Advisory Groups

While SISA has a very dedicated team of professionals in-house, we believe in working with industry experts who bring an immense amount of value and industry expertise related to forensics-driven cybersecurity practices. SISA’s dedicated group of advisory members not only govern the certification schemes but also recommend best practices and provide information on the latest revolution in the ever change field of technology and cybersecurity which helps keep the certification schemes update and relevant.

Advisory Group Structure:

Each certification scheme has a dedicated Advisory Group called “Advisory Council”.
The Advisory Council has members with years of experience and expertise in the subject/ field related to the certification scheme.
This group of experts are volunteers who believe in the certification scheme and its contribution towards the field. SISA does not own or control this group or its decisions.
SISA attempts to have the council representation spread across industries, job roles and locations around the globe.
The Advisory Council meets once a quarter to discuss and review the performance of the certification scheme.

SISA welcomes individuals who wish to contribute towards the certification scheme.

Arun Singh

Introduction: Accomplished IT Leader and Ex-Indian Air Force Officer

Work Experience: 15 years of rich experience in InfoSec domain

Certifications: CISSP, PMP, CSM, PCI DSS, ISO/IEC 27001:2013, Six Sigma, Data Science and ITIL

Qualifications: Bachelor’s in technology and MBA in Information System and Operations

Accomplishments:

Assistant Director in Network Operations Centre and Data Centre of Indian Air Force.
He was involved in setting up Joint Command and Control Centre with Indian Army and Air Force and Infosec Training Centre for Air Warriors.
Alumni of MDI Gurugram and IMT Ghaziabad.

Abdul Majied Khan Shahul Hamed

Introduction: Information Security Consultant

Work Experience: 5 years of experience specializing in SOC Operations and Content development.

Certifications: CISA, ISO 27001 Lead Auditor, CPISI, E|CSA, CCNA-R&S, AZURE SECURITY

Qualifications: Bachelor’s in Computer Science & Engineering

Accomplishments:

Offering information security consulting for one of the leading Banks in UAE
Member of Computer Society of India
Member of ISACA UAE

Jay Pamu

Introduction: Head – Information Security, BFSI CBO

Work Experience: 22 years of professional experience working in IT Infrastructure services

Certifications: ISO 27001:2013 Lead Auditor, COBIT5, Prince2, CPISI

Qualifications: Bachelor’s degree in Electrical and Electronics Engineering

Accomplishments:

Heads Information Security function for banking & insurance domain
10 years in Information Security implementation & governance

Binayak P Gupta

Introduction: Corporate IT trainer

Work Experience: 18 years of working in IT Education

Certifications: VCP, CEH, CEI, CompTIA Linux+, MTA (Cloud & Security), Cyber Reconnaissance Expert, MCSE

Qualifications: Bachelor’s in Commerce and Cyber Security Degree from EC-Council University

Accomplishments:

Delivered numerous corporate trainings.
Build and delivered training content through well known online study platforms such as Wiley India Pvt. Ltd., LetsUpgrade, Eduramp Learning Services Pvt. Ltd., Stripedata Private Limited and many more.
Recognized by Tech Edu Portal.

Jai Singh

Introduction: IT Infra and Security Expert

Work Experience: 25 years of working in IT Infrastructure and security experience

Certifications: PCI-DSS, CPISI, MCSA, MCP, LINUX, PGDCA, MCP (H/W&N/W – IT INFRA SECURITY)

Qualifications: BMaster of Business Administration, Bachelor’s in computer Application

Accomplishments:

Served in the Government Sector of Défense
Delivered Security training in various fronts like DR, BCP, PCI DSS and Redundancy of IT devices and so on.

Ameen Uddin

Introduction: Tech Controls & Compliance Analyst

Work Experience: 2 years of professional experience in InfoSec domain

Certifications: ISO/IEC 27001:2013, IRM Global Level 1 Enterprise Risk Management, CPISI Advanced

Qualifications: MBA, Information Technology Business Management, Bachelor of Technology – BTech, Computer Software Engineering

Accomplishments:

Working on PCI DSS implementation project management at a well-known Bank
Perform Risk and Control Self-Assessment on various departments of the bank (Information Security Risk in Operations, Applications Controls as per ISO 27001 and ITGC controls, Endpoint Assessment)

Arbdor Churchill

Introduction: Managing Consultant and Chief Technical Officer

Work Experience: 19 years of industry experience in different aspects of information technology with core focus on Governance, Risk, Compliance and software project management.

Certifications:

Lead Cybersecurity Manager certification
Certified Information System Auditor
Lead Auditor / Implementer Information Security Management System
Lead Auditor / Implementer Quality Management System
Lead Auditor / Implementer Occupational Health & Safety Management System
Lead Auditor / Implementer Business Continuity Management System
Lead Implementer Payment Card Industry Data Security Standard v4.0
IT Corporate Governance Manager

Qualifications: B.Sc. in Computer Science from Rivers State University of Science & Technology

Accomplishments:

Working on PCI DSS implementation project management at a well-known Bank
Perform Risk and Control Self-Assessment on various departments of the bank (Information Security Risk in Operations, Applications Controls as per ISO 27001 and ITGC controls, Endpoint Assessment)
Member of Information System Audit and Control Association, holds the prestigious CISA certification
Author of Online Security for the Rest of Us: A Humafirewall Guide
Devoted most of his career to Information/Cybersecurity, Auditing and ISO management systems certification
Seasoned consultant, Trainer and Auditor with extensive experience

Kyaw Thu Soe

Introduction: E-payments project manager at a major bank in Thailand, Experienced Project Manager with a demonstrated history of working in Banking and card and payment financial services domain.

Work Experience: 10 years of professional experience in Payment and Card Industry

Certifications: CPISI Advanced, Scrum Master Certified (SMC)

Qualifications: MBA International Management, JAVA EE, Enterprise Java

Accomplishments:

Successfully finished the PCI-DSS implementation project, POS and ecommerce acquiring for the bank. As well as on the credit card projects and operations in the second largest bank in Myanmar
Experience in IT delivery in Banking and Payments product development, consulting and overall management of IT in Banking and Payments Bank company
Strong expertise in Payment switch Implementation, System Integration projects, IT operations and Procurement
Successfully completed Banks for Payments switch Implementation and developed estimation techniques for large deals

Rushabh Pinesh Mehta

Introduction: Information Security Strategy, Risk and Compliance; and Information Systems Assurance professional

Work Experience: 7.5 years of industry experience working on several IT – GRC, TPRM, IS Audit, Cloud Security, Data Privacy and BCP / IT-DR engagements

Certifications: CISM (Q), CC, ISO 27001:2022 LA, CRisP, NIST CSF v1.1, CSA STAR, ISO 27017:2015, AZ-500, SC-900, AZ-900, OCI Foundations, Alibaba Cloud Security Associate, CDPSE, ISO 27701:2019 LI, OneTrust Privacy Professional, ISO 22301:2019 LA, FQA BCM, FQA BIA, FQA IT-DR, Advanced Program in Cyber Law, Qualys Policy Compliance, CyberArk Trustee, Fortinet NSE 1, ICSI CNSS, MSI Project Management Essentials, Scrum Foundation, Six Sigma Yellow Belt, Six Sigma White Belt

Qualifications: Bachelor of Engineering in Electronics and Communication; and Post Graduate Programme in Information Technology Business Management

Accomplishments:

Featured in ’40 under 40 in Cybersecurity 2023′ Special Edition of Top Cyber News MAGAZINE
Bronze level member of ISACA
Awarded as Best Student (Academics) in PGP-ITBM (2017-18), SCIT

Kuchal Das

Introduction: Cybersecurity Senior Lead

Work Experience: 9 years of industry experience in diverse aspects of the Technology & Information security domain with core focus on Governance, Risk, Compliance, IOT, Cloud, Data Privacy etc.

