Experience

Ducara Info Solutions (P) Limited

• India
• Computer and Network Security
• 1 - 100 Employee

• Sr. Information Security Consultant (GRC)

  • Jan 2021 - Present

  I am a highly skilled professional in the field of application and network information security standards, methodologies, and frameworks such as COBIT 5, HIPAA, NIST 800 Series, ISO/IEC etc.As the main point of contact for all security-related issues, I develop and implement threat and vulnerability management policies and manage the Security Event Management (SEM) system.I played a vital role in the Enterprise Risk Management Program by conducting Control Self-Assessments for Key Processes, Access Management, Security Awareness Training, Intrusion Detection /Prevention, Incident Response, Network and Application Vulnerability Assessments, Business Impact Analysis, and Business Continuity and Disaster Recovery Planning. Show less

• Info-Sec. Consultant

  • Jan 2019 - Dec 2021

  My role is to create comprehensive reports that identify security weaknesses and potential risks to the business.I provide recommendations to address these issues and estimate the associated costs and efforts required for remediation.I have ability to do manual penetration testing.I also respond to new threats and maintain security practices using the COBIT-5 framework. I have experience in network security and deploying security measure in industrial control systems environments.

• Security Analyst

  • Feb 2018 - Dec 2019

  My primary responsibility is to update and customize course curricula that meet the specific needs of students and clients. This ensures that the courses and skills offered are current and up to date with the latest standards, versions of courses (materials and certifications exams), and technologies, both current and emerging. I also conduct training sessions for clients, both in-house and public. By doing so, I am able to share my knowledge and expertise with others, ensuring they have the skills and knowledge required to succeed in their filled. Show less



Appin Technology Lab, Noida

• 1 - 100 Employee

• Info-Sec. Trainer

  • Feb 2017 - Jan 2018

  I have been a trainer for both in-house and public programs. I have made the process of developing training material and delivering training sessions easier for Information Security, Web Application Security training, Ethical Hacking and related areas. Provided trainings in several areas, like- Ethical hacking, cyber security, penetration testing and vulnerability management etc. and trained 100+ end users. Also, I have worked as Subject Matter Expert for security certifications like - Certified Cloud Security Specialist, Certified OWASP Penetration Tester, Certified SOC Specialist,Certified Mobile Application Security Expert. Show less