Shakliyan Shaikh

ISO/IEC 27001:2022 certified IT professional with 3 years of experience in cybersecurity, internal auditing, and IT governance. Proven expertise in SIEM monitoring, network security, vulnerability management, identity and access management (IAM), business continuity planning (BCP), disaster recovery (DR). Experienced in conducting audits in line with ISO 19011 & ITGC and implementing risk-based security enhancements. Committed to strengthening cyber resilience and maintaining regulatory compliance in enterprise IT environments.

A certified ISO/IEC 27001:2022 IT professional with over 3 years of hands-on experience in cybersecurity, IT auditing, and governance. Proven track record in conducting internal audits aligned with ISO 27001 and ITGC frameworks, managing SIEM tools for threat detection, and leading incident response initiatives. Skilled in vulnerability assessment, patch management, IAM, and VMware optimization. Successfully handled over 4500 IT service operations across Windows environments and SCCM deployments. Complemented by project management exposure, cross-functional collaboration, and a strong foundation in risk assessment and compliance. Actively expanding knowledge in cloud security, NIST frameworks, and advanced SIEM tools.

I have over 3 years of focused experience in cybersecurity, with a strong foundation in SIEM monitoring, vulnerability management, and incident response. At TCS, I monitored and analyzed firewall, IDS, and email logs using SIEM tools to detect and respond to threats proactively. I investigated malware infections and unauthorized access attempts, performing root cause analysis and working closely with response teams to mitigate cyber risks. I also managed identity and access controls, enforced patch management using SCCM across 5000+ systems, and ensured endpoint security compliance. My audit background complements my cybersecurity skill set, supporting risk-based assessments and ISO 27001 compliance. I continue to enhance my capabilities through upskilling in NIST frameworks, cloud security, and advanced threat detection tools.