AEMAN SULTAN
Toronto,ON
Summary
Cybersecurity professional with extensive experience in Governance, Risk, and Compliance (GRC), internal audits, ISO implementation, and security analysis. Strong technical foundation with a Bachelor's in Computer Engineering and an MBA in IT Business Management. Skilled in risk management, regulatory compliance, and building effective security frameworks. Holding multiple industry-recognized certifications and committed to continuous learning and growth in cybersecurity domain.
Overview
2
2
years of professional experience
1
1
Certification
Work History
Security Delivery Analyst
Accenture
05.2023 - 06.2024
- Worked as a Governance Risk & Compliance professional in Cloud Security
- Responsible for performing Risk Assessments in AWS cloud environment using NIST controls
- Implementing AWS Security best practices and compliance controls, including encryption, access control, network segmentation and identity management
- Implementation of AWS cloud security, ensuring alignment with ISO 27001 and NIST 800-53 standards
- Mapping the control standards used in cloud security platform (for example- WIZ) with NIST 800-53 Standards
IT Internal Auditor Intern
Johnson Controls
04.2022 - 07.2022
- SoX Testing of IT General Controls: The task was to perform SoX Testing on IT general controls such as Computer operations, Program change, Security and User access
- Evaluating internal control and making recommendations on how to improve the present Control Environment keeping in mind the industry best practices
- Identifying shortfalls or gaps in processes
- Lastly to assess company's IT and/or business processes and Risks
Information Security Consultant Intern
Talentrackr Technologies Pvt. Ltd.
04.2022 - 07.2022
- Policy Creation: Created various policies for the organization like Information Security policy, Password policy, Access Control policy, Mobile device policy and many more to establish an Information Security baseline
- Application and Endpoint Assessment: Making questionnaire for application and endpoint assessment and conducting assessments as per the developed questionnaire
Information Security Analyst Intern
Abir Networks Pvt. Ltd.
03.2022 - 05.2022
- Implementing ISMS ISO 27001:2013: The main objective of this project was to understand the formulation and implementation of policies and procedures in accordance with ISO 27001 for an organization
- Prepare Policy documents, Review Client older version of policy and conducting a thorough gap analysis as per ISO 27001:2013 standard
Education
MBA - Information Security
Symbiosis Centre For Information Technology
Pune04.2023
B.Tech. - Computer Science
Lakshmi Narain College Of Technology & Science
Bhopal07.2021
Class XII - Science
St. Joseph's Convent School
Bhopal05.2017
Class X -
St. Joseph's Convent School
Bhopal05.2015
Skills
- Regulatory and industry standards
- ISO/IEC 27001:2022
- Data Privacy
- NIST 800-53
- PCI DSS, GDPR, HIPPA
- IT Audit
- Risk Analysis
- Risk Assessment
- Cloud Security
- Governance Risk & Compliance
- Security Policies and Procedure
Certification
- ISO/IEC 27001:2022 Lead Auditor
- ISO 27701:2019 Data Privacy
- AWS Solution Architect- Analyst
- AWS Security- Specialty
- Associate Google Cloud Engineer
Extra- Curricular acheivements
- State-level athlete in track running, showcasing discipline, perseverance, and strong time management skills.
- Sports Coordinator at Symbiosis International University.
- Demonstrated leadership, teamwork, and goal-oriented mindset through competitive sports participation.
Timeline
Security Delivery Analyst
Accenture
05.2023 - 06.2024
IT Internal Auditor Intern
Johnson Controls
04.2022 - 07.2022
Information Security Consultant Intern
Talentrackr Technologies Pvt. Ltd.
04.2022 - 07.2022
Information Security Analyst Intern
Abir Networks Pvt. Ltd.
03.2022 - 05.2022
MBA - Information Security
Symbiosis Centre For Information Technology
B.Tech. - Computer Science
Lakshmi Narain College Of Technology & Science
Class XII - Science
St. Joseph's Convent School
Class X -
St. Joseph's Convent School
Similar Profiles
Uttara MerupulaUttara Merupula
Team Leader at AccentureTeam Leader at Accenture
Anchitha K RAnchitha K R
Senior Software Engineer at AccentureSenior Software Engineer at Accenture
PHANI TEJA NALLAMOTHUPHANI TEJA NALLAMOTHU
Senior Manager, Technology Architecture at AccentureSenior Manager, Technology Architecture at Accenture