Certifications: Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), ISO 27001:2013 Lead Auditor, ISO 22301: 2019 BCMS Lead Implementer, Certified Payment Card Industry Security Implementer (CPISI), Cyberark Certified Trustee, SC- 900 Microsoft Security Compliance & Identity, AWS Security Fundamentals, One Trust Privacy Professional, Scrum Foundation, Fortinet NSE 1

Qualifications: Masters in Information Technology (M.Sc-IT)

Accomplishments:

Worked on PCI DSS implementation project management at a level 2 E-commerce entity
Represented as part of the Centre of Excellence team of the Corporate GRC Practice unit

Amit Subhanje

Introduction: Seasonal Cyber Risk & Compliance Professional

Work Experience: Experience working on Internal Audits, Information Security, Third-Party Risk Management, Enterprise Risk Management, Cyber Security, Business Continuity Management and Risk & Compliance domains

Certifications: CISA, CISM, CRISC, COBIT5, ISO 27001 LA, ISO 22301 LA, ISO 27701 LA, Lean Six Sigma Black Belt, Lean Six Sigma Green Belt, CyberArk Trustee

Qualifications: Bachelor’s in technology and Master’s in Risk Management

Accomplishments:

Youngest upcoming cybersecurity leader
Holds the top prestigious cybersecurity qualifications i.e., CISA, CISM and CRISC
Known cybersecurity speaker
ISACA Member
SISA Champion

Ravi Bhushan

Introduction: CISO at Wibmo Inc

Work Experience: Over 19 years of working experience in Governance and Risk, Technology and Cyber risks, Programme management, Business processes and controls reviews, Regulatory reporting, Technology infrastructure review, Information Security review, IT Audit and Software engineering.

Certifications: Certified Information Systems Auditor (CISA), Business Simulation certifications (2017), ‘IBM Blockchain Foundation for Developers’ certification (2018) and ‘Cloud Security Basics’ certification from University of Minnesota (2021)

Qualifications: Masters in Computer Applications (MCA), Ravi completed MBA (Executive) from SP Jain School of Global Management, Mumbai in the year 2018

Accomplishments:

Ravi has been a distinguished guest speaker and panelist on various contemporary topics in the industry.
Lead Digitization Programme and Strategic Initiatives at a major Bank in India
Was the Vice-President, Chief Controls Office focusing on Cyber and Technology risk portfolio
Has handled Chief Information Security Officer (CISO) and Head of Technology Controls responsibilities at major bank in Mumbai and was heading the international portfolio of the bank in line with the firm’s Enterprise Risk Management Framework (ERMF) in Pune, India
Drove IT Attestation Service line across India, worked on various phases of Software Development Life Cycle in India and US
Ravi carries exposure to global business environment and travelled to multiple countries including US, UK, Singapore, China, Hungary, Romania, Mexico, Indonesia, and Zambia

Samih Elbadrawy

Introduction: Cyber Security Consultant

Work Experience: 9 years of professional experience in Payment and Card Industry

Certifications: CPISI, CISM, CRISC, CC, CEH Master

Qualifications: Bachelor’s degree in computer science and software Engineering from Arab Academy for Science and Technology and Marine Transport

Accomplishments:

Member of ISACA
Participated in many CTF competitions like Cybertalents and Arab Security Conference Wargames
Expert in Vulnerability Management Automation
Expert on handling Security Solutions like SIEM, DLP, and APT

Pinaki Ranjan Aich

Introduction: IT Security, Governance, Risk, Audit & Compliance professional

Work Experience: 7.10 years of industry experience on GRC, Audit, Cloud Security, Data Privacy and specialized audit engagement

Certifications: CPISI, CISA Certified, ISO/IEC 27001 Lead Auditor Certified, EXIN- Privacy and Data Protection Foundation Certified, Certified Payment Card Industry Security Implementer (PCI-DSS), Security Intelligence Engineer – IBM Certified, Security Orchestration, Automation and Response (SOAR)-Resilient -IBM Certified, ITIL V3 Foundation Certified, Prince 2 Agile Practitioner Certified, COBIT 5 Foundation Certified, CyberArk Certified Trustee version 9.10, Diploma in Cyber Law

