Skip to main content
SS
Open to opportunities

Shradha SAWANT

@shradhasawant

IT risk, GRC, and compliance professional driving ISO 27001-aligned security and audit outcomes.

India
Message

What I'm looking for

I’m looking for a role where I can own IT risk and GRC delivery—driving ISO 27001/NIST-aligned compliance, leading audit evidence and remediation, and partnering with stakeholders on IAM, controls testing, and business continuity/DR improvements.

I’m an IT risk, GRC, and compliance professional focused on turning security requirements into audit-ready evidence and practical control improvements. My work spans ISO 27001, ISO 31000, NIST, BCMS, ISMS, ITGC, GDPR, and SOX, with hands-on support for cybersecurity audits, risk assessments, controls testing, and business continuity planning. I’m especially effective at stakeholder management, documentation, and ensuring policy compliance across frameworks.

At Tech Mahindra, I’ve performed system criticality and risk assessments to support enterprise risk management and business continuity planning (BCP). I developed and maintained disaster recovery (DR) plans to meet regulatory and client requirements, and I implemented IAM access control policies aligned with organizational security standards. I also conducted application risk assessments and vulnerability analysis to identify control gaps, supported internal and external audits (including ITGC and cybersecurity audits) with evidence and remediation tracking, led client-facing GRC discussions, and achieved 95%+ SLA compliance delivering audit and risk documentation outputs.

Previously, as Lead IT Compliance and Governance at STL Digital, I coordinated audits for BCMS, ISMS, ITGC, and cybersecurity, building evidence collections and running gap analysis. I performed risk assessments and control testing aligned with ISO 27001 and supported third-party audit readiness with remediation tracking and policy compliance improvements. I also spearheaded a lab workflow tool that improved operational efficiency by 40%, and I hold an ISO 27001 Lead Auditor certification.

Experience

Work history, roles, and key accomplishments

Tech Mahindra logoTM
Current

Security Analyst

Jan 2025 - Present (1 year 6 months)

Performed system criticality and risk assessments to support enterprise risk management and business continuity planning, and ensured compliance with ISO 27001 and NIST. Supported ITGC and cybersecurity audits by providing evidence and remediation tracking, and delivered 95%+ SLA compliance for audit and risk documentation outputs.

Education

Degrees, certifications, and relevant coursework

GE

Goa College of Engineering

Bachelor of Engineering, Information Technology

2018 - 2022

Earned a Bachelor of Engineering in Information Technology from Goa College of Engineering from 2018 to 2022.

Tech stack

Software and tools used professionally

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan