Advisory Groups

While SISA has a very dedicated team of professionals in-house, we believe in working with industry experts who bring an immense amount of value and industry expertise related to forensics-driven cybersecurity practices. SISA’s dedicated group of advisory members not only govern the certification schemes but also recommend best practices and provide information on the latest revolution in the ever change field of technology and cybersecurity which helps keep the certification schemes update and relevant.

Advisory Group Structure:

  • Each certification scheme has a dedicated Advisory Group called “Advisory Council”.
  • The Advisory Council has members with years of experience and expertise in the subject/ field related to the certification scheme.
  • This group of experts are volunteers who believe in the certification scheme and its contribution towards the field. SISA does not own or control this group or its decisions.
  • SISA attempts to have the council representation spread across industries, job roles and locations around the globe.
  • The Advisory Council meets once a quarter to discuss and review the performance of the certification scheme.


SISA monogram in White

SISA welcomes individuals who wish to contribute towards the certification scheme.

Arun Singh

Arun Singh

Introduction: Accomplished IT Leader and Ex-Indian Air Force Officer

Work Experience: 15 years of rich experience in InfoSec domain

Certifications: PMP, CSM, PCI DSS, ISO/IEC 27001:2013, Six Sigma, Data Science and ITIL

Qualifications: Bachelor’s in technology and MBA in Information System and Operations


  • Assistant Director in Network Operations Centre and Data Centre of Indian Air Force.
  • He was involved in setting up Joint Command and Control Centre with Indian Army and Air Force and Infosec Training Centre for Air Warriors.
  • Alumni of MDI Gurugram and IMT Ghaziabad.
Abdul Majied Khan Shahul Hamed

Abdul Majied Khan Shahul Hamed

Introduction: Information Security Consultant

Work Experience: 5 years of experience specializing in SOC Operations and Content development.

Certifications: CISA, ISO 27001 Lead Auditor, CPISI, E|CSA, CCNA-R&S, AZURE SECURITY

Qualifications: Bachelor’s in Computer Science & Engineering


  • Offering information security consulting for one of the leading Banks in UAE
  • Member of Computer Society of India
  • Member of ISACA UAE
Jay Pamu

Jay Pamu

Introduction: Head – Information Security, BFSI CBO

Work Experience: 22 years of professional experience working in IT Infrastructure services

Certifications: ISO 27001:2013 Lead Auditor, COBIT5, Prince2, CPISI

Qualifications: Bachelor’s degree in Electrical and Electronics Engineering


  • Heads Information Security function for banking & insurance domain
  • 10 years in Information Security implementation & governance
Binayak P Gupta

Binayak P Gupta

Introduction: Corporate IT trainer

Work Experience: 18 years of working in IT Education

Certifications: VCP, CEH, CEI, CompTIA Linux+, MTA (Cloud & Security), Cyber Reconnaissance Expert, MCSE

Qualifications: Bachelor’s in Commerce and Cyber Security Degree from EC-Council University


  • Delivered numerous corporate trainings.
  • Build and delivered training content through well known online study platforms such as Wiley India Pvt. Ltd., LetsUpgrade, Eduramp Learning Services Pvt. Ltd., Stripedata Private Limited and many more.
  • Recognized by Tech Edu Portal.
Jai Singh

Jai Singh

Introduction: IT Infra and Security Expert

Work Experience: 25 years of working in IT Infrastructure and security experience


Qualifications: BMaster of Business Administration, Bachelor’s in computer Application


  • Served in the Government Sector of Défense
  • Delivered Security training in various fronts like DR, BCP, PCI DSS and Redundancy of IT devices and so on.
Ameen Uddin

Ameen Uddin

Introduction: Tech Controls & Compliance Analyst

Work Experience: 2 years of professional experience in InfoSec domain

Certifications: ISO/IEC 27001:2013, IRM Global Level 1 Enterprise Risk Management, CPISI Advanced

Qualifications: MBA, Information Technology Business Management, Bachelor of Technology – BTech, Computer Software Engineering


  • Working on PCI DSS implementation project management at a well-known Bank
  • Perform Risk and Control Self-Assessment on various departments of the bank (Information Security Risk in Operations, Applications Controls as per ISO 27001 and ITGC controls, Endpoint Assessment)
Arbdor Churchill

Arbdor Churchill

Introduction: Managing Consultant and Chief Technical Officer

Work Experience: 19 years of industry experience in different aspects of information technology with core focus on Governance, Risk, Compliance and software project management.


  • Lead Cybersecurity Manager certification
  • Certified Information System Auditor
  • Lead Auditor / Implementer Information Security Management System
  • Lead Auditor / Implementer Quality Management System
  • Lead Auditor / Implementer Occupational Health & Safety Management System
  • Lead Auditor / Implementer Business Continuity Management System
  • Lead Implementer Payment Card Industry Data Security Standard v4.0
  • IT Corporate Governance Manager

Qualifications: B.Sc. in Computer Science from Rivers State University of Science & Technology


  • Working on PCI DSS implementation project management at a well-known Bank
  • Perform Risk and Control Self-Assessment on various departments of the bank (Information Security Risk in Operations, Applications Controls as per ISO 27001 and ITGC controls, Endpoint Assessment)
  • Member of Information System Audit and Control Association, holds the prestigious CISA certification
  • Author of Online Security for the Rest of Us: A Humafirewall Guide
  • Devoted most of his career to Information/Cybersecurity, Auditing and ISO management systems certification
  • Seasoned consultant, Trainer and Auditor with extensive experience
Kyaw Thu Soe

Kyaw Thu Soe

Introduction: E-payments project manager at a major bank in Thailand, Experienced Project Manager with a demonstrated history of working in Banking and card and payment financial services domain.

Work Experience: 10 years of professional experience in Payment and Card Industry

Certifications: CPISI Advanced, Scrum Master Certified (SMC)

Qualifications: MBA International Management, JAVA EE, Enterprise Java


  • Successfully finished the PCI-DSS implementation project, POS and ecommerce acquiring for the bank. As well as on the credit card projects and operations in the second largest bank in Myanmar
  • Experience in IT delivery in Banking and Payments product development, consulting and overall management of IT in Banking and Payments Bank company
  • Strong expertise in Payment switch Implementation, System Integration projects, IT operations and Procurement
  • Successfully completed Banks for Payments switch Implementation and developed estimation techniques for large deals
Rushabh Pinesh Mehta

Rushabh Pinesh Mehta

Introduction: Information Security Strategy, Risk and Compliance; and Information Systems Assurance professional

Work Experience: 7.5 years of industry experience working on several IT – GRC, TPRM, IS Audit, Cloud Security, Data Privacy and BCP / IT-DR engagements

Certifications: CISM (Q), CC, ISO 27001:2022 LA, CRisP, NIST CSF v1.1, CSA STAR, ISO 27017:2015, AZ-500, SC-900, AZ-900, OCI Foundations, Alibaba Cloud Security Associate, CDPSE, ISO 27701:2019 LI, OneTrust Privacy Professional, ISO 22301:2019 LA, FQA BCM, FQA BIA, FQA IT-DR, Advanced Program in Cyber Law, Qualys Policy Compliance, CyberArk Trustee, Fortinet NSE 1, ICSI CNSS, MSI Project Management Essentials, Scrum Foundation, Six Sigma Yellow Belt, Six Sigma White Belt

Qualifications: Bachelor of Engineering in Electronics and Communication; and Post Graduate Programme in Information Technology Business Management


  • Featured in ’40 under 40 in Cybersecurity 2023′ Special Edition of Top Cyber News MAGAZINE
  • Bronze level member of ISACA
  • Awarded as Best Student (Academics) in PGP-ITBM (2017-18), SCIT
Kuchal Das

Kuchal Das

Introduction: Cybersecurity Senior Lead

Work Experience: 9 years of industry experience in diverse aspects of the Technology & Information security domain with core focus on Governance, Risk, Compliance, IOT, Cloud, Data Privacy etc.

