Vikas Chowdhary
@vikaschowdhary
Senior GRC and IT Risk leader specializing in security, compliance, and cloud/AI risk management.
CanadaWhat I'm looking for
I am a senior Governance, Risk and Compliance consultant with over 10 years of experience in cyber, information security, and enterprise risk management across major financial institutions. I have led RCSA reviews, IT controls testing, ISO27001 workstreams, and large audit coordination efforts while delivering programs on time and within budget.
My expertise spans SOX, PCI-DSS, SOC 2, NIST CSF, OSFI regulations and multiple regulatory regimes; I have implemented GRC tooling migrations, driven cloud and AI risk assessments, and led teams to improve control effectiveness and remediation tracking. I combine technical knowledge of IAM and privileged access tools with strong program and stakeholder management skills.
I am a motivational leader who mentors teams, manages cross-functional initiatives, and consistently aligns risk, governance and compliance activities with organizational objectives to protect assets and meet regulatory requirements.
Experience
Work history, roles, and key accomplishments
Senior Manager – ITSM
Scotiabank
May 2024 - Oct 2025 (1 year 5 months)
Designed RCSA testing strategies and led cloud and AI risk assessments, audit coordination, and migration to a new GRC tool, improving control effectiveness and executive risk reporting.
RBLed ITSM risk advisory and IT controls testing programs, coordinated OCC auditor engagements, and led privacy impact assessments to ensure cloud and regulatory compliance.
Manager - Tech Risk and Compliance
Canada Life
Jun 2021 - Jul 2023 (2 years 1 month)
Managed end-to-end audit coordination, led ISO 27001 implementation roadmap, and performed technology risk assessments and risk-based IT control testing to strengthen control maturity.
Sr. Risk and Control Analyst
TD Securities
Sep 2017 - Jun 2021 (3 years 9 months)
Performed technology risk assessments, led pRCSA design and IT control testing, and coordinated internal and external audits to remediate issues and improve control effectiveness.
Information Security Governance Analyst
Loblaw Companies Ltd.
Jan 2016 - Sep 2017 (1 year 8 months)
Managed issue remediation and access governance, performed PCI-based risk assessments, and ensured vendor adherence to security policies to protect organizational assets.
LLIT Security Analyst
Loblaw Companies Ltd.
Jul 2013 - Dec 2015 (2 years 5 months)
Administered privileged access via CyberArk and CA LockBox, implemented RBAC, and supported privileged account projects to strengthen identity and access controls.
WIDeveloped and led a team of 10, delivering against operational commitments and driving career development and performance improvements.
Support Engineer
Indus Valley Partners
Jul 2007 - Dec 2008 (1 year 5 months)
Performed UAT and white-box testing for in-house applications and supported Agile development to improve application quality and delivery.
Education
Degrees, certifications, and relevant coursework
DAV Institute of Engineering & Technology
Bachelor of Engineering, Electronics and Communication Engineering
Graduated with a Bachelor of Electronics and Communication Engineering (WES evaluated) focusing on electronics and communication systems.
CCCentennial College
Diploma, Electronics Engineering Technology
Completed an Electronics Engineering Technology diploma emphasizing practical engineering skills and technical competencies.
Availability
Location
CanadaAuthorized to work in
Job categories
Skills
Interested in hiring Vikas?
You can contact Vikas and 90k+ other talented remote workers on Himalayas.
Message VikasFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
