Areas of specialization
- Certified Information System Auditor (CISA)
- Certified Data Privacy Security Engineer (CDPSE)
Karan Pandya is Working on Nangia Andersen LLP. He is a Certified Information System Auditor (CISA) and Certified Data Privacy Security Engineer (CDPSE) with 7 years of experience in executing and leading projects in Information Security, IT Risk & Governance and Cyber Security domains across Banking, Manufacturing, Media, Automobile, Pharmaceutical, Telecom and other industries.
Through his professional career, he has demonstrated the ability to work and perform in fast-paced business environments, with great communication, interpersonal and leadership skills
He has led and executed projects like Information Security audits, ISO 27001:2013 implementation, readiness and compliance, design of security policy & procedures, Business Continuity Planning, Disaster Recovery, Business Impact Analysis, Business Process Reviews, SSAE 18 and SOC 2 type 2 audits for across the banking and IT service domains, gap assessment against, NIST CSF, NIST 800-53, COBIT, PCI DSS, ISO 27001/27002:2013, ISO 27701:2019, RBI Cyber security framework, Vendor & Third – Party Risk assessments, and Data & Revenue Assurance.
In addition to handling engagements across India, he has also supported engagements across the Middle-East, Sri Lanka, Bangladesh, Nepal and North America.