@zeshanahmad
AI Governance & Cloud Security Risk Specialist | ISO 42001 | GenAI Risk Assessments | GRC Automation | SOC 2 & ISO 27001 | CISM, CISA
IndiaI am looking for remote opportunities in AI Governance, Responsible AI, Cloud Security Risk, and GRC Automation.
Interested in roles involving AI risk assessments (ISO 42001, NIST AI RMF), multi-cloud compliance (AWS, GCP, Azure), SOC 2 & ISO 27001 programs, and automation-led controls.
Open to Senior Specialist or Manager-level positions with flexible time zones.
Results-driven GRC and AI Governance professional with 7+ years of experience in cloud security risk, regulatory compliance, and automation-led controls.
Currently at Cisco (Splunk), I lead AI and cloud risk assessments aligned to ISO 42001, NIST AI RMF, SOC 2, and ISO 27001. I specialize in replacing manual processes with automation (AWS SSM, CSPM, Splunk, Jira) and have strong expertise in vendor risk management and audit readiness from Deloitte and TIAA.
Passionate about enabling responsible AI adoption while maintaining strong security posture. Actively seeking remote opportunities in AI Governance, Responsible AI Risk, and Cloud GRC roles.
Work history, roles, and key accomplishments
Cisco
Sep 2023 - Present (2 years 9 months)
Led AI and cloud security governance for Splunk Cloud, Observability, AppDynamics, and SOAR, aligning control work to ISO 27001/17/18, SOC 2, and ISO 42001 requirements. Built ISO workpapers, introduced vendor risk treatment workflows, and applied CSPM across AWS/GCP/Azure to surface configuration and compliance gaps.
Splunk
Sep 2023 - Oct 2024 (1 year 1 month)
Served as a trusted risk advisor across Splunk and expanded risk advisory coverage to AppDynamics and Splunk SOAR following Splunk’s acquisition consolidation under Cisco. Supported enterprise security governance activities focused on measurable control evidence and consistent risk visibility.
TIAA
Feb 2023 - Sep 2023 (7 months)
Strengthened information security governance for off-network subsidiaries by improving compliance with NIST CSF and CIS Critical Security Controls, and using CMMI to assess maturity. Implemented SSPM/CSPM/EDR controls, executed penetration tests and remediation validation, and built four real-time dashboards for third-party risk management visibility.
TIAA
Apr 2021 - Feb 2023 (1 year 10 months)
Enhanced third-party risk management through continuous improvement, including optimizing questionnaires and aligning controls to established requirements. Conducted peer QA reviews for MSP workpapers, defined security baselines, and supported awareness through threat intelligence podcasts and phishing demos.
Deloitte
Jul 2020 - Mar 2021 (8 months)
Orchestrated project delivery for Fortune 100 assessments within defined SLAs, implementing accurate reporting and handling escalations. Produced assessment quality outputs including a security annexure for a B2B application and aligned controls with EU requirements under ISO 27001 and ISO 27799.
Deloitte
Jul 2019 - Jul 2020 (1 year)
Managed assessment schedules by aggregating/cleaning data, following up with business units and third parties, and producing daily/weekly/monthly dashboards. Coordinated multi-domain assessors, ensured TPRM tool design requirements were met, and ran UAT for each tool change.
Deloitte
Jul 2018 - Jul 2019 (1 year)
Conducted vendor assessments for Fortune 500 clients across information security, data privacy, and anti-corruption/anti-bribery domains. Designed and implemented a third-party risk management program and facilitated onsite workshops to transition operations to the client’s internal teams.
Degrees, certifications, and relevant coursework
Master of Business Administration, Business Analytics
2023 - 2025
Master of Business Administration (MBA) with a focus on Business Analytics from Liverpool Business School.
Bachelor of Technology, Mechanical Engineering
2014 - 2018
Bachelor of Technology (B.Tech.) in Mechanical Engineering from Kalinga Institute of Industrial Technology.
Software and tools used professionally
IndiaYou can contact Zeshan and 90k+ other talented remote workers on Himalayas.
Message ZeshanSign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
For job seekers
Create your profileBrowse remote jobsDiscover remote companiesJob description keyword finderRemote work adviceCareer guidesJob application trackerAI resume builderResume examples and templatesAI cover letter generatorCover letter examplesAI headshot generatorAI interview prepInterview questions and answersAI interview answer generatorAI career coachFree resume builderResume summary generatorResume bullet points generatorResume skills section generatorRemote jobs RSSRemote jobs widgetCommunity rewardsJoin the remote work revolution
Himalayas is the best remote job board. Join over 250,000+ job seekers finding remote jobs at top companies worldwide.
Aman Arora
Manager: Cyber Security, Risk Advisory, PwC AC (Kolkata) Private Ltd.
Nayna Gupta
Assistant Vice President, Deutsche Bank Group (DIPL)
Nilesh Thakur
Head – Information Security, Paragon South Asia Services Pvt. Ltd.
Prakash Battala
Senior Technical Manager, Infobahn Softworld
chandu sai
Sr Data Protection and Risk Consultant, HanesBrand Inc, Wipro
Balaji Venkatesh
Enterprise Security GRC Specialist, Purchasing Power
Rabinarayan Behera
Assistant Vice President, State Street India
Gajendra SIngh
Security Consultant, Accenture
Daman Daman
Deputy Manager, Protiviti
Sameer Gupta
Team Lead, TPRM, MetLife
