Skip to main content
Digvijay Singh ChouhanDC
Open to opportunities

Digvijay Singh Chouhan

@digvijaysinghchouhan

GRC and data security leader designing ISO, SOC 2, HIPAA compliance with automation.

India
Message

What I'm looking for

I’m looking to lead scalable GRC and information security programs—owning ISO/SOC/HIPAA compliance, risk and vendor assessments, and using AI automation to reduce manual evidence work in remote-first teams.

I’m a Governance, Risk, and Compliance (GRC) professional with 18+ years of experience helping regulated organizations strengthen information security, compliance, and technology governance. I design and operate compliance programs aligned with ISO 27001, SOC 2, ISO 22301, and HIPAA, with a strong focus on audit readiness and practical control implementation.

In my current role as a Data Security Manager, I lead the organization’s GRC program for an 80-person SaaS business. I coordinate annual surveillance and certification audits, manage evidence collection and remediation tracking, and successfully led the transition from ISO 27001:2013 to ISO 27001:2022, including policy harmonization and an additional transition audit.

I configure and administer Sprinto to automate evidence collection, continuous control monitoring, and compliance workflows, reducing manual audit effort while improving evidence consistency. I develop and maintain 60+ security policies and governance procedures (including user onboarding/offboarding, asset management, and security awareness), run third-party security assessments, and partner with engineering to embed security and compliance into product development and operations. I also establish cloud security governance across Microsoft Azure and AWS with identity and access management, secure provisioning, and security best practices.

Earlier, as a VP – IT Infrastructure & Security, I supported 35+ regulated banking clients through secure infrastructure, cloud governance, SIEM implementation, vulnerability assessments, and penetration testing (VAPT), along with incident escalation and business continuity/disaster recovery readiness. Across my banking career, progressing from IT Manager to AVP – IT, I built governance, audit coordination, and resilience practices for a 46-branch network, and I hold an ISO 27001:2022 Lead Auditor certification.

Experience

Work history, roles, and key accomplishments

XL
Current

Data Security Manager

XpertDox India Pvt. Ltd.

Apr 2023 - Present (3 years 3 months)

Led the organization’s GRC program for an 80-person SaaS company, maintaining compliance with ISO 27001, ISO 22301, SOC 2, and HIPAA while partnering with engineering and business teams to implement and sustain security controls. Coordinated annual surveillance/certification audits, transitioned ISO 27001:2013 to ISO 27001:2022, and administered Sprinto to automate evidence collection and continuo

BL

VP – IT Infrastructure & Security

BSG ITSOFT Pvt. Ltd.

Aug 2020 - Sep 2021 (1 year 1 month)

Supported 35+ regulated banking clients by implementing and maintaining secure infrastructure, cloud governance, and security controls within managed services environments. Strengthened security posture through SIEM implementation, vulnerability assessments, VAPT, and security monitoring, while directing business continuity and disaster recovery planning and serving as an escalation point for inci

AL

Manager – IT

Adarsh Cooperative Bank Ltd.

Jul 2006 - Jul 2020 (14 years)

Progressed from Manager – IT within a 46-branch banking network, helping establish technology governance, information security, and risk management practices aligned with RBI regulatory requirements, ISO 27001 principles, and business continuity objectives. Coordinated internal, external, and regulatory technology audits and supported audit remediation and operational readiness.

AL

AVP – IT

Adarsh Cooperative Bank Ltd.

Jul 2006 - Jul 2020 (14 years)

As AVP – IT across a 46-branch banking network, led infrastructure modernization and secure technology operations while directing disaster recovery and resilience initiatives. Managed enterprise infrastructure and vendors, coordinated audits and compliance readiness, and oversaw governance for IT operations, information security, access management, and vendor/third-party relationships.

Education

Degrees, certifications, and relevant coursework

SE

Sinhgad College of Engineering

Bachelor of Engineering, Computer

Earned a Bachelor of Engineering in Computer from Sinhgad College of Engineering, Pune, graduating in 2004.

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan