Anup - Cybersecurity Architect Trainer in Bengaluru, India

Anup is a seasoned information security and technology risk management professional with a formidable track record spanning over a decade. Anup holds the prestigious title of Certified Information Security Manager (CISM). He possesses an ISO 27001 Lead Auditor certification, marking him as a recognized authority in cybersecurity and compliance. With an impressive 11 years of experience as a trainer, Anup's expertise extends beyond personal mastery, as he is dedicated to sharing his knowledge and shaping the next generation of cybersecurity professionals.

Anup's journey in information security commenced over 14 years ago, making him a true veteran in the industry. He has honed his skills in technology risk assessment, cyber security risk management, and Information Technology general controls throughout his career. Anup's proficiency in governance, risk, and compliance practices has allowed him to navigate the intricate landscape of information security precisely. His ability to identify risks, rigorously evaluate controls, and provide strategic recommendations has consistently resulted in better risk outcomes for the organizations he has served. Beyond his technical acumen, Anup's leadership prowess and knack for driving process improvements stand as testaments to his multifaceted capabilities in information security.

Anup is a Corporate Trainer For

Certified Information Security Manager (CISM)

Training Since:

November, 2022

ISO 27001 for Lead Auditor

Training Since:

February, 2018

Cybersecurity Architect

Training Since:

January, 2012

Work Experience

IT Manager

Defense:

July, 2003 - July, 2018

Roles & Responsibilities

Conducted network, server, and workstation system audits to ensure compliance with ISMS (Information Security Management System) standards as per ISO 27001
Assessed potential security exposures resulting from ineffective or missing control practices within the organization's IT infrastructure
Accurately interpreted audit results by comparing them against predefined criteria and standards, identifying non-compliance areas and vulnerabilities
Evaluated the relevancy, accuracy, and perspective of conclusions drawn from audit evidence, ensuring a comprehensive understanding of the security landscape
Prepared and delivered both written and verbal reports of audit findings to senior management, highlighting areas of concern and proposing necessary remediation steps
Collaborated with cross-functional teams and management to develop rigorous "best practice" recommendations to enhance security across all levels of the organization and ensure alignment with company procedures and policies

Information Security Specialist

Computer and Information Technology (IT):

September, 2018 - October, 2019

Roles & Responsibilities

Monitored IT General Controls for compliance with SOX regulations and supported external and internal audits of SOX IT General Controls for clients
Conducted impact assessments for SOX IT General Controls to evaluate their significance and potential consequences
Leveraged the eGRC Archer tool to on-board authoritative sources and maintain a control register for streamlined compliance management
Conducted rigorous testing of applications and their modules to ensure optimal performance and suitability before their release to end users
Conducted Common Control Harmonization efforts to align controls with PCI DSS and the California Consumer Privacy Act (CCPA) requirements
Implemented automated reporting and archival processes for database-privileged accounts, leveraging Microsoft Power Apps tools. Initiative significantly enhanced efficiency and accuracy in compliance management
Developed PowerShell scripts to automate the creation of domain user accounts and streamline the collection of account details. Automation effectively reduced manual efforts and improved the overall efficiency of the process.

Information Security Specialist

Computer and Information Technology (IT):

October, 2019 - April, 2021

Roles & Responsibilities

Implemented SOX regulations for organizational and cloud services, encompassing compliance monitoring in access control, configuration management, change management, database monitoring, and SOC report review of cloud service providers
Facilitated external and internal audits for SOX IT general controls
Audited change management controls as part of the onboarding process for new cloud applications
Worked with various SDLC processes to check in and check-out tools. Includes experience in CI/CD and code repositories like Jenkins, GitLab, and GitHub
Utilized HTML to create and configure dashboards, I-views, and custom notifications within the Archer platform. Implementation enhanced the user interface and provided customized notifications for improved monitoring and management within the platform
Identified new programs for compliance with the European General Data Protection Regulation (GDPR) and implemented appropriate controls for newly identified applications
Assisted in onboarding various compliance programs, including NIST, FedRAMP, and CMMC, utilizing the eGRC Archer tool to onboard authoritative sources and maintain a control register

Manager

Computer and Information Technology (IT):

May, 2021 - December, 2021

Roles & Responsibilities

Provided expert consultation in technology, industry domain, process, application, and product domains
Facilitated comprehensive SOX IT general controls audits for clients
Collaborated with internal and external stakeholders to ensure the proper implementation and maintenance of security controls
Assessed SOX IT general control elements to mitigate IT risks associated with the confidentiality, integrity, and availability of critical business information
Reviewed systems for compliance with IT general controls, risk management practices, and regulatory policies
Conducted re-assessments of controls and deficiencies and retested all identified key controls within SOX guidelines
Conducted a highly attended webinar addressing the performance of SOX IT general control with numerous stakeholders and business reviewers

Cyber Security Manager

Computer and Information Technology (IT):

January, 2022 - present

Roles & Responsibilities

Providing expertise in technology, industry domain, process, application, and product domains
Performed cloud security assessment as part of CSA STAR certification
Developed and executed a Cloud Information Security strategy to proactively identify risk and drive remediation
Improved the efficiency of information security processes and advanced the effectiveness of the information security controls of the cloud operating model
Conducting maturity assessments utilizing the NIST cybersecurity framework
As part of the client’s yearly surveillance and certification audit, conducted internal audits for information security management system (ISMS) preparedness assessments
Prepared Common Control Regulation documentation compliant with ISO 27001, GDPR, SOC2, and CSA STAR Regulations

Skills

GRC

Audit

SOX

GDPR

data privacy

Data Privacy

Kali Linux

Server Administration

Identity & Access Management (IAM)

Education

International Institute of Information Technology

cyber security :

2022-2023

Symbiosis Centre for Distance Learning

HR:

2008-2011

Jamia Milia Islamia

Business Admin:

2015-2018

JRN Rajsathan Vidhyapeeth

Mathematics:

2003-2008

Projects

freelance training

Computer and Information Technology (IT):

February 2023 - July 2023

Posts

freelance training

Computer and Information Technology (IT):

February 2023 - July 2023

Courses

Certified Information Security Manager (CISM)

ISO 27001 for Lead Auditor

Cybersecurity Architect

Want Anup for your next training?

Request a Demo

Other Trainers

Rohit

Bangalore, India

Training Since

January, 2007

Team Building

Conflict Management

Cybersecurity Architect Trainer in Bengaluru

About Anup

Anup is a Corporate Trainer For

Certified Information Security Manager (CISM)

ISO 27001 for Lead Auditor

Cybersecurity Architect

Work Experience

IT Manager

Roles & Responsibilities

Information Security Specialist

Roles & Responsibilities

Information Security Specialist

Roles & Responsibilities

Manager

Roles & Responsibilities

Cyber Security Manager

Roles & Responsibilities

Skills

Education

International Institute of Information Technology

Symbiosis Centre for Distance Learning

Jamia Milia Islamia

JRN Rajsathan Vidhyapeeth

Projects

freelance training

Posts

freelance training

Courses

Want Anup for your next training?

Other Trainers

More Corporate Training Programs