Open to opportunities

Mayur Rathod

@mayurrathod

Senior Trust Services Analyst and GRC professional, leading SOC 2/ISO 27001 audits with automation, security ops depth, and client-ready delivery.

India

Message

What I'm looking for

I’m looking for a role where I can own SOC 2/ISO readiness end-to-end, scale compliance through automation, guide audit readiness across frameworks (SOC 2/ISO/GDPR/HIPAA), and collaborate with security, legal, and leadership while mentoring teams.

I’m a GRC professional with 2+ years of experience leading SOC 2 (Type I & II), ISO 27001, and TPRM programs across SaaS, fintech, and enterprise environments. I combine hands-on security operations background—SIEM, incident response, and KQL—with end-to-end ownership of compliance audits and vendor risk reviews.

In my current role as a Senior Trust Services Analyst at Workstreet, I manage trust services for 25+ enterprise clients, owning security questionnaire responses, SOC 2/ISO evidence packages, and ongoing TPRM workflows across multiple time zones. I also designed Zapier-based automation (Slack + Jira ticketing) to eliminate manual triage, improve response SLAs, and increase team throughput.

Previously at Infopercept Consulting, I led IT General Controls and application control audits, ran SOC 2 readiness gap assessments, and supported ISO 27001 and GDPR reviews—delivering evidence-based remediation plans and reducing audit findings by 40%. I’ve also conducted SIEM monitoring across 50+ environments and led mitigation of a large-scale DDoS incident while sustaining 99.9% service uptime.

Experience

Work history, roles, and key accomplishments

Current

Senior Trust Services Analyst

Current

Workstreet

Jan 2026 - Present (5 months)

Own end-to-end trust services delivery for 25+ enterprise clients, including SOC 2/ISO 27001 evidence packages and ongoing TPRM workflows across time zones. Built Zapier automation to convert client requests into Jira tickets, eliminating manual triage and improving response SLAs while leading a team of 4 analysts.

ISO 27001 Zapier Jira Team Leadership

Senior GRC Consultant

Infopercept Consulting Pvt Ltd

Aug 2025 - Jan 2026 (5 months)

Led IT General Controls (ITGC) and application control audits across 15+ applications, performing SOC 2 Type I/II testing and readiness gap analyses and achieving 95% control implementation within audit timelines. Reduced audit findings by 40% and achieved zero critical exceptions during external reviews through coordinated evidence collection, control testing, and remediation tracking.

IT General Controls SOC II ISO 27001 GDPR Compliance KSA PDPL

Security Analyst

Infopercept Consulting Pvt Ltd

Oct 2024 - Aug 2025 (10 months)

Monitored security controls across 50+ client environments using SIEM tools, documenting control effectiveness and providing SOC 2/ISO 27001 audit evidence while reducing incident response time by 35%. Developed 50+ Microsoft Sentinel detection rules/KQL queries and led DDoS incident mitigation using Datadog logs to sustain 99.9% service uptime.

SIEM Wazuh Incident Response DDoS Analysis Security Logging

Independent GRC Consultant

May 2023 - Aug 2024 (1 year 3 months)

Conducted vendor risk assessments for 8+ SMB clients across fintech and healthcare, evaluating third-party controls against SOC 2, ISO 27001, and GDPR requirements. Delivered SOC 2 readiness gap assessments for 3 SaaS startups and developed TPRM frameworks and vendor templates that improved audit readiness scores by 60% on average.

Vendor Assessment ISO 27001 Security Questionnaires Risk Scoring Compliance Advisory