Qualifications: B.Tech(CSE) from B.P.U.T and PGDM – IT and System Management(2yr) from NMIMS

Accomplishments:

Planned, developed, and monitored audits related to Internal Audit, Regulatory Audit, Cyber Audit, SOX, ISO 27001, PCI-DSS, SOC1 and SOC2
Played a pivotal role in the recruitment, training, and evaluation of Information Security staff, contributing to improved personnel performance and development
Develops and applies policies impacting business methods and integrated security restrictions, weighing complex requirements form the business with industry best practices for security
Implemented data-driven performance metrics, resulting in a measurable increase in efficiency and productivity within the Information Security team
Member of ISACA

Eke

Introduction: Security Strategist

Work Experience: 22 years of experience building and leading enterprise security programs in highly regulated industries.

Certifications: CISSP, CISM, CRISC, CISA, Security+

Qualifications: MBA, Bachelors in Computing Security & Technology

Accomplishments:

Led successful Risk Management efforts for key Joint Staff engagements
Built world-class Security Operations Center for monitoring cloud platforms
Developed Federal and Corporate Incident Response programs and established collaborative partnerships with key local and federal law enforcement partners
Successfully planned, managed and led the delivery of multiple secure cloud-based products

Raymund Julag-ay

Introduction: Seasoned IT and Information Security Professional

Work Experience: More than 25 years of extensive Global experience in IT, InfoSec, Data Privacy, Business Continuity, Risk and Compliance

Certifications: Certified Information Security Manager (CISM), Certified Payment Card Industry Security Implementer (CPISI), HITRUST Certified Common Security Framework Practitioner (CCSFP), Certified Metaverse Security Consultant (CMSC), Certified Data Protection Officer (DPO)

Qualifications: Bachelor’s Degree in Electronics and Communications Engineering with Post-graduate studies in Executive-MBA (Corporate Change)

Accomplishments:

Appointed as Data Protection Officer for different Data Privacy Regulations in Asia, US and Europe
Built a HITRUST Certified Security Operations Center for a Global healthcare company
Setup of a Global Network Operations Center covering 150 countries for a major travel organization
Migrated technology processes from top US Fortune 500 companies to a Business Process Outsourcing firm
Led the assessments and certification of PCI-DSS, HITRUST, SOC 1 and 2, ISO 27001, HIPAA and URAC for several global companies
Provided technical guidance for the build-out of World Bank Global Distance Learning in one of the graduate school in Asia
Member of ISACA – Silver Level

Nitish Mehta

Introduction:   IT and cybersecurity Audit, Compliance and Risk Professional

Work Experience: 10+ years of experience in IT and security domain in consulting and banking

Certifications: CISA, CISM, ISO 27001 LA, CIPP, COBIT 2019 , CSOX Expert, EY Cybersecurity Badge, CCNA, ITILv4, API security Architect

Qualifications: Bachelor’s of Technology in IT

Accomplishments:

Led various cybersecurity regulatory audits and compliance assessment for banking industry
Experienced in IT General controls and application testing at various industry
Conducted various IT GRC implementation and Cybersecurity consulting engagements
Carried out IT risk assessment and developed relevant processes and reporting global teams

Naveen Mittal

Introduction:  Vice President – IT Infrastructure and Operations

Work Experience: Dedicated and seasoned IT professional with 25 years of extensive experience in IT Infrastructure, specializing in Cloud, Security, Compliances, and Vendor Management.

Certifications:

AWS Certified Solutions Architect-Associate 
Microsoft Azure Architect Technologies – AZ-303 
Microsoft Azure Fundamentals – AZ-900 
VMware Certified Professional (VCP 5.0) 
Microsoft Certified System Engineer (MCSE) 
ITIL V3 
Prince2 
Pursuing CISSP (Certified Information Systems Security Professional)

Qualifications: I hold a Master of Business Administration, further enhancing my strategic and managerial skills to align technology initiatives with business goals.

