Advisory Groups

While SISA has a very dedicated team of professionals in-house, we believe in working with industry experts who bring an immense amount of value and industry expertise related to forensics-driven cybersecurity practices. SISA’s dedicated group of advisory members not only govern the certification schemes but also recommend best practices and provide information on the latest revolution in the ever change field of technology and cybersecurity which helps keep the certification schemes update and relevant.


Advisory Group Structure:

  • Each certification scheme has a dedicated Advisory Group called “Advisory Council”.
  • The Advisory Council has members with years of experience and expertise in the subject/ field related to the certification scheme.
  • This group of experts are volunteers who believe in the certification scheme and its contribution towards the field. SISA does not own or control this group or its decisions.
  • SISA attempts to have the council representation spread across industries, job roles and locations around the globe.
  • The Advisory Council meets once a quarter to discuss and review the performance of the certification scheme.

 

SISA monogram in White

SISA welcomes individuals who wish to contribute towards the certification scheme.

Arun Singh

Arun Singh

Introduction: Accomplished IT Leader and Ex-Indian Air Force Officer

Work Experience: 15 years of rich experience in InfoSec domain

Certifications: CISSP, PMP, CSM, PCI DSS, ISO/IEC 27001:2013, Six Sigma, Data Science and ITIL

Qualifications: Bachelor’s in technology and MBA in Information System and Operations

Accomplishments:

  • Assistant Director in Network Operations Centre and Data Centre of Indian Air Force.
  • He was involved in setting up Joint Command and Control Centre with Indian Army and Air Force and Infosec Training Centre for Air Warriors.
  • Alumni of MDI Gurugram and IMT Ghaziabad.
Abdul Majied Khan Shahul Hamed

Abdul Majied Khan Shahul Hamed

Introduction: Information Security Consultant

Work Experience: 5 years of experience specializing in SOC Operations and Content development.

Certifications: CISA, ISO 27001 Lead Auditor, CPISI, E|CSA, CCNA-R&S, AZURE SECURITY

Qualifications: Bachelor’s in Computer Science & Engineering

Accomplishments:

  • Offering information security consulting for one of the leading Banks in UAE
  • Member of Computer Society of India
  • Member of ISACA UAE
Jay Pamu

Jay Pamu

Introduction: Head – Information Security, BFSI CBO

Work Experience: 22 years of professional experience working in IT Infrastructure services

Certifications: ISO 27001:2013 Lead Auditor, COBIT5, Prince2, CPISI

Qualifications: Bachelor’s degree in Electrical and Electronics Engineering

Accomplishments:

  • Heads Information Security function for banking & insurance domain
  • 10 years in Information Security implementation & governance
Binayak P Gupta

Binayak P Gupta

Introduction: Corporate IT trainer

Work Experience: 18 years of working in IT Education

Certifications: VCP, CEH, CEI, CompTIA Linux+, MTA (Cloud & Security), Cyber Reconnaissance Expert, MCSE

Qualifications: Bachelor’s in Commerce and Cyber Security Degree from EC-Council University

Accomplishments:

  • Delivered numerous corporate trainings.
  • Build and delivered training content through well known online study platforms such as Wiley India Pvt. Ltd., LetsUpgrade, Eduramp Learning Services Pvt. Ltd., Stripedata Private Limited and many more.
  • Recognized by Tech Edu Portal.
Jai Singh

Jai Singh

Introduction: IT Infra and Security Expert

Work Experience: 25 years of working in IT Infrastructure and security experience

Certifications: PCI-DSS, CPISI, MCSA, MCP, LINUX, PGDCA, MCP (H/W&N/W – IT INFRA SECURITY)

Qualifications: BMaster of Business Administration, Bachelor’s in computer Application

Accomplishments:

  • Served in the Government Sector of Défense
  • Delivered Security training in various fronts like DR, BCP, PCI DSS and Redundancy of IT devices and so on.
Ameen Uddin

Ameen Uddin

Introduction: Tech Controls & Compliance Analyst

Work Experience: 2 years of professional experience in InfoSec domain

Certifications: ISO/IEC 27001:2013, IRM Global Level 1 Enterprise Risk Management, CPISI Advanced

Qualifications: MBA, Information Technology Business Management, Bachelor of Technology – BTech, Computer Software Engineering

Accomplishments:

  • Working on PCI DSS implementation project management at a well-known Bank
  • Perform Risk and Control Self-Assessment on various departments of the bank (Information Security Risk in Operations, Applications Controls as per ISO 27001 and ITGC controls, Endpoint Assessment)
Arbdor Churchill

Arbdor Churchill

Introduction: Managing Consultant and Chief Technical Officer

Work Experience: 19 years of industry experience in different aspects of information technology with core focus on Governance, Risk, Compliance and software project management.

