๐Ÿšจ SECURITY ALERT ๐Ÿšจ

Unauthorized access attempt detected!

Please respect the security measures.

โœ… Message Sent Successfully!

Your message has been delivered.

Thank you for reaching out.

> Specializing in Governance, Risk & Compliance (GRC), ISO 27001 audit management, and ISMS implementation across regulated environments.
> Experienced in coordinating compliance programmes, managing audit evidence, conducting risk assessments, and supporting audit readiness initiatives.
> Technical background in Vulnerability Assessment & Penetration Testing (VAPT), including web and network security assessments, remediation support, and security reporting.
> Focused on aligning cybersecurity operations, compliance governance, and strategic project execution to strengthen organizational security posture.
joshikathan11@gmail.com
kathan-joshi
   +91 99782 44288
> about
> skills
> experience
> certifications
> contact
> professional_mode

> about_me

> I am a GRC Consultant and Cybersecurity Analyst with hands-on experience in ISO 27001 implementation, audit coordination, ISMS operations, and cybersecurity project delivery across regulated industries.

> My professional background combines governance, risk, and compliance (GRC) expertise with technical cybersecurity practices including Vulnerability Assessment & Penetration Testing (VAPT), risk analysis, and security operations.

> I have worked with cross-functional teams to support audit readiness, evidence management, compliance programmes, corrective action tracking, and security governance initiatives aligned with international standards and industry best practices.

> In technical engagements, I conduct web and network security assessments using both manual methodologies and industry-recognized tools to identify vulnerabilities, strengthen security posture, and support remediation efforts.

> My focus extends beyond technical execution โ€” I aim to align cybersecurity operations, compliance governance, and strategic project coordination to help organizations build resilient and audit-ready security environments.

> As I continue progressing in cybersecurity and GRC consulting, I remain committed to continuous learning, security research, and delivering structured security solutions that support both business objectives and regulatory compliance.

> skills_expertise

๐Ÿ” Cybersecurity Skills

  • Network Vulnerability Assessment and Penetration Testing (VAPT)
  • Web Vulnerability Assessment and Penetration Testing (VAPT)
  • Phishing Simulation Exercises
  • Cybersecurity Audits & Compliance (UCB, NHB Standards)
  • ISO 27001 Implementation & ISMS Framework Design
  • Cloud Security Assessment
  • Firewall Assessments
  • Endpoint Security Assessment
  • Fundamental Active Directory (AD) Security Understanding
  • Risk Assessment, Gap Analysis & Mitigation Strategy Planning
  • Cybersecurity Awareness Training for Employees

๐Ÿ“ Project Management & Coordination

  • Full Project Lifecycle Management (Planning to Delivery)
  • Task Prioritization, Scheduling, and Resource Allocation
  • Stakeholder Communication and Coordination
  • Technical Implementation Oversight (Patching, Network Upgrades, Security Rollouts)
  • Documentation, Reporting & Audit Readiness
  • Quality and Timely Service Delivery

๐Ÿ’ผ Personal Skills

  • Strategic Thinking & Risk-Based Decision Making
  • Project Planning & Time Management
  • Research & Technical Reporting
  • Presentation & Communication Skills
  • Business Communication & Email Etiquette
  • Leadership Potential & Team Collaboration
  • Agility in Fast-Paced Environments
  • Proactive Learning and Continuous Development

> professional_experience

Consultant — GRC
Infopercept · Ahmedabad, India
Feb 2026 – Present

    Managing compliance audit programmes for multiple client organisations across financial services and technology sectors. Primary responsibilities span ISO 27001, CISA and AUA/KUA audit delivery, evidence management, and certification readiness coordination.

  • Coordinating ISO 27001 audit lifecycle — scoping, evidence collection, findings documentation, corrective action tracking and closure.
  • Facilitating CISA and AUA/KUA audits, ensuring clients meet statutory and regulatory compliance obligations within required timelines.
  • Managing internal audit programmes, including audit scheduling, evidence review and management reporting across multiple clients simultaneously.
  • Conducting pre-audit gap assessments to identify control weaknesses, reducing formal audit non-conformities before assessment.
  • Producing audit documentation, evidence packs and compliance reports aligned with international audit standards.
Associate Consultant — GRC
Anzen Technologies Pvt. Ltd. · Mumbai, India
Jul 2025 – Jan 2026

    Embedded with a financial services client to support their internal audit programme. Responsible for audit cycle coordination, evidence management and pre-audit preparation across monthly, quarterly and semi-annual review cycles.

  • Coordinated internal audit cycles at monthly, quarterly and semi-annual cadence within a complex financial services regulatory environment.
  • Managed evidence collection and validation aligned with Internal Audit Standards (IAS) — ensuring audit-ready documentation ahead of each review cycle.
  • Performed pre-audit control checks, identifying gaps and coordinating corrective actions before formal engagements commenced.
  • Worked directly with cross-functional stakeholders to streamline audit workflows and reduce time-to-closure on open findings.
Cybersecurity Analyst & Project Coordinator
Cyber Octet Pvt. Ltd. · India
Apr 2024 – Jul 2025

    Client-facing role covering VAPT assessments, ISO 27001 audit support, and GRC programme delivery across concurrent client engagements in regulated industries.

  • Delivered VAPT assessments, ISO 27001 audit support and GRC implementations across 10+ client engagements — several resulting in successful certification.
  • Coordinated control implementations contributing to a 40% reduction in high-risk vulnerability counts across client environments.
  • Managed end-to-end project delivery from scoping through to final reporting, maintaining consistent delivery timelines across a concurrent client portfolio.
  • Maintained 95% client satisfaction across all engagements through structured communication and proactive issue resolution.
Cybersecurity Analyst Intern — Penetration Testing
Cyber Octet Pvt. Ltd. · India
Jul 2023 – Apr 2024
  • Conducted network and web application VAPT assessments, identifying and documenting over 100 vulnerabilities with severity ratings and remediation guidance.
  • Produced security assessment reports used directly in client risk management and board-level reporting processes.
  • Developed practical foundations in penetration testing methodology, OWASP guidelines, and professional security reporting standards.

> certifications

ISO/IEC 27001 Lead Auditor

Currently Pursuing Certification

AIQI ISO/IEC 42001 Awareness eLearning

UKAS

PCI Compliance

Qualys

Lean Six Sigma White Belt

Management and Strategy Institute

ISO/IEC 27701 Information Security Management

Udemy

Purple Teaming Fundamentals

CyberWarFare

Ethical Hacking with Nmap

CodeRed

Advanced Diploma in Ethical Hacking & Cyber Security

Cyber Octet Pvt. Ltd.

Practical Penetration Testing with BackBox

CodeRed

> contact_me

AVAILABLE FOR REMOTE ยท CONSULTING ยท VISA-SPONSORED OPPORTUNITIES

> Available for GRC consulting, cybersecurity audit coordination, ISO 27001 implementation support, VAPT engagements, and security governance opportunities across global and remote environments.

> email: joshikathan11@gmail.com

> linkedin: linkedin.com/in/kathan-joshi

> location: India ยท IST (UTC +5:30)

> Response time: within 24 hours
> Type "contact --direct" in terminal mode for quick access
user@kathan-joshi:~$

๐Ÿ“ฑ Mobile Experience Notice

For better experience, we recommend using desktop.