Certifications: Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), ISO 27001:2013 Lead Auditor, ISO 22301: 2019 BCMS Lead Implementer, Certified Payment Card Industry Security Implementer (CPISI), Cyberark Certified Trustee, SC- 900 Microsoft Security Compliance & Identity, AWS Security Fundamentals, One Trust Privacy Professional, Scrum Foundation, Fortinet NSE 1

Qualifications: Masters in Information Technology (M.Sc-IT)


  • Worked on PCI DSS implementation project management at a level 2 E-commerce entity
  • Represented as part of the Centre of Excellence team of the Corporate GRC Practice unit
Amit Subhanje

Amit Subhanje

Introduction: Seasonal Cyber Risk & Compliance Professional

Work Experience: Experience working on Internal Audits, Information Security, Third-Party Risk Management, Enterprise Risk Management, Cyber Security, Business Continuity Management and Risk & Compliance domains

Certifications: CISA, CISM, CRISC, COBIT5, ISO 27001 LA, ISO 22301 LA, ISO 27701 LA, Lean Six Sigma Black Belt, Lean Six Sigma Green Belt, CyberArk Trustee

Qualifications: Bachelor’s in technology and Master’s in Risk Management


  • Youngest upcoming cybersecurity leader
  • Holds the top prestigious cybersecurity qualifications i.e., CISA, CISM and CRISC
  • Known cybersecurity speaker
  • ISACA Member
  • SISA Champion
Ravi Bhushan

Ravi Bhushan

Introduction: CISO at Wibmo Inc

Work Experience: Over 19 years of working experience in Governance and Risk, Technology and Cyber risks, Programme management, Business processes and controls reviews, Regulatory reporting, Technology infrastructure review, Information Security review, IT Audit and Software engineering.

Certifications: Certified Information Systems Auditor (CISA), Business Simulation certifications (2017), ‘IBM Blockchain Foundation for Developers’ certification (2018) and ‘Cloud Security Basics’ certification from University of Minnesota (2021)

Qualifications: Masters in Computer Applications (MCA), Ravi completed MBA (Executive) from SP Jain School of Global Management, Mumbai in the year 2018


  • Ravi has been a distinguished guest speaker and panelist on various contemporary topics in the industry.
  • Lead Digitization Programme and Strategic Initiatives at a major Bank in India
  • Was the Vice-President, Chief Controls Office focusing on Cyber and Technology risk portfolio
  • Has handled Chief Information Security Officer (CISO) and Head of Technology Controls responsibilities at major bank in Mumbai and was heading the international portfolio of the bank in line with the firm’s Enterprise Risk Management Framework (ERMF) in Pune, India
  • Drove IT Attestation Service line across India, worked on various phases of Software Development Life Cycle in India and US
  • Ravi carries exposure to global business environment and travelled to multiple countries including US, UK, Singapore, China, Hungary, Romania, Mexico, Indonesia, and Zambia
Samih Elbadrawy

Samih Elbadrawy

Introduction: Cyber Security Consultant

Work Experience: 9 years of professional experience in Payment and Card Industry

Certifications: CPISI, CISM, CRISC, CC, CEH Master

Qualifications: Bachelor’s degree in computer science and software Engineering from Arab Academy for Science and Technology and Marine Transport


  • Member of ISACA
  • Participated in many CTF competitions like Cybertalents and Arab Security Conference Wargames
  • Expert in Vulnerability Management Automation
  • Expert on handling Security Solutions like SIEM, DLP, and APT
Pinaki Ranjan Aich

Pinaki Ranjan Aich

Introduction: IT Security, Governance, Risk, Audit & Compliance professional

Work Experience: 7.10 years of industry experience on GRC, Audit, Cloud Security, Data Privacy and specialized audit engagement