Certifications:

  • Lead Cybersecurity Manager certification
  • Certified Information System Auditor
  • Lead Auditor / Implementer Information Security Management System
  • Lead Auditor / Implementer Quality Management System
  • Lead Auditor / Implementer Occupational Health & Safety Management System
  • Lead Auditor / Implementer Business Continuity Management System
  • Lead Implementer Payment Card Industry Data Security Standard v4.0
  • IT Corporate Governance Manager

Qualifications: B.Sc. in Computer Science from Rivers State University of Science & Technology

Accomplishments:

  • Working on PCI DSS implementation project management at a well-known Bank
  • Perform Risk and Control Self-Assessment on various departments of the bank (Information Security Risk in Operations, Applications Controls as per ISO 27001 and ITGC controls, Endpoint Assessment)
  • Member of Information System Audit and Control Association, holds the prestigious CISA certification
  • Author of Online Security for the Rest of Us: A Humafirewall Guide
  • Devoted most of his career to Information/Cybersecurity, Auditing and ISO management systems certification
  • Seasoned consultant, Trainer and Auditor with extensive experience
Kyaw Thu Soe

Kyaw Thu Soe

Introduction: E-payments project manager at a major bank in Thailand, Experienced Project Manager with a demonstrated history of working in Banking and card and payment financial services domain.

Work Experience: 10 years of professional experience in Payment and Card Industry

Certifications: CPISI Advanced, Scrum Master Certified (SMC)

Qualifications: MBA International Management, JAVA EE, Enterprise Java

Accomplishments:

  • Successfully finished the PCI-DSS implementation project, POS and ecommerce acquiring for the bank. As well as on the credit card projects and operations in the second largest bank in Myanmar
  • Experience in IT delivery in Banking and Payments product development, consulting and overall management of IT in Banking and Payments Bank company
  • Strong expertise in Payment switch Implementation, System Integration projects, IT operations and Procurement
  • Successfully completed Banks for Payments switch Implementation and developed estimation techniques for large deals
Rushabh Pinesh Mehta

Rushabh Pinesh Mehta

Introduction: Information Security Strategy, Risk and Compliance; and Information Systems Assurance professional

Work Experience: 7.5 years of industry experience working on several IT – GRC, TPRM, IS Audit, Cloud Security, Data Privacy and BCP / IT-DR engagements

Certifications: CISM (Q), CC, ISO 27001:2022 LA, CRisP, NIST CSF v1.1, CSA STAR, ISO 27017:2015, AZ-500, SC-900, AZ-900, OCI Foundations, Alibaba Cloud Security Associate, CDPSE, ISO 27701:2019 LI, OneTrust Privacy Professional, ISO 22301:2019 LA, FQA BCM, FQA BIA, FQA IT-DR, Advanced Program in Cyber Law, Qualys Policy Compliance, CyberArk Trustee, Fortinet NSE 1, ICSI CNSS, MSI Project Management Essentials, Scrum Foundation, Six Sigma Yellow Belt, Six Sigma White Belt

Qualifications: Bachelor of Engineering in Electronics and Communication; and Post Graduate Programme in Information Technology Business Management

Accomplishments:

  • Featured in ’40 under 40 in Cybersecurity 2023′ Special Edition of Top Cyber News MAGAZINE
  • Bronze level member of ISACA
  • Awarded as Best Student (Academics) in PGP-ITBM (2017-18), SCIT
Kuchal Das

Kuchal Das

Introduction: Cybersecurity Senior Lead

Work Experience: 9 years of industry experience in diverse aspects of the Technology & Information security domain with core focus on Governance, Risk, Compliance, IOT, Cloud, Data Privacy etc.

