Aman Arora
@amanarora1
Experienced Information Security Manager with a focus on risk management.
What I'm looking for
I am an ambitious Information Security Manager with over 17 years of experience in the field, specializing in risk management, compliance, and auditing. My current role at PricewaterhouseCoopers (PwC) involves managing a third-party risk management program for a global technology client, where I conduct ISO-based audits and support remediation plans. I am passionate about enhancing security measures and aligning them with organizational goals.
Throughout my career, I have successfully conducted security assessments across various sectors, ensuring compliance with regulatory requirements such as ISO 27001:2013 and NIST CSF. My previous experience at HCL Technologies and Wipro has equipped me with a robust understanding of security frameworks and the ability to identify and mitigate risks effectively. I have a proven track record of delivering comprehensive reports and recommendations to clients, helping them strengthen their security posture.
Experience
Work history, roles, and key accomplishments
Manager: Cyber Security, Risk Advisory
PwC AC (Kolkata) Private Ltd.
May 2022 - Present (3 years 2 months)
Currently managing a third-party risk management program for a global technology client, including cloud vendor assessments and ISO-based audits. Supporting PwC UK
's internal audit function by performing various cybersecurity and security improvement audits for U.K.-based clients.
Manager: Delivery Compliance Office
HCL Technologies Limited
Apr 2021 - Apr 2022 (1 year)
Performed and managed security compliance assessments for diverse clients, playing a significant role in the 'second line of defense' for risk and compliance. Conducted security testing of IT/IS controls based on the ISO27K1 framework and evaluated client contractual review services.
Technical Lead: ITRO
Wipro Limited
Jan 2019 - Apr 2021 (2 years 3 months)
Supported client accounts with various compliance activities for IT environments and risk assessments at distinct functional levels. Managed VA compliance, Infra Server Hardening, Patch compliance, SOC compliance, and handled complete Security Exception management.
Managed Third-Party Risk Management frameworks for pharmaceutical, automobile, and oil and gas industries, including risk categorization, detailed due diligence, and red flag reporting. Monitored and measured vendor health, managed assessment status reports, and ensured SLA adherence.
Designed, tested, and performed 3D modeling and drafting of structural parts for various aircraft of different OEM companies. Analyzed and fixed control points to avoid product failure and identified deviations as part of the analysis phase.
Education
Degrees, certifications, and relevant coursework
Unknown
MBA/ EPGDM, International Business
Grade: 75%
Completed a Master of Business Administration with a focus on International Business, achieving an aggregate of 75%. This program enhanced my understanding of global business strategies and operations.
Unknown
B.E., Mechanical Engineering
Grade: 67%
Earned a Bachelor of Engineering in Mechanical Engineering, with an aggregate of 67%. This degree provided a strong foundation in mechanical principles and engineering practices.
Unknown
XII, Non-Medical
Grade: 67%
Completed CBSE XII in the Non-Medical stream, achieving an aggregate of 67%. This included studies in subjects relevant to a science background.
Tech stack
Software and tools used professionally
Availability
Location
Authorized to work in
Job categories
Interested in hiring Aman?
You can contact Aman and 90k+ other talented remote workers on Himalayas.
Message AmanFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
