Shraddha Bhinge

Cybersecurity Consultant

• Job Details:Conduct ISO 27001 audits, evaluating an organization's information security management system (ISMS) to ensure alignment with ISO 27001:2022 standards. Analyze security controls, policies, and procedures, identifying weaknesses and areas that require improvement. Generate detailed audit reports, outlining findings and providing practical recommendations to enhance overall security posture. Support teams in implementing corrective actions and continuously monitoring their effectiveness to maintain compliance. Assess third-party vendors and service providers, verifying their adherence to security and regulatory requirements. Perform risk-based evaluations of vendor security, including access controls, data protection measures, and incident response capabilities. Design and implement vendor security assessment frameworks, ensuring ongoing monitoring and risk mitigation in third-party engagements. Work closely with procurement and legal teams to incorporate security requirements into vendor agreements, minimizing potential risks. Strengthen security controls by reviewing findings from audits, assessments, and evolving threat landscapes. Drive cyber hygiene initiatives, fostering a security-conscious culture within the organization. Develop comprehensive security reports for management, summarizing risk assessments, compliance status, and necessary remediation actions. Maintain well-documented security policies and procedures to facilitate future audits and regulatory reviews.