Surendra Pal Singh
Lead Auditor ISO 27001,CISA, ITIL,
MCSE . Total Compliance and Cyber Security Experience 12+ years plus .
Experience in IT infrastructure technologies and information and cyber security
standards, (ISO 27001, PCIDSS, IRDAI, SOC2, GDPR, DPDP, NESA, CCPA), ITIL Processes,
Security controls implementation, Audits, Information Security policy and Process
design, Risk analysis, assessment and mitigation, Gap Assessment, BCP, Security
solutions evaluation, Report reviews, Management discussion in implementation of
solutions, proposing new solutions and next gen security services. Apt in Servers and
Storage technologies, Active Directory and MS Exchange.
Education and Professional Certificates
• ISO 27001:2013 LA Certified • ISO 27001:2022 LA Certified • ITIL • CISA certified • PCI-DSS Internal Auditor • MCSE (Microsoft Certified) • Servers and Storage Specialist
Professional Experience
• Information Security policy documentation as per organization requirements
• ISO 27001 Consulting and Certification
• GDPR, CCPA, NESA, DPDP Act consulting
• IRDAI Cyber Security Compliance end to end for Insurance Brokers
• Business continuity framework designing and implementation
• Performing security audits as per ISO 27001 on a quarterly basis
• Designing monthly dashboard and presentation for management
• Mapping solutions as per compliance requirements as ISO 27001 and PCIDSS
• Developing Risk Management framework on guidelines of ISO 27001
• Training and Awareness to End User , Middle Management on ISO 27001
• Lead a team of consultants for setting up Cyber Security Practices at
Projects Undertaken
• vCISO for esteemed organisations.
• GRC for large Sales force partner
• ISO 27001 Consulting and certification
• IRDAI Cyber Security Compliance
• DPDP Act technical Consulting
• GDPR technical Consulting
• SOC 1 and SOC 2 Type 1 and Type 2 Reports
• PCI Consulting
• Application Architecture Review from Security and Infrastructure design perspective
• Third Party Risk Assessment (Vendor Risk Assessment)