Certifications: Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), ISO 27001:2013 Lead Auditor, ISO 22301: 2019 BCMS Lead Implementer, Certified Payment Card Industry Security Implementer (CPISI), Cyberark Certified Trustee, SC- 900 Microsoft Security Compliance & Identity, AWS Security Fundamentals, One Trust Privacy Professional, Scrum Foundation, Fortinet NSE 1

Qualifications: Masters in Information Technology (M.Sc-IT)

Accomplishments:

  • Worked on PCI DSS implementation project management at a level 2 E-commerce entity
  • Represented as part of the Centre of Excellence team of the Corporate GRC Practice unit
Amit Subhanje

Amit Subhanje

Introduction: Seasonal Cyber Risk & Compliance Professional

Work Experience: Experience working on Internal Audits, Information Security, Third-Party Risk Management, Enterprise Risk Management, Cyber Security, Business Continuity Management and Risk & Compliance domains

Certifications: CISA, CISM, CRISC, COBIT5, ISO 27001 LA, ISO 22301 LA, ISO 27701 LA, Lean Six Sigma Black Belt, Lean Six Sigma Green Belt, CyberArk Trustee

Qualifications: Bachelor’s in technology and Master’s in Risk Management

Accomplishments:

  • Youngest upcoming cybersecurity leader
  • Holds the top prestigious cybersecurity qualifications i.e., CISA, CISM and CRISC
  • Known cybersecurity speaker
  • ISACA Member
  • SISA Champion
Ravi Bhushan

Ravi Bhushan

Introduction: CISO at Wibmo Inc

Work Experience: Over 19 years of working experience in Governance and Risk, Technology and Cyber risks, Programme management, Business processes and controls reviews, Regulatory reporting, Technology infrastructure review, Information Security review, IT Audit and Software engineering.

Certifications: Certified Information Systems Auditor (CISA), Business Simulation certifications (2017), ‘IBM Blockchain Foundation for Developers’ certification (2018) and ‘Cloud Security Basics’ certification from University of Minnesota (2021)

Qualifications: Masters in Computer Applications (MCA), Ravi completed MBA (Executive) from SP Jain School of Global Management, Mumbai in the year 2018

Accomplishments:

  • Ravi has been a distinguished guest speaker and panelist on various contemporary topics in the industry.
  • Lead Digitization Programme and Strategic Initiatives at a major Bank in India
  • Was the Vice-President, Chief Controls Office focusing on Cyber and Technology risk portfolio
  • Has handled Chief Information Security Officer (CISO) and Head of Technology Controls responsibilities at major bank in Mumbai and was heading the international portfolio of the bank in line with the firm’s Enterprise Risk Management Framework (ERMF) in Pune, India
  • Drove IT Attestation Service line across India, worked on various phases of Software Development Life Cycle in India and US
  • Ravi carries exposure to global business environment and travelled to multiple countries including US, UK, Singapore, China, Hungary, Romania, Mexico, Indonesia, and Zambia
Samih Elbadrawy

Samih Elbadrawy

Introduction: Cyber Security Consultant

Work Experience: 9 years of professional experience in Payment and Card Industry

Certifications: CPISI, CISM, CRISC, CC, CEH Master

Qualifications: Bachelor’s degree in computer science and software Engineering from Arab Academy for Science and Technology and Marine Transport

Accomplishments:

  • Member of ISACA
  • Participated in many CTF competitions like Cybertalents and Arab Security Conference Wargames
  • Expert in Vulnerability Management Automation
  • Expert on handling Security Solutions like SIEM, DLP, and APT
Pinaki Ranjan Aich

Pinaki Ranjan Aich

Introduction: IT Security, Governance, Risk, Audit & Compliance professional

Work Experience: 7.10 years of industry experience on GRC, Audit, Cloud Security, Data Privacy and specialized audit engagement

Certifications: CPISI, CISA Certified, ISO/IEC 27001 Lead Auditor Certified, EXIN- Privacy and Data Protection Foundation Certified, Certified Payment Card Industry Security Implementer (PCI-DSS), Security Intelligence Engineer – IBM Certified, Security Orchestration, Automation and Response (SOAR)-Resilient -IBM Certified, ITIL V3 Foundation Certified, Prince 2 Agile Practitioner Certified, COBIT 5 Foundation Certified,  CyberArk Certified Trustee version 9.10, Diploma in Cyber Law

