ISO 27001 ITIL Foundations

AMITAVA CHOWDHURY
E-mail: amit.amitavachowdhury@gmail.com
CISSP, ISO 27001 Lead Implementer, ITIL Foundations
Contact: +91 9916919358

Seeking challenging assignments in areas of Enterprise Risk Management, Governance

and IT Auditing

Professional Profile
An Information Security Professional with 5.9 years of experience in Information Security
Consulting, IT Governance and Compliance. Currently serving MICROLAND LIMITED as a
Associate Consultant. Comprehensive knowledge in Risk Management and Assessment pertaining to
Information Systems, having potential knowledge on best practices and Industry Standards such as ISO
27001, ISO 20000, ITIL, PCI-DSS. Adept in analysing internal controls, evaluating risks, threats,
vulnerabilities, risk mitigation and IS auditing.

Professional Credentials

– CISSP (Exam Cleared)

– ITIL Foundations Certified
– ISO 27001 (BS 7799: 2) Lead Implementer
– CCNA

Proficiency Forte

Risk Management
– Ability in performing a Risk Assessment, Risk Analysis & Risk Treatment.
– Internal Controls Assessment/Impact Assessment/Threat & Vulnerability Assessment.
– Developing and implementation of policies, standards and procedures.
– Knowledge of IT Governance Model and IT service management principle.
– Knowledge of Business Continuity management
– Exposure on various Risk Management Frameworks such as NIST, OCTAVE etc.
– In Depth knowledge in Gap Assessment on standards such as ISO 27001, PCI-DSS etc..
– Proficient in Conducting Risk Analysis on various Assets and Environment.

Compliance & Audit

– Ability in performing compliance audit on International Standards like ISO 27001.
– Analyzing on the controls implemented and their performance as per standards.
– Giving recommendations and comments on closing the required gaps identified.
– Adept in evaluating internal controls effectiveness in business environments.
– Providing direction and support in achieving compliance with standards and fill gaps.

Organizational Experience
Since Jul’08 with Microland Limited as a Associate Consultant
Project: FCS Project Management
 Overseeing the deployment of Microsoft FCS at Client USL.
 Coordinating with Resident engineers ensuring smooth deployment.
 FCS Administration and Management.
  Providing required training on the FCS to senior management at Client Location.

Project: ISMS Implementation

 Conducting Risk Assessment of TSS BU of Microland.
 Part of the Team in developing practices for the department.
 Assessing Security Risks for IT Assets for Technical Support Dept.
 Evaluating existing and required controls aligned with ISO 27001.
 Part of the team in understanding the Risk level and Impact Assessment.
 Preparing standards, policies and guidelines for complying with ISMS.

Jul’07 – Jul’08 with HP (Outsourced New Horizons India) as a Network Engineer – L2

 Leading a Team of 3 Members for Network and Infrastructure support for HP for UBI and
UCO Bank Project.
 Handling escalations from the Team Members and helping in resolving the issues in hand.
 Configuration of PIX firewalls and Cisco Switches for the Project UBI under HP.
 Implementation of ISMS policies such as Password Policy, Router Management Policy, e.t.c
for proper functioning of the Project as per the ISMS guidelines.
 In Charge of Change and Configuration Management of Network Operations Centre
 Looking after the Security Architecture of the Network
 In Charge of implementing various controls to manage and improve the Information Security
of the Network Operations.
 Implementing various controls as described in ISO 27001 and reviewing ISMS
implementation on a timely basis.
 Incident and Problem Management of the day-to-day operations and updating the KB for the
other disciplines as per ITIL Framework.
 Using tools such as HP Service Desk to log, track, monitor and control incidents, changes and
problems.

Aug’06 – Jul’07 with GENPACT India as a Security Support Engineer

 Providing support in maintenance of Pix firewalls.

 Managing the AV infrastructure for Genpact Poles.
 Using ISS Scanner for Vulnerability Assessment.
 Reviewing and applying patches for the vulnerabilities found.
 Proactively monitoring the Poles network for Virus Related Activity.

Jul’05 – Jul’06 with Wipro InfoTech as Network Engineer

 Successfully handling maintenance of Network Infrastructure; Configuring, Installing,

Monitoring with a team of 6 to 20 personnel.
 Efficiently configure devices such as routers, switches, ISA Firewall & Call Manager for
VoIP setup; installing & maintaining of Cisco VoIP Phones.
 Playing a pivotal part in managing Change Management Process for Information Systems.

Commenced career from Aug’02 - Feb’04 with Origin InfoTech as Hardware Engineer.

Academic Credentials

B.Sc. in Computer Maintenance from Ranchi University in 2004 with 66.2 %.

Personal Details

Date of Birth : 4th November 1981

Address : C/o V Ramesh, #455 4th Cross, 1st Main Road, Bellandur, Outer Ring Road,
Bangalore - 560103
Languages Known : English, Hindi, and Bengali.