RAHUL KOKCHA

Principal Consultant - GRC

A distinguished GRC professional recognized as a Chartered Manager by CMI, UK, and Chartered IT Professional by BCS, UK; experienced in aligning technological and process controls to achieve business objectives.

Currently serving as a principal consultant for implementation (new/upgrade projects), operations (managed services / vCISO / vDPO), and assessment (external auditor) of information security, data privacy, and business continuity management systems based on international standards and applicable regulations.

Key Knowledge Domains

23+ years of experience performing various roles such as Head of Information Security, Project Manager, GRC Consultant, Auditor, Author, and Speaker with competence in the following Governance, Risk, and Compliance (GRC) domains:

Information and Cyber Security
Data Privacy
Business Continuity

Standards and Frameworks

Experienced in establishing, implementing, operating, maintaining, and assessing management systems compliant with:

ISO/IEC 27001, 27701, 27017, 27018, ISO 22301, 31000
NIST CSF, SP 800-53
GDPR, PDPPL, PDPL
PCI-DSS, SOC 2, HITRUST, HIPAA

Work Experience Highlights

Successfully established and operated an integrated governance, risk, and compliance practice globally across 40+ locations in a complex hybrid product and services organization environment.
Served as global head of information security for a software services organization and regional head of information security, data privacy, and business continuity for a large digital transformation organization.
Successfully led mergers of product-based and service-based organizations on the information security front.
Successfully established an application security framework in a hybrid product and services organization environment.
Successfully established high-security delivery centers for BFSI and Tech Giant customers and led a number of customer and third-party audits with zero red flags.

Credentials

Chartered Manager from Chartered Management Institute (CMI), UK
Chartered IT Professional from British Computer Society (BCS), UK
Level 7 Diploma in Strategic Management and Leadership from CMI, UK
MIET, Member of the Institution of Engineering and Technology, UK

Certifications

Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
ISO/IEC 27001:2022 Lead Auditor (CQI and IRCA Certified)
ISO 22301:2019 Lead Auditor (CQI and IRCA Certified)
ISO/IEC 38500:2015 IT Governance Manager*
Certified Ethical Hacker (CEH) v5 & v8*
EC-Council Certified Security Analyst (ECSA)*
CheckPoint Certified Security Expert Plus (CCSE+)*
CheckPoint Certified Security Expert (CCSE)*
CheckPoint Certified Security Administrator (CCSA)*
Security Certified Network Professional (SCNP)*
Security Certified Network Specialist (SCNS)*
CompTIA Security+*
Microsoft Certified System Administrator: Security*
Microsoft Certified System Administrator: Messaging*
Microsoft Certified System Administrator*
Microsoft Certified Technology Specialist: SharePoint Server*
Microsoft Certified Technology Specialist: Exchange Server*
Microsoft Certified Technology Specialist*
Microsoft Certified Professional*

* Not Maintained

Professional Memberships

Chartered Management Institute, UK
British Computer Society, UK
The Institution of Engineering and Technology, UK
Information Systems Audit and Control Association (ISACA)
International Information Systems Security Certification Consortium (ISC)2

Instructor Recognitions

PECB Certified Trainer
Check Point Certified Security Instructor*
Certified EC-Council Instructor* ^
Microsoft Certified Trainer*
SCP Certified Instructor*

^ Instructor of the Year Awardee | * Not Maintained

Page updated

Google Sites

Report abuse