Shradha

Looking for opportunities

Talent

Pune City, MaharashtraMember since 19 May 2026

Risk Assessment

·

Hire this person

Send a job offer directly to this candidate

Risk Assessment

About

Certified ISO/IEC 27001:2022 Lead Auditor and GRC Analyst with 3+ years of experience in Information Security Audits, Risk Assessments, ISMS implementation, and Regulatory Compliance. Proven expertise in ISO 27001, HIPAA, GDPR, RBI, NABARD, and UIDAI audits. Strong background in gap assessments, policy development and audit reporting. Skilled in strengthening organizational security posture and ensuring audit readiness.

Experience

Cybersecurity Analyst - Dynamisch IT Pvt. Ltd.

(2025-06)

Reviewed and validated ISMS policies, procedures, and Statement of Applicability (SoA) for ISO 27001:2022 compliance.
Conducted gap assessments and risk assessments to identify control deficiencies.
Coordinated cross-functional teams to drive corrective and preventive actions (CAPA), ensuring timely audit closure.
Supported certification, surveillance, and recertification audits.
Delivered ISO 27001 awareness training sessions to employees and clients.
Contributed to achieving and maintaining ISO 27001 certification.

Cybersecurity Analyst - InventOnUs - Pune

(2024-04 - 2025-06)

Conducted ISO 27001:2022 and HIPAA compliance audits.
Assisted organizations in ISO transition audits (2013 to 2022 version).
Performed risk assessments and prepared risk treatment plans.
Developed compliance policies, procedures, and audit documentation.
Prepared audit checklists and validated compliance artefacts.
Created detailed audit reports highlighting non-conformities and remediation actions.

Cybersecurity Analyst - Network Intelligence - Mumbai

(2023-02 - 2024-04)

Conducted regulatory audits including RBI, NABARD, UIDAI, and Tokenization audits.
Prepared audit checklists as per regulatory guidelines.
Reviewed policies and procedures for compliance gaps.
Verified compliance artefacts and evidence documentation.
Coordinated with clients and prepared comprehensive audit reports.

Trainee Security Intern - Tech Aryans - Pune

(2023-12 - 2023-12)

Assisted in ISMS documentation review.
Supported artefact validation and checklist preparation.
Participated in audit documentation processes.

Education

Master of Commerce (2017)

Skills

GRC AnalystISO 27001 2022 LA

Reviews