Nitin Gupta

Nitin Gupta CISA Strategic IT Audit and GRC leader with 14+ years of progressive experience driving enterprisewide cybersecurity, risk management, and compliance initiatives for Fortune 500 companies. Demonstrated expertise in establishing robust IT governance frameworks, leading complex audit engagements, and providing strategic risk advisory services. Track record of successfully implementing ISO 27001 standards and managing global IT audit programs across diverse business units.. Contact Phone- Experience 21st Dec 23 - Working Company l Adani Enterprise Ltd., Ahmedabad Email - Address Himalaya Pride Society, Noida Extension, UP, India Education 2013 M.Sc. IT Job position here : Senior Manager Executing IT audit engagements across Adani business units to drive effective Audit, Implementation and assurance of enterprise cyber, control, and risk management frameworks. Managing a team of 10+ professionals Working collaboratively with BU Executives and Digital Technology Leaders across the business in the evaluation of the Adani security posture. Driving 3rd layer of defense cybersecurity initiatives related to cyber readiness, compliance, and risk management. Formulation of appropriate audit programs, conducting audits., assigning and directing staffing resources to complete the audit plans as scheduled, generating final audit reports for internal and regulatory agency review, and conducting thorough follow-up audits on previously identified issues. Spearheaded cyber due diligence for M&A activities, resulting in successful BBA integration of acquired companies' IT infrastructure Successfully implemented ISO 27001 certification across 5 business units, achieving zero major non-conformities Diploma in Information System Developed and executed comprehensive audit programs aligned with industry standards (COBIT, NIST, ISO 27001) 2011 Expertise IT Audit & Assurance GRC Third Party Risk Assessment Risk Management ITGC and SOX Compliance ISO27001 Implementation Regulatory Compliance Audit Program Development Team Leadership & Mentoring Dec 21 - 20th Dec 2023 Company Name l PWC, Bangalore Job position here : Senior Consultant Led IT SOX and ITGC audits for Fortune 500 clients across multiple industries Conducted information security maturity assessments and gap analysis against industry frameworks Developed and implemented risk assessment methodologies for critical applications and infrastructure Performed third-party risk assessments and vendor SOC 2 report evaluations for 50+ vendors Participating in the development, review, ongoing maintenance, and development of security policies, standards, processes, procedures, and requirements. July 2014 - Dec 2021 Company Name l IBM/Kyndryl Noida Job position here : Senior IT Auditor Language English Hindi Managed end-to-end IT audit lifecycle for global clients, focusing on ITGCs and compliance Led external audit coordination, ensuring zero critical findings Developed automated audit workflows reducing audit completion time by 30 Articulated audit findings and remediation activity to senior management. Prepare report, prioritize the gaps identified and sent to stakeholders for their actions. Oct 2012 - July 2014 Company Name : HCL Comnet Ltd. Noida Job position here : Senior Specialist Performed security audits of systems and processes to identify potential risks and vulnerabilities. Established security audit framework and incident response protocols Led a team in prioritizing incidents, identifying false positives, and implementing correlation strategies. Defined Incident and SR SLA in Cyber department. Participated in strategy sessions with management and subject matter experts to develop effective and cost-efficient testing and remediation plans. Assisted stakeholders in preparing a response to audit findings during the post-audit phase. May 2011 - Oct 2012 Company Name l Iyogi, Noida Job position here : Technical Specialist Supporting 4000+ physical infrastructure hardware (HP servers) installed with MS Windows Server 2003, 2008 and 2008R2 Editions. Work on Change Management, Problem Management and Incident Management Resolving performance issues and managing user rights. Provided on call support to customers and involved in bridge calls during critical and major issues. Assigning and coordinating the workload based on project priorities. Nov 2005 - May 2011 Company Name l HCL Technologies Ltd. Noida Job position here : Sr. TSO Daily monitoring of Event viewer to identify event information about service failures, Active Directory replication errors, and low-disk-space warnings etc. Troubleshooting and working on viruses on customers system without losing personal data. Planned & assisted in smooth migration of the operating system. Provided seamless voice and remote support to the client while upgrading and installing software applications which included installing operating systems, anti-virus package, necessary drivers and security software. Installing and managing antivirus programs. Accomplishment Client Appreciation award in PWC for the year 2022 and 2023. Awarded from 'Bravo Award" for IBM in year 2017 and 2018. Awarded for the exceptional services award in HCL in year 2008, 2009, 2010. Certifications Certified CISA, ISACA - July 2022 Prompt Engineering for Generative AI, Linkedin Cyber Security The CISO's view -2017 - 2020 ISO27001: 2022 Lead Auditor (CQI|IRCA) - Sep 2024 ISO27001: 2022 Lead Auditor - July 2023 ISO27001: 2022 Lead Implementer - Aug 2023 ISO 27701: 2019 Privacy Information Management System - Aug 2023 ISO 31000: 2018 LI Risk Management- Sep 2023 ISO22301: 2019 LI Business Continuity - May 2023 ISO 20000: ITSM - Oct 2023 ISO27001: 2013 Lead Implementer - Sep 2022 Certified MCSE, Microsoft - 2008 CCNA - 2008 Tools worked : Worked on Archer tool 6.9 SP3 (Collective) Risk Insight (Service Now) CIRAT (Compliance Issue Risk and Apar Tracking tool) ECM (Enterprise Compliance management) Sysreg (System registration) Remedy tool for Change management Siebel for Incident management My Linkedin link: https://www.linkedin.com/in/nitin-gupta-cisa-6386b786/ YouTube channel link: https://www.youtube.com/@AuditCyberGuru/videos