SOUVIK GANGULY
About Candidate
| I am an energetic, ambitious person who has developed a mature and responsible approach to any task that I undertake, or situation that I am presented with. As a technical graduate with eleven (11) years (plus) experience in management of Information System Auditing, Information Security Consulting, ISMS Implementation, Information Risk Assessment & Management, Data Privacy Compliance Management which includes GDPR Compliance Management as well as Privacy Risk Assessment & Management. I am excellent in working with others to achieve a certain objective on time and with excellence. In my current role, I am leading six (6) members team as “Senior Manager” playing the role of “Global Program Manager-Privacy Impact Assessment” in Global Privacy Office for HCL Technologies |
Education
Work & Experience
Perform security audit as per ISO 27001 for Govt. Datacentre and provide report to information Technology Department, Govt. of Meghalaya, India; ✓ Executing Vulnerability Assessment and Penetration Test; ✓ Received client appreciation for the work;
Risk Management and Analysis; ✓ Managing East and North East region of TCS Service Delivery Centers in terms of Information Security Audit and Compliance prospective; ✓ Provide RFP responses to TCS customers on need to do basis; ✓ Change request management
Designing & Implementation of ISMS; ✓ Drafting Risk Assessment Methodology for the organization; ✓ Performing Risk Assessment; ✓ Performing Risk Treatment & Mitigation Plan; ✓ Designing the ISMS Policy (End to End); ✓ Designing the end to end operating process for all internal stake holders and business units for the organization; ✓ Provide guidance for ISMS Internal audit; ✓ Taking care for end to end ISMS process implementation for the organization; ✓ Performing Vulnerability Assessment for organization asset as per the client provided asset list; ✓ Conducting Penetration Testing for client as need to do basis; ✓ Conducting audit for National Insurance Company (NIC) service providers and Third Party Assistance (TPA) clients ✓ Conducting audit for NIC Vendors; ✓ Providing RFP responses for Information Security Policy, Procedures to NIC Customers;
Remodelling of ISMS in Cognizant solution environment; ✓ Auditing internal team/stakeholders for information security prospective; ✓ Performing Risk Assessment for internal teams; ✓ Designing Risk Treatment & Mitigation Plan; ✓ Remodelling the ISMS Policy (End to End); ✓ Reviewing Vulnerability Assessment for organization assets; ✓ Managing Information System Audit as per ISO 27001:2013 Standard for 58 location in India and 14 location in rest of the world countries
Executing Privacy Impact Assessment globally for corporate and business engagement both, which includes planning, execution and implementation monitoring; ✓ Providing solution to business delivery engagements from privacy risk mitigation perspective; ✓ Implementing “Privacy by Design” in HCL ; ✓ Coordinating with various corporate function for privacy baseline control implementation; ✓ Recommending solution for business engagements on privacy risks where HCL acts as data processor; ✓ Taking care of privacy compliances focused on HCL Europe entities on GDPR perspective; ✓ Implementing One Trust (PIA module) in HCL;
