Abhishek Chauhan, PMP, CISA

CISA, PMP, ISO ***** LA, ITIL, SOX 404, BCP DR, PCI DSS

New Delhi, India

Phone (India): +91-999-***-****

Phone (US - Skype): +1-646-***-****

Email: acprb6@r.postjobfree.com

http://in.linkedin.com/in/achauhancisa/

SKILL SET

Project Management, Internal Audit, Risk Management

ISO 27001:2005 Lead Auditor, ISMS Internal Auditor

ITIL 2011 Foundation, IT Service Management

Governance, Risk & Compliance Management

SOX 404, PCI DSS, ITGC, Internal Audit

Change Management, Security Management.

CERTIFICATIONS

Project Management Professional PMP (PMI) License # 1740141 - July 30, 2014

Certified Information Systems Auditor CISA (ISACA) Certificate # 1298535 - April 3, 2012

Lead Auditor ISO 27001:2005 (Bureau Veritas) Certificate # IS/12/IN/1872 - May 11, 2012

Certified ISMS Internal Auditor (BSi) Certificate # ISM030-1202-0023 - May 10, 2012

ITIL 2011 Foundation (APMG) Certificate # 023*****-**-VH8Y - Oct 06, 2013

EXECUTIVE SUMMARY

• 12 years of professional expertise in Project Management, Risk Assessment & Mitigation, SOX 404

compliance, ISO 27001 implementation & audit, Business Analysis & Process Improvement.

• Handled multiple projects with stringent timelines as project leader and as a project manager over the

course of 10 years.

• Experience in compliance readiness and audit for Sarbanes Oxley 404, ISO 27001, ITGC & PSI DSS.

• Industry experience includes BPO, Retail, Information Technology, Media production & Back Office

operations.

• Worked with esteemed organizations like IBM, Viacom International, Landmark Gulf Group and John

Keells.

PROFESSIONAL EXPERIENCE

John Keells BPO Solutions (Gurgaon, India) July 2013 – Present

Senior Manager – Risk & Compliance

• Evaluate and provide reasonable assurance that risk management, business continuity plan and

compliance governance systems are functioning as intended.

• Reports risk management issues and internal controls deficiencies and provide recommendations for

improving the organization's operations, in terms of both efficient and effective performance.

• Evaluate risk exposures and organization's readiness in case of business interruption.

• Operation and maintenance of the Information Security Management System including ISO/IEC 27001.

• Liaison with and offer strategic recommendations to related functions such as Operations, Physical

Security/Facilities, IT, and HR.

Landmark Group of Companies (Dubai, UAE) Oct 2012 – July 2013

Manager – Corporate Internal Audit - Information Systems

• Scoping and evaluation of existing business processes

• Develop, implement and review Information security policies and procedures

• Security compliance reviews every quarter ensuring compliance management

• Implement & assess the organization’s compliance to ISO 27001:2005

• Manage Compliance audits on a quarterly basis for ISO 27001

• Liaise with external auditors to conduct annual regulatory audits.

John Keells Contact Center Solutions (Gurgaon, India) Aug 2008 – Sept 2012

Manager – IT Security & Applications (Jan 2011 – Sept 2012)

• ISO 27001:2005 compliance readiness and audit

• Manage Compliance audits on a quarterly basis for ISO 27001, ITGC & PSI requirements

• Develop, implement and review IT policies for John Keells BPO

• Produce internal process documentation, review modification of existing documents

Client Onsite:

Manager – IT Compliance Projects (Aug 2008 – Jan 2011)

MTV Networks (Viacom International), New York, USA

• Manage IT Compliance projects, prepare and conduct meetings at executive level

• Review compliance testing and document the testing process every quarter

• Manage Compliance audits on a quarterly basis per SOX, PSI, GRC and CPC requirements

• Produce internal process documentation, review modification of existing documents.

IBM Global Process Services – (Formerly IBM Daksh), Gurgaon, Sept 2003 – Aug 2008

Project Lead – ISS Projects & Business Analyst (Sept 2005 – Aug 2008)

• Preparation of Software design specifications document

• Security Management of Servers including audit & reviews

• Hardening of servers and IT audits on ISS Projects

• Create Use Case designs and sequence diagrams, developed Test cases for Testing

Technical Support Specialist & Tier II Support (Sept 2003 – Sept 2005)

• Provide technical support in an inbound chargeable environment

• Provide tier 2 support after 1 year of successful calling and exceeding stack matrices.

EDUCATION

• PGDBA - Post Graduate Diploma in Business Administration (Major - Operations) – Symbiosis Center

of Distant Learning – Year 2007

• BCA - Bachelor of Computer Application (Major – Computer Science) – Makhanlal Chaturvedi

University, Bhopal – Year 2002

Contact this candidate