Qualifications: B.Tech(CSE) from B.P.U.T and PGDM – IT and System Management(2yr) from NMIMS

Accomplishments:

  • Planned, developed, and monitored audits related to Internal Audit, Regulatory Audit, Cyber Audit, SOX, ISO 27001, PCI-DSS, SOC1 and SOC2
  • Played a pivotal role in the recruitment, training, and evaluation of Information Security staff, contributing to improved personnel performance and development
  • Develops and applies policies impacting business methods and integrated security restrictions, weighing complex requirements form the business with industry best practices for security
  • Implemented data-driven performance metrics, resulting in a measurable increase in efficiency and productivity within the Information Security team
  • Member of ISACA
Eke

Eke

Introduction: Security Strategist

Work Experience: 22 years of experience building and leading enterprise security programs in highly regulated industries.

Certifications: CISSP, CISM, CRISC, CISA, Security+

Qualifications: MBA, Bachelors in Computing Security & Technology

Accomplishments:

  • Led successful Risk Management efforts for key Joint Staff engagements
  • Built world-class Security Operations Center for monitoring cloud platforms
  • Developed Federal and Corporate Incident Response programs and established collaborative partnerships with key local and federal law enforcement partners
  • Successfully planned, managed and led the delivery of multiple secure cloud-based products
Raymund Julag-ay

Raymund Julag-ay

Introduction: Seasoned IT and Information Security Professional

Work Experience: More than 25 years of extensive Global experience in IT, InfoSec, Data Privacy, Business Continuity, Risk and Compliance

Certifications: Certified Information Security Manager (CISM), Certified Payment Card Industry Security Implementer (CPISI), HITRUST Certified Common Security Framework Practitioner (CCSFP), Certified Metaverse Security Consultant (CMSC), Certified Data Protection Officer (DPO)

Qualifications: Bachelor’s Degree in Electronics and Communications Engineering with Post-graduate studies in Executive-MBA (Corporate Change)

Accomplishments:

  • Appointed as Data Protection Officer for different Data Privacy Regulations in Asia, US and Europe
  • Built a HITRUST Certified Security Operations Center for a Global healthcare company
  • Setup of a Global Network Operations Center covering 150 countries for a major travel organization
  • Migrated technology processes from top US Fortune 500 companies to a Business Process Outsourcing firm
  • Led the assessments and certification of PCI-DSS, HITRUST, SOC 1 and 2, ISO 27001, HIPAA and URAC for several global companies
  • Provided technical guidance for the build-out of World Bank Global Distance Learning in one of the graduate school in Asia
  • Member of ISACA – Silver Level
Nitish Mehta

Nitish Mehta

Introduction:   IT and cybersecurity Audit, Compliance and Risk Professional

Work Experience: 10+ years of experience in IT and security domain in consulting and banking

Certifications: CISA, CISM, ISO 27001 LA, CIPP, COBIT 2019 , CSOX Expert, EY Cybersecurity Badge, CCNA, ITILv4, API security Architect

Qualifications: Bachelor’s of Technology in IT

Accomplishments:

  • Led various cybersecurity regulatory audits and compliance assessment for banking industry
  • Experienced in IT General controls and application testing at various industry
  • Conducted various IT GRC implementation and Cybersecurity consulting engagements
  • Carried out IT risk assessment and developed relevant processes and reporting global teams
Naveen Mittal

Naveen Mittal

Introduction:  Vice President – IT Infrastructure and Operations

Work Experience: Dedicated and seasoned IT professional with 25 years of extensive experience in IT Infrastructure, specializing in Cloud, Security, Compliances, and Vendor Management.

Certifications:

  • AWS Certified Solutions Architect-Associate  
  • Microsoft Azure Architect Technologies – AZ-303  
  • Microsoft Azure Fundamentals – AZ-900  
  • VMware Certified Professional (VCP 5.0)  
  • Microsoft Certified System Engineer (MCSE)  
  • ITIL V3  
  • Prince2  
  • Pursuing CISSP (Certified Information Systems Security Professional) 

Qualifications: I hold a Master of Business Administration, further enhancing my strategic and managerial skills to align technology initiatives with business goals.