Accomplishments:

Implemented PCI DSS compliances for various projects, showcasing a commitment to data security and regulatory adherence 
Implemented cutting-edge security tools such as WAF, Cloud Security Posture Management, Email Security, SASE, and MDM, ensuring a robust defense against cyber threats 
Conducted IT risk assessments and developed relevant policies and processes to mitigate potential risks effectively 
Recognized as the Digital Transformation Leader at the Confex & Awards 2023, highlighting my leadership and contribution to the organization’s journey towards digital excellence 
As a forward-thinking IT leader, I am dedicated to staying at the forefront of technology trends and best practices 
My pursuit of the CISSP certification reflects my commitment to continuous learning and the highest standards of information security

Kasun Atapattu

Introduction:  Experienced Senior Information Security Officer, Visiting Lecturer, and Information Security Trainer with over 12 years of comprehensive expertise in Database Management Systems (DBMS), Information Security, Systems Auditing, and Information Security Training. A passionate advocate for cybersecurity, dedicated to cultivating knowledge and fostering secure digital environments.

Work Experience: Bringing a wealth of knowledge and proficiency, he has accumulated over a decade of experience in the fields of DBMS, Information Security, Systems Auditing, and Information Security Training. His roles have involved safeguarding critical information assets, conducting thorough systems audits, and delivering impactful training sessions to enhance organizational security posture.

Certifications:

Certified Information Systems Security Professional (CISSP)
Certified Ethical Hacker (C|EH)
Certified Information Systems Auditor (CISA)
Certified Professional in Information Security Incident Response (CPISI) – v4.0
ISO 27001:2013 Lead Auditor (LA)
Privacy Information Management System (PIMS) ISO 27701:2019

Qualifications:

B.Sc in Management and Information Technology
Professional Graduate Diploma – British Computer Society
M.Sc in Information Technology

Key Competencies:

Expertise in designing and implementing robust Information Security frameworks.
Proficient in Database Management Systems, ensuring data integrity and security.
Conducting comprehensive Systems Audits to identify vulnerabilities and mitigate risks.
Delivering engaging and effective Information Security Training programs.
Adept at leading and managing ISO 27001:2013 and PCI:DSS and other compliance initiatives.
Strong analytical and problem-solving skills with a commitment to continuous improvement

Passion & Vision: Dedicated to staying at the forefront of evolving cybersecurity landscapes, his mission is to contribute to the development of secure digital ecosystems. As a Visiting Lecturer, he aims to inspire the next generation of information security professionals, fostering a culture of resilience and proactive cybersecurity practices.

Meetali Sharma

Introduction:  With over 20 years of expertise in Risk, Compliance, Data Privacy, and Cybersecurity, She specializes in crafting secure digital environments for businesses to thrive. Her passion lies in empowering teams and implementing strategic solutions to mitigate cyber threats and ensure compliance with industry standards.

Work Experience: She has worked on several information security assignments covering consulting and solution-driven approach including – Information Security Incident Management, Information Security Risk Management, Training and Awareness, Information Security Measurement Program implementation, CMMi implementation for Development and Services.

Certifications:

Certified in Risk & Information Systems Control (CRISC) from ISACA
CMMI SVC & Dev 1.3
ISO/IEC 27001:2022 Lead Auditor
ISO 31000:2009 Risk Management Principles & Guidelines Implementation from BSI
IATF 16949:2019
ISO 22301 Lead Auditor

Qualifications:

Master’s in business Administration (MBA) from Symbiosis
Professional Diploma in Information Technology
Post Graduate Diploma in Computer Applications
Bachelor in Science

Passion & Vision: Dedicated to fortifying digital landscapes, her vision is a secure environment fostering business growth unhindered by cyber threats. She aims to equip teams with the expertise and resources needed for robust risk management and compliance, fostering a culture of proactive security and enabling businesses to thrive in the digital age.

Vinay Disley

Introduction:  He spearheaded developing a comprehensive cybersecurity practice, encompassing the establishment of best practices, service offerings, solution guidance, implementation, and management of large-scale transformation programs for clients across diverse industries. Additionally, he championed the institutionalization of excellence in project delivery.

