Vijayarajeswaran S P

GRC professional with proven experience in ISO 27001 audits, risk assessment, and VAPT management. Skilled in helping organisations implement effective information security controls, align with global compliance frameworks, and enhance their overall security posture. Ready to contribute my expertise in governance, vulnerability management, and collaborative client engagement to support a dynamic and security-driven organisation.

Participated in external ISO 27001:2022 certification audits and conducted internal audits to ensure ongoing compliance.

Supported client organisations in developing and implementing ISO 27001:2022 policies, procedures, and control frameworks. 

Performed comprehensive Risk Assessments for client environments, identifying vulnerabilities and recommending mitigation strategies. 

Conducted ISO 27001 control gap analyses and advised on corrective actions to achieve compliance. 

Mapped ISO27001 controls with GDPR regulatory frameworks to design integrated security programs. 

Delivered intensive Security Awareness Training and launched phishing simulation campaigns to enhance client security posture. 

Prepared a Proposal for the VAPT and ISO engagement. 

Acted as a Single point of contact for many of the VAPT engagements. 

Led tabletop exercises, including Incident Response and DDoS simulations, to evaluate organisational readiness. 

Managed multiple Indian clients across diverse security projects, maintaining strict timelines and quality expectations. 

Conducted numerous on-site visits for VAPT and audit engagements, ensuring alignment with compliance standards. 

Directed a team of 3 internal VAPT engineers and oversaw the full application security lifecycle from design to deployment. 

Prepared and presented executive summary reports covering security assessment outcomes, remediation plans, and risk mitigation strategies to senior leadership.

Led end-to-end client engagements, including scope definition, application/architecture walkthroughs, and detailed vulnerability briefings

ME-Industrial Safety (2020) MEPCOSchlenk Engineering College.

 B-Tech- Information Technology (2017) MEPCOSchlenk Engineering College