Summary
Overview
Work History
Education
Skills
Certification
HONOR & AWARDS
Timeline
background-images

Subha Ranjani Parandaman

California,CA

Summary

Cyber Risk, Governance, Risk & Compliance (GRC) professional with 9+ years of experience delivering IT audit, cyber security, and regulatory compliance services within large global professional services and managed services environments. Proven track record in risk assessments, control testing, audit readiness, compliance program development, and client-facing advisory support across SOX, PCI DSS, ISO 27001, ISAE, and IT General Controls. Experienced in leading offshore teams, coordinating with 1st Line stakeholders, supporting external audits, and translating complex risk and control data into executive-ready reporting. Strong expertise in aligning IT risk frameworks with NIST, ISO, COBIT, and ITIL best practices.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Team Lead (Audit & Compliance Team)

Kyndryl India Pvt. Ltd
09.2021 - 04.2023
  • Provided strategic oversight of IT risk, audit, and compliance activities supporting global managed services clients, ensuring alignment with internal governance standards and regulatory expectations.
  • Led end-to-end execution of SOX, ISAE, PCI DSS, and IT audit engagements, including planning, control testing, issue identification, remediation tracking, and executive reporting.
  • Maintained and updated risk registers, performed periodic risk assessments, and supported mitigation planning to address high-risk control gaps and root causes.
  • Acted as a primary point of contact for incident and breach coordination, working closely with business units, security teams, and leadership to ensure timely resolution and documentation.
  • Oversaw offshore audit and compliance resources, ensuring adherence to delivery timelines, quality standards, and managed services SLAs.
  • Developed audit reports, dashboards, and governance materials for senior management, translating technical findings into clear business impact narratives.
  • Demonstrated strong leadership by coaching team members, managing performance, and supporting professional development.

Team Lead (Audit & Compliance Team)

IBM India Pvt. Ltd - Project: Informa
09.2018 - 09.2021
  • Directed a cyber security audit and risk assessment program, identifying control weaknesses, security vulnerabilities, and compliance gaps across enterprise systems.
  • Performed independent risk assessments and evaluated the effectiveness of IT and information security controls aligned with ISO 27001 and NIST principles.
  • Led the issue management lifecycle, including documentation of findings, ownership assignment, remediation tracking, and validation of closure.
  • Authored security incident and risk reports for client leadership, highlighting trends, residual risks, and recommended corrective actions.
  • Supported client audit activities by coordinating evidence requests, facilitating audit fieldwork, and responding to external auditor inquiries.
  • Designed and delivered security awareness and training sessions to enhance organizational understanding of information security policies and controls.

Subject Matter Expert (Audit & Compliance Team)

IBM India Pvt. Ltd - Project: Henkel, WPP, Qantas, Musgrave, Delhaize, Capita Ohio, SPGI
12.2016 - 09.2018
  • Conducted enterprise-wide IT risk assessments, evaluating governance structures, policies, procedures, and technology platforms.
  • Performed periodic audits of ITSM processes (incident, problem, change, configuration, and release management) to ensure service quality and control effectiveness.
  • Supported IT Business Continuity and Disaster Recovery (BCDR) planning, testing, and resilience assessments.
  • Assisted in developing IT General Control (ITGC) and application control audit programs, scopes, and testing procedures.
  • Reviewed logical and physical access controls, identifying deficiencies and supporting remediation planning.

Audit and Compliance Focal (Audit & Compliance Team)

IBM India Pvt. Ltd - Project: Henkel, NBFG, Capita Ohio
01.2015 - 12.2016
  • Led detailed risk assessments, control testing, and UAT support for application and infrastructure changes, including go-live readiness.
  • Maintained project-level risk logs, mitigation plans, and status reporting for governance and steering committees.
  • Evaluated enterprise information security strategies, standards, and compliance with internal and external requirements.
  • Supported audit readiness initiatives and compliance reporting for global clients.

Software Engineer

INFOSYS India Pvt. Ltd
10.2013 - 06.2014
  • Designed and implemented scalable applications, collaborating with cross-functional teams to support secure and compliant technology solutions.
  • Worked closely with project managers and QA teams to resolve technical and operational issues.

Education

Bachelors in Engineering - Information Technology

Anna University
Chennai
01.2013

Skills

  • Governance, Risk & Compliance (GRC)
  • IT Risk & Control Frameworks (NIST, ISO 27001, COBIT, ITIL)
  • SOX, PCI DSS, ISAE 3402, IT General Controls
  • Risk Assessments & Risk Register Management
  • Control Design, Testing & Deficiency Management
  • Audit Readiness & Regulatory Compliance
  • KPI / KRI Development & Risk Reporting
  • Incident Management & Root Cause Analysis
  • Business Continuity & Disaster Recovery (BCDR)
  • Offshore Team Leadership & Managed Services Delivery
  • Client & Stakeholder Management

Certification

ISO 27001:2013 Lead Auditor , CCSK

HONOR & AWARDS

IBM|Hall of Fame Award – 2017,2018,2020., IBM|Special Award IBM | Recognition for registering maximum implementable solution for optimizing new IAM tool and internal compliance automation., AUDIT | Service Excellent Achievement Award for handling ISAE3402, ISAE,KPMG.

Timeline

Team Lead (Audit & Compliance Team)

Kyndryl India Pvt. Ltd
09.2021 - 04.2023

Team Lead (Audit & Compliance Team)

IBM India Pvt. Ltd - Project: Informa
09.2018 - 09.2021

Subject Matter Expert (Audit & Compliance Team)

IBM India Pvt. Ltd - Project: Henkel, WPP, Qantas, Musgrave, Delhaize, Capita Ohio, SPGI
12.2016 - 09.2018

Audit and Compliance Focal (Audit & Compliance Team)

IBM India Pvt. Ltd - Project: Henkel, NBFG, Capita Ohio
01.2015 - 12.2016

Software Engineer

INFOSYS India Pvt. Ltd
10.2013 - 06.2014

Bachelors in Engineering - Information Technology

Anna University

Similar Profiles

  • Akhila ShilpaAkhila Shilpa

    Senior Project Manager at IBM India Pvt Ltd/ Kyndryl India Pvt LtdSenior Project Manager at IBM India Pvt Ltd/ Kyndryl India Pvt Ltd

  • Varun AbrahamVarun Abraham

    Senior AppDynamics and Ansible Administrator at Kyndryl India Pvt. LtdSenior AppDynamics and Ansible Administrator at Kyndryl India Pvt. Ltd

  • Shruti PaintalShruti Paintal

    SERVICE INTERGRATION MANAGER at Kyndryl India Pvt Ltd and IBM India Pvt LTDSERVICE INTERGRATION MANAGER at Kyndryl India Pvt Ltd and IBM India Pvt LTD

  • Jan NofuenteJan Nofuente

    RN Clinical Manager at Health Link Home Health AgencyRN Clinical Manager at Health Link Home Health Agency

  • Christopher SladicChristopher Sladic

    Course Supervisor at Surface Combat Systems Training Command San DiegoCourse Supervisor at Surface Combat Systems Training Command San Diego

CREATE PROFILE
Subha Ranjani Parandaman