Accomplishments:

  • Implemented PCI DSS compliances for various projects, showcasing a commitment to data security and regulatory adherence  
  • Implemented cutting-edge security tools such as WAF, Cloud Security Posture Management, Email Security, SASE, and MDM, ensuring a robust defense against cyber threats  
  • Conducted IT risk assessments and developed relevant policies and processes to mitigate potential risks effectively  
  • Recognized as the Digital Transformation Leader at the Confex & Awards 2023, highlighting my leadership and contribution to the organization’s journey towards digital excellence  
  • As a forward-thinking IT leader, I am dedicated to staying at the forefront of technology trends and best practices  
  • My pursuit of the CISSP certification reflects my commitment to continuous learning and the highest standards of information security 
Kasun Atapattu

Kasun Atapattu

Introduction:  Experienced Senior Information Security Officer, Visiting Lecturer, and Information Security Trainer with over 12 years of comprehensive expertise in Database Management Systems (DBMS), Information Security, Systems Auditing, and Information Security Training. A passionate advocate for cybersecurity, dedicated to cultivating knowledge and fostering secure digital environments.

Work Experience: Bringing a wealth of knowledge and proficiency, he has accumulated over a decade of experience in the fields of DBMS, Information Security, Systems Auditing, and Information Security Training. His roles have involved safeguarding critical information assets, conducting thorough systems audits, and delivering impactful training sessions to enhance organizational security posture.

Certifications:

  • Certified Information Systems Security Professional (CISSP)
  • Certified Ethical Hacker (C|EH)
  • Certified Information Systems Auditor (CISA)
  • Certified Professional in Information Security Incident Response (CPISI) – v4.0
  • ISO 27001:2013 Lead Auditor (LA)
  • Privacy Information Management System (PIMS) ISO 27701:2019

Qualifications:

  • B.Sc in Management and Information Technology
  • Professional Graduate Diploma – British Computer Society
  • M.Sc in Information Technology

Key Competencies:

  • Expertise in designing and implementing robust Information Security frameworks.
  • Proficient in Database Management Systems, ensuring data integrity and security.
  • Conducting comprehensive Systems Audits to identify vulnerabilities and mitigate risks.
  • Delivering engaging and effective Information Security Training programs.
  • Adept at leading and managing ISO 27001:2013 and PCI:DSS and other compliance initiatives.
  • Strong analytical and problem-solving skills with a commitment to continuous improvement

Passion & Vision: Dedicated to staying at the forefront of evolving cybersecurity landscapes, his mission is to contribute to the development of secure digital ecosystems. As a Visiting Lecturer, he aims to inspire the next generation of information security professionals, fostering a culture of resilience and proactive cybersecurity practices.

Meetali Sharma

Meetali Sharma

Introduction:  With over 20 years of expertise in Risk, Compliance, Data Privacy, and Cybersecurity, She specializes in crafting secure digital environments for businesses to thrive. Her passion lies in empowering teams and implementing strategic solutions to mitigate cyber threats and ensure compliance with industry standards.

Work Experience:  She has worked on several information security assignments covering consulting and solution-driven approach including – Information Security Incident Management, Information Security Risk Management, Training and Awareness, Information Security Measurement Program implementation, CMMi implementation for Development and Services.

Certifications:

  • Certified in Risk & Information Systems Control (CRISC) from ISACA
  • CMMI SVC & Dev 1.3
  • ISO/IEC 27001:2022 Lead Auditor
  • ISO 31000:2009 Risk Management Principles & Guidelines Implementation from BSI
  • IATF 16949:2019
  • ISO 22301 Lead Auditor 

Qualifications:

  • Master’s in business Administration (MBA) from Symbiosis
  • Professional Diploma in Information Technology
  • Post Graduate Diploma in Computer Applications
  • Bachelor in Science

Passion & Vision: Dedicated to fortifying digital landscapes, her vision is a secure environment fostering business growth unhindered by cyber threats. She aims to equip teams with the expertise and resources needed for robust risk management and compliance, fostering a culture of proactive security and enabling businesses to thrive in the digital age.

SISA’s Latest
close slider