process compliance tracking, and audit coordination activities.
• Prepared audit reports, corrective action plans, compliance dashboards, and management review inputs.
• Coordinated with cross-functional teams including IT, HR, Production, QA, Engineering, and Administration for audit readiness and compliance improvements.
• Assisted in implementation and maintenance of information security controls aligned with organizational and regulatory requirements.
• Performed documentation reviews for SOPs, policies, procedures, records, and process controls.
• Supported awareness sessions and compliance training activities related to ISO standards and information security practices.

Bachelor of Computers - Computers - Sardar Patel Degree College (2018 - 2021)

Intermediate (MEC) - MEC - Sri Medha V Junior College (2016 - 2018)

SSC - Model School (2016)