Nitesh Gaikwad

Lead and build Information Security team at Raisin responsible for Cloud Infra Security, Application Security, Security Assurance and Security Operations (SOC). - Leading Security efforts for Raisin group (entities) - Define and implement security best practices in Infra Security, Application Security and GRC space - Design and Implement Cloud security (AWS) best practices - Support in External and internal audits, bank due diligence - BaFin, BAIT Compliance projects - ISAE 3402, SOC 2 Compliance

Leading Technology Security, Risk, Governance and Compliance initiative for Grab Financials (Payments, Remit, Lending). Independent resource managing all initiatives from defining polices, implementing, reviewing it within organisation. Facing regulatory audits to get licenses in different countries for Payments and financial business. Managing vendor security reviews, conducting data and access reviews for critical applications. Managing PCI Audits to get certification for entity.

Providing consulting to General Electric (GE) in Europe and acting as Information Security and Compliance Manager for Global Operations Business across Europe. Role – Manager IT Security and Compliance - managed IT Governance and Risk activities for General Electric (GE) customer and ensure Information Security practice growth for Softtek India (shared service). Regions – Europe, LATAM, Asia and MENAT

Role – Team Lead Info Sec Practice – provided consulting to GE for IT Security, Risk and compliance IT Security and Compliance Analyst (1 FTE) providing consulting to GE Corporate business • Supplier and Application Security reviews – managing 40+ reviews per year • SOx Compliance for third party supplier applications • Mange Application Lifecycle governance and access reviews

Implementing reviewing ISO 27001 standard across organisation. Got 2 locations certified for ISO 27001 standard • Facilitate ISO 270001 standard implementation of key control points across organisation • Conduct internal audits of projects, internal functions like IT team, HR, Admin, and Legal team. • Conducting awareness sessions for large audience on Info Sec awareness, BCP

Role - Internal Auditor in Corporate Security Audits team • Managed independently and perform audits end to end • Develop yearly Audit plan, conduct Internal IT audits and prepare risk control matrix and audit report. Report results to internal audit committee. • Conducting Specialised Audits such as SAS 70 readiness for the ODCs