Ramsha Qureshi
@ramshaqureshi
Information Security Analyst specializing in ISO 27001 and third-party risk management through strong GRC execution.
IndiaWhat I'm looking for
I’m an Information Security Analyst focused on turning governance, risk, and compliance into practical security improvements. I help organizations strengthen their resilience by aligning security work with ISO 27001 and global security frameworks, while keeping assessments clear, traceable, and actionable.
At De Lage Landen, I conduct comprehensive supplier and outsourcing risk assessments using OneTrust. I evaluate vendors against regulatory, data privacy, information security, and internal policy requirements, document findings and mitigation plans in OneTrust, and support ongoing risk monitoring, compliance reporting, and governance reviews.
Previously at EY, I reviewed complex environments to identify risks and vulnerabilities and supported PCI DSS compliance through cardholder data flow analysis and evidence collection. I also performed PCI DSS audits for iQor and coordinated PMO efforts at HCL, including spear phishing risk assessment and security awareness programs—building a strong audit and assessment mindset alongside my CRISC (in progress) and ISO 27001:2022 lead training.
Experience
Work history, roles, and key accomplishments
Conducting supplier and outsourcing risk assessments in OneTrust, evaluating vendor compliance with regulatory, privacy, information security, and internal policy requirements. Partnering with Procurement, Legal, and Information Security to standardise governance practices and document findings, mitigation plans, and ongoing monitoring for third-party risk posture.
Performed PCI DSS assessments by analysing cardholder data flows across business and application layers to identify risks and ensure compliance. Collected and validated compliance evidence, produced audit reports and control documentation, and advised clients on PCI DSS best practices to support certification readiness.
Mentor, WhiteHatJr
WhiteHatJr
Delivered interactive coding lessons, providing individual support to help students complete coding challenges and projects. Tracked student progress, followed the provided curriculum, and communicated updates to parents while staying current with coding trends to improve outcomes.
PCI DSS Audit (iQor)
iQor
Evaluated systems, processes, and controls against PCI DSS requirements to identify gaps and non-compliance. Reviewed documentation evidence, assessed vulnerabilities affecting cardholder data, and prepared audit reports with remediation recommendations for continuous improvement.
PMO (Project & Security)
Coordinated PMO planning, execution, and monitoring to support alignment with organisational goals and timely project delivery. Identified project risks including spear phishing threats, supported stakeholder reporting on risks and security incidents, and helped implement security awareness programs to reduce phishing risk.
Education
Degrees, certifications, and relevant coursework
Barakatullah University
Bachelor of Computer Applications, Computer Applications
Completed a Bachelor of Computer Application program at Barakatullah University, Bhopal.
St. Montfort School, CBSE
Higher Secondary (CBSE), Higher Secondary Education
Completed Higher Secondary education under the CBSE curriculum at St. Montfort School in Bhopal.
Availability
Location
IndiaAuthorized to work in
Job categories
Skills
Interested in hiring Ramsha?
You can contact Ramsha and 90k+ other talented remote workers on Himalayas.
Message RamshaFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
