top of page

Experience, Certifications, Capabilities

Areas of Proficiency / Expertise

  • IT Service Management

  • Information Security / Cyber Security

  • Enterprise Governance / IT Governance

  • Enterprise Risk Management / IT Risk Management

  • Project Management 

  • Agile Methods / Lean / KANBAN / Demand Pull System

  • Data Privacy Regulations (GDPR, CCPA, PDPA, HIPAA, GLBA)

  • Compliance Assurance

 

  • IT Strategy (in line with BITA concept, ValIT, IT-CMF)

  • IT Governance and internal controls (in line with COBIT, COSO, SOX, OCTAVE)

  • Information Security (in line with ISO 27001, NIST Guidelines, PCI-DSS)

  • Data Privacy (in line with GDPR, PDPA (India, Singapore, Malaysia), CCPA, ISO 27701, ISO 29100, ISO 27018

  • IT Service Management (in line with ITIL, ISO 20000, FitSM, VeriSM, SIAM)

  • SDLC (in line with CMMi, SCRUM, DevOps)

  • Quality System Design (in line with ISO 9001, TL9000, eTOM, ISO/TS 16949, ISO 13485)

  • EHS (in line with ISO 14001, ISO 45000) 

  • Process improvements and performance monitoring (in line with Lean, Six Sigma, Statistical Process control, Balanced Score Card)

  • EFQM / Malcolm Baldrige model

  • Project Management (in line with PMI / PRINCE2 methodologies)

  • Data Privacy, General Data Protection Regulation, DCPP, CIPP, CIPM, DPO

  • Training development and delivery (accredited trainer on many frameworks)


                   MANAGED P&L FOR CONSULTING AND TRAINING PRACTICES

  • Speaker

  • Coach

  • Mentor

  • Consultant

  • Researcher

  • Author

  • Educator

  • Trainer

10391997_1143150002364804_91116704389389
Ayilur's capabilities.png

Multi domain work experience - Manufacturing, IT, ITeS, Medical Devices, Healthcare IT, Pharma Distribution, Logistics, Supply Chain.

Working with multiple global training and consulting providers.

Certifications

  • CISA

  • CGEIT

  • CRISC

  • CISM

  • CIPM

  • CIPP/E

  • COBIT Certified Assessor by ISACA

  • COBIT 5 - Foundation, Implementation, Assessor , NIST Cyber Security F/w Implementation

  • COBIT 2019 Foundation

  • ITIL V3/2011 Expert (Lifecycle & Capability streams - all 10 modules)

  • ITIL 4 Managing Professional (MPT)

  • IRCA Accredited Auditor and ISO27001:2013 LA Trainer

  • CCSK (Certificate in Cloud Security Knowledge) from CSA

  • MoR (Management of Risk)

  • PRINCE2 Practitioner

  • PRINCE2 Agile