Nilesh Thakur
@nileshthakur
Senior IT Security GRC and Technology Risk leader with 17.8 years delivering global compliance and TPRM programs.
IndiaWhat I'm looking for
I am a results-driven IT Security GRC and Technology Risk leader with 17.8 years of experience delivering regulatory compliance, third-party risk management, data privacy, and audit remediation programs across US/UK/EU/EMEA regions. I have led large teams and global programs—implementing RSA Archer and ServiceNow GRC, managing SOC2 and Big Four audits, and driving TPRM for major financial services clients.
I specialize in regulatory readiness (GDPR, NYDFS, HIPAA, PCI DSS, NIS2, DORA, EU AI Act), control testing, risk assessments, and stakeholder engagement. I combine governance, process optimization, and hands-on program delivery to reduce exposure, close findings, and build sustainable compliance capabilities.
Experience
Work history, roles, and key accomplishments
Head – Information Security
Paragon South Asia Services Pvt. Ltd.
Apr 2025 - Oct 2025 (6 months)
Led the information security delivery function including GRC, TPRM and Data Privacy; managed audit engagements and control testing, and advised senior management on control adequacy to improve compliance posture.
TLSenior Manager for IT Security GRC and Technology Risk Management across US/EU regions; led GRC implementations (RSA Archer, ServiceNow), audit readiness, regulatory impact analysis and remediation tracking.
IGLed data security and privacy engagements delivering GDPR and global data protection programs; conducted privacy risk assessments, PIA reviews and managed GDPR compliance artifacts for multinational clients.
Technical Lead – IT Risk
BNY Mellon
Oct 2015 - Mar 2018 (2 years 5 months)
Managed global vendor risk management program servicing 3500+ suppliers; led a team of TPRM analysts, transitioned legacy vendor data to Archer, and drove remediation and KPI/KRI reporting to senior management.
Senior IT Security Compliance
Mphasis
Sep 2007 - Oct 2015 (8 years 1 month)
Identified and implemented contractual and certification security controls (ISO 27001, ISAE/SSAE), conducted control testing and audits, and coordinated stakeholder communications to close audit findings.
Education
Degrees, certifications, and relevant coursework
UMUniversity of Madras
Master of Business Administration, Information Security Management
Completed an MBA in Information Security Management through the University of Madras distance education program.
ISISACA
CISA, Information Systems Audit
Certified Information Systems Auditor (CISA) certification awarded by ISACA.
PIProject Management Institute
Professional Development Units (PDUs), Project Management
Holds 35 PDUs toward Project Management Professional (PMP) credential.
Tech stack
Software and tools used professionally
Availability
Location
IndiaAuthorized to work in
Portfolio
linkedin.com/in/nileshthakur241Social media
Job categories
Interested in hiring Nilesh?
You can contact Nilesh and 90k+ other talented remote workers on Himalayas.
Message NileshFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
