SUHAS GORAKHANATH VENEKAR

• Assisting in defining the scope for the company with Top Management, Identifying the Assets, Building up the Asset Inventories, Asset Assessment and Management • Define and update information security policy • Risk Assessment and Risk Mitigation, Risk Management • Tracking of audit closure activities such as follow-up audit • Also, responsible for CAPA, RCA • ISMS assessment based on Organizational Information Security Policies, procedures and ISO 27001:2013 • Conducting Internal Audit against ISO 27001:2013 • Assisted in External Certification Audits • Developed quality related documents, procedures, work instructions, formats in requirement to standards 9001:2008.

• Conducting interviews with the business process heads to better understand their processes • Performing review and independent testing of operating effectiveness of control • Audits for General IT Controls • Gap Assessment and audit of NBFC client on RBI framework • Performing gap assessment, vendor audit internal audit against ISO 27001 standard • Conducting audit of clients for UIDAI and E-sign Framework • Define and update information security policy • Assessing potential findings for significance and drafting audit reports including writing clear and concise findings and recommendations