Certifications: CPISI, CISA Certified, ISO/IEC 27001 Lead Auditor Certified, EXIN- Privacy and Data Protection Foundation Certified, Certified Payment Card Industry Security Implementer (PCI-DSS), Security Intelligence Engineer – IBM Certified, Security Orchestration, Automation and Response (SOAR)-Resilient -IBM Certified, ITIL V3 Foundation Certified, Prince 2 Agile Practitioner Certified, COBIT 5 Foundation Certified,  CyberArk Certified Trustee version 9.10, Diploma in Cyber Law

Qualifications: B.Tech(CSE) from B.P.U.T and PGDM – IT and System Management(2yr) from NMIMS


  • Planned, developed, and monitored audits related to Internal Audit, Regulatory Audit, Cyber Audit, SOX, ISO 27001, PCI-DSS, SOC1 and SOC2
  • Played a pivotal role in the recruitment, training, and evaluation of Information Security staff, contributing to improved personnel performance and development
  • Develops and applies policies impacting business methods and integrated security restrictions, weighing complex requirements form the business with industry best practices for security
  • Implemented data-driven performance metrics, resulting in a measurable increase in efficiency and productivity within the Information Security team
  • Member of ISACA


Introduction: Security Strategist

Work Experience: 22 years of experience building and leading enterprise security programs in highly regulated industries.

Certifications: CISSP, CISM, CRISC, CISA, Security+

Qualifications: MBA, Bachelors in Computing Security & Technology


  • Led successful Risk Management efforts for key Joint Staff engagements
  • Built world-class Security Operations Center for monitoring cloud platforms
  • Developed Federal and Corporate Incident Response programs and established collaborative partnerships with key local and federal law enforcement partners
  • Successfully planned, managed and led the delivery of multiple secure cloud-based products
Raymund Julag-ay

Raymund Julag-ay

Introduction: Seasoned IT and Information Security Professional

Work Experience: More than 25 years of extensive Global experience in IT, InfoSec, Data Privacy, Business Continuity, Risk and Compliance

Certifications: Certified Information Security Manager (CISM), Certified Payment Card Industry Security Implementer (CPISI), HITRUST Certified Common Security Framework Practitioner (CCSFP), Certified Metaverse Security Consultant (CMSC), Certified Data Protection Officer (DPO)

Qualifications: Bachelor’s Degree in Electronics and Communications Engineering with Post-graduate studies in Executive-MBA (Corporate Change)


  • Appointed as Data Protection Officer for different Data Privacy Regulations in Asia, US and Europe
  • Built a HITRUST Certified Security Operations Center for a Global healthcare company
  • Setup of a Global Network Operations Center covering 150 countries for a major travel organization
  • Migrated technology processes from top US Fortune 500 companies to a Business Process Outsourcing firm
  • Led the assessments and certification of PCI-DSS, HITRUST, SOC 1 and 2, ISO 27001, HIPAA and URAC for several global companies
  • Provided technical guidance for the build-out of World Bank Global Distance Learning in one of the graduate school in Asia
  • Member of ISACA – Silver Level
Nitish Mehta

Nitish Mehta

Introduction:   IT and cybersecurity Audit, Compliance and Risk Professional

Work Experience: 10+ years of experience in IT and security domain in consulting and banking

Certifications: CISA, CISM, ISO 27001 LA, CIPP, COBIT 2019 , CSOX Expert, EY Cybersecurity Badge, CCNA, ITILv4, API security Architect

Qualifications: Bachelor’s of Technology in IT


  • Led various cybersecurity regulatory audits and compliance assessment for banking industry
  • Experienced in IT General controls and application testing at various industry
  • Conducted various IT GRC implementation and Cybersecurity consulting engagements
  • Carried out IT risk assessment and developed relevant processes and reporting global teams
SISA’s Latest
close slider