Suraj Kumar S.
Abu Dhabi, United Arab Emirates
Manager in Information Security - policy writer, CISM,CRISC,CISA,CISSP
$60.00/hr
Cyber Security Professional Certified on CISSP-ISSAP, ISSMP, CCSP, CSSLP, CCISO, CISM, CISA, CRISC, CGEIT, CIPM, CIPT, CDPSE, TOGAF, CEH, ECSA, ACSE, MCITP, RHCE, ISO 27001:2013, FSCA, CSSA, CompTia CySA+, Security+ Able to handle and Support any cyber security requirement exclusively on GRC, Strategy, RoadMap, Documentations etc.
Always open to discussion.
I have specialized in information and cybersecurity policy writing, IT security risk, IT audit and compliance with 14 years of experience, and proven ISO 27001 Lead Implementation practice. I can help organizations with ISO 27001, SOC 2, or other compliance framework preparation, implementation, creating and updating policies, and procedures.
If your company need to update its policies and procedures or need to create new ones for:
- a due diligence process/RFP security questioner,
- you want to be compliant for regulatory reasons (PCI-DSS, GDPR, CCPA)
- you are aiming at security certification (ISO 27001, SOC 2, HITURST CSF, HIPAA IRAP, FEDRAM, GDPR),
- you just would like to level up your maturity in the security domain - simply just would like to consult and get informed of security best practices and need professional advice.
Please don't hesitate to contact me! My knowledge, experience, and skill can help you to achieve your goal and succeed! Please click on the "Invite to Job" button, and let's talk!
Over 14 years, I gained knowledge on both sides of the table: Governance, Risk, and Compliance (GRC) and security operation, implementation, engineering.
My skills in Information (IT) and Cybersecurity includes:
- Information Security Policies based on NIST guidelines or ISO 27001 including Incident Response Plan, Acceptable Use, Encryption Policy, Risk management, Audit logging and monitoring policy, User account and access management, Asset management, Data Classification, Change Management, Vulnerability and patch management, Asset Disposal, Third-party Management, Security Configuration, and many more.
- Business Continuity Planning and Disaster Recovery Planning (BCP, DRP)
- investigating cyber and information security incidents,
- Policy reviews, GAP analysis,
- IT audit
- Risk assessment,
- Evaluation of operation/technology/procedure against current industry best practices or regulatory requirements.
- Information security awareness training and training material
- Compliance specific training (GDPR, SOC2, NIST. RISK management)
I have the following certifications: CISM, CISSP, CISA, PMP (project management), Microsoft, Azure, EC Council, Forescout, Checkpoint, Soniwall, Attivo Networks, RedHat, etc.
I'm familiar (I'm actively working with them on a day to day basis) with the following compliance and security frameworks: ISO 27001, SOC 2 TSC, NIST CSF, GDPR, NIST 800-53, ISF SoGP, SANS, HIPPA, HITECH. HITRUST CSF, PCI-DSS
You can keep ease of mind after we have agreed on the tasks, with more than 14 years of security industry experience independent operation is guaranteed. All the work is completed by myself; therefore focus and attention to your project are guaranteed.
Work history
SOC success criteria
Sep 26, 2022
-
Sep 26, 2022
Private earnings
Framework for Information Security Management System
Nov 23, 2021
-
Jan 27, 2022
"Is was great working with Suraj. He is very knowledgeable and professional, always committed to meet the deadlines and anticipates ahead of time in case of problems. I would definitively…
Private earnings
Fix email configuration on hostinger
Jan 12, 2016
-
Jan 14, 2016
"Suraj did whatever he could to find out the root cause of the issue . In the end we found the issue with the hosting provider."
Private earnings
Freelancers wanted for Agency
Nov 20, 2013
-
Mar 26, 2015
Private earnings
Javascript sidebar problem
Apr 22, 2014
-
Apr 22, 2014
"very kind, communicative and competent. great! thanks suraj"
Private earnings
Perform Network Solutions And Document Tasks - Written Report
Oct 4, 2013
-
Oct 10, 2013
This feedback has been removed
Private earnings
VPS Server set up and administration
Feb 4, 2013
-
Feb 7, 2013
"Excellent set up of server as per specifications. Suraj's communication is top-notch and I highly recommend his services. His knowledge of cPanel, WHM, server set up and security is extensive."
Private earnings
Make my online software SECURE
Feb 2, 2013
-
Feb 5, 2013
"Excellent communication and his work was completed quickly and thoroughly"
Private earnings
Suraj Kumar S. has more jobs. Create an account to review them
Skills
- Cybersecurity Management
- Information Security Consultation
- Vulnerability Assessment
- Database Security
- Security Analysis
- Company Policy
- Web App Penetration Testing
- Policy Development
- Policy Writing
- ISO 27001
- Procedure Development