Koushlender Singh Bundela

Information Security Specialist

Gurugram, Haryana +91-9004849738 koushsingh@gmail.com

Skilled IT Auditor with 7 years of cumulative experience working collaboratively with cross-functional and
multinational teams in Information Security Management. Expertise in Risk Assessment, Risk Treatment, TPRM
(Third-Party Risk Management), NIST, IT audits, and cybersecurity. Seeking to contribute my in-depth knowledge
and proficiency to enhance the security posture of organizations.

SKILLS

ISMS Implementation and Audit IT Risk Management ISO27001 SOC2

TPRM NIST SIEM ITGC

Executive Summary
● 7 years of experience in Information Security Management and legal security compliance. Assured the integrity,
confidentiality, and availability of company information by implementing and monitoring comprehensive
enterprise information security programs.
● Responsible for leading the Information Security Audit: preparing the control framework, defining scope,
executing actual audits, and working with stakeholders in managing the vulnerabilities.
● Excellent communicator; leverage technical, business, and financial acumen to communicate effectively with
client executives and their respective teams during any project.
● Business and IT resilience planning and coordination with stakeholders.
● Certified Fraud Examiner from the Association of Certified Fraud Examiners (ACFE) in February 2023.
● Utilized risk analytic methodologies and structured analytical techniques on both qualitative and quantitative
data to identify operational risks.

CERTIFICATIONS
● ISO 27001:2022 & 22301:2019 Lead Auditor
● Certified Fraud Examiner - 2023
 EXPERIENCE
Ad Astra for Google, Gurugram | Nov 2021 - PRESENT
● Manage and own all facets of Network Security, Data Security, EUC (End User Computing) Security.
● Leading the implementation of Security Assurance / VAPT / Application Security measures.
● Collaborated with the IT team to develop and implement security policies, standards, and procedures, ensuring
compliance with relevant regulatory requirements.
● Design, develop and implement Process and security audits for enterprise-wide applications.
● Reviewing of security activities and reports, providing a technical and non- technical oversight.
● Identify Information Security risks and improve the overall Information Security posture of the organization.
● Hands-on experience in IT Audit Management Systems and implementing policies and processes such as CERT,
IETF, ISACA, ISSA, and SANS.
● Conducted Risk Assessments and IT Audits to support the corporate development team in setting up sites in
assigned cities.
● Developed tactical/Strategic reports on Geo-Political events which include Security, environmental, and health
issues that might impact Google and Google associates directly or indirectly.
● Conducted research on emerging cybersecurity trends and assisted in updating the organization's security
awareness materials.
● Formulated Bespoke analytical reports for Cluster security managers.

Reliance Industries Limited, Mumbai | Aug 2016 - Oct 2021

● Provided 24×7 Level 1 support.

● Dealt with InfoSec tools viz. Microsoft Defender, Genetec, and metasploit.
● Continuous Risk and Gap Assessment and developing controls for rectification in line to ISO 27001.
● Conducted server security administration, compliance reporting in Vulnerability Management System.
● Assisted CSIRT/SOC with the investigation and response to network security breaches.
● Established various ISMS & TPRM policies like use of storage devices, asset management and allocation, access
control.
● Worked with cross-functional teams to ensure security compliance across the organization.
● Used the SAP GRC portal for analysis and timely review of all the inputs from audits and Risk assessment.
● Use the Service now GRC tool for all internal and external audits.
● Implemented IT Audit Management Systems and enforced IT policies and processes.
● Served as the Core member of the Information Security Team and managed the delivery of operational services
delivered against the security framework.
● Monitored teams for compliance and information security; formulated policies & procedures for implementation
of security controls, limiting information risk and leakages.
● Assisted the IT compliance team in reviewing security policies, procedures, and controls to ensure alignment
with industry standards and best practices..
● Maintained compliance with HIPPA, ITGS, and ISO standards through security audits and reviews.

EDUCATION

● MBA (Marketing & Finance) - Chandigarh Business School of Administration, Chandigarh, 2018
● B.Tech.(Mechanical Engineering) - Punjab Technical University, Mohali, 2014