Work Experience: Over 3 decades of extensive experience working with PWC, Wipro & Cognizant. He brings a deep understanding of enterprise risk management and cybersecurity frameworks – leadership vision, strategy formulation, execution of strategic programs & business leadership.

Certifications:

Certified Independent Director, IICA,
Certified Data Privacy Lead Auditor, DSCI,
Certified Information Systems Auditor (CISA), ISACA.

Qualifications:

Bachelor’s of Commerce (Bangalore University)
Chartered Accountant (ICAI)

Manoj Kuruvanthody

Introduction:  He is a seasoned cybersecurity professional with over 24 years of experience. He is a multi-disciplinary leader with a proven track record in designing, developing, implementing, and leading cybersecurity solutions and services for global corporations. His expertise spans across various cybersecurity domains.

Work Experience: His experience is enriched by his stints at leading organizations like Infosys, EY, MphasiS, Patni Computers, and A.P. Moller – Maersk. This exposure to diverse industry environments has honed his skills and broadened his perspective.

Certifications:

Certified Information Systems Security Professional (CISSP)
Certified Payment Card Industry Security Implementer (CPISI)
API Security Architect, API Academy
Microsoft Certified: Azure Security Engineer Associate (AZ-500)
Microsoft Certified: Azure Fundamentals (AZ-900)
ISO 27701:2019 Lead Implementer (LI)
ISO 27001:2022 Lead Auditor (LA)
ISO 27001:2013 Lead Auditor (LA)
ISO 27001:2005 Lead Auditor (LA)
Business Continuity Certified Specialist (BCCS)
Check Point Certified Security Administrator NGX (CCSA)
Cisco Secure PIX Firewall Advanced (CSPFA)
Cisco Certified Network Associate 2.0 (CCNA)
Certified Lotus Specialist (IBM Lotus Domino 6.5) (CLS)
IT Infrastructure Library (ITIL) v2
Microsoft Certified Systems Administrator (Windows 2000) (MCSA)
Microsoft Certified Systems Engineer (Windows 2000) (MCSE)

Qualifications:

Applied Cybersecurity Essentials – Specialist (ACE-S), Purdue University
Post Graduate Program in Cyber Laws
Bachelor of Engineering (B.E) in Electronics and Communications

Passion & Vision: He is a passionate advocate for cybersecurity awareness and knowledge sharing. He actively participates in industry forums and advisory boards, generously sharing his expertise to advance the field. His dedication extends to mentoring and coaching other professionals, helping them navigate their career paths.

Pranav Kumar Bharti

Introduction:  As the Head of Global Infrastructure and Security, he plays a major role in shaping the strategic direction and operational capabilities of his organization. With a background in information technology and security management, he oversees the development and implementation of cutting-edge cyber security solutions.

Work Experience: With over 25 years in IT infrastructure and security, he has been honored with the Best SoC Implementation Award by Quantic Media in 2024 and named the Most Promising Leader at the CIO 23 Awards. His proficiency spans SAP HANA, D365 ERP, and compliance with ITGC, PCI DSS, ISO 27001, and GDPR, underscoring a commitment to advancing cyber defense and data protection.

Certifications:

Palo Alto Networks Certified Network Security Engineer (PCNSE)
Certified Information Systems Security Professional (CISSP)
Microsoft Certified Systems Engineer (MCSE)
AWS
Azure
ZTNA

Qualifications:

Bachelor’s degree of Arts in History

Passion & Vision: His passion lies in pioneering advanced security solutions and resilient IT infrastructure, fostering an environment where innovation thrives and security is paramount. With a visionary approach, he aims to seamlessly integrate cutting-edge technologies while ensuring rigorous compliance and governance standards.

SISA is a global forensics-driven cybersecurity solutions company, trusted by leading organizations for securing their businesses with robust preventive, detective, and corrective cybersecurity solutions. Our problem-first, human-centric approach helps businesses strengthen their cybersecurity posture.

Industry recognition by CREST, CERT-In and PCI SSC serves as a testament to our skill, knowledge, and competence.

We apply the power of forensic intelligence and advanced technology to offer true security to 2,000+ customers in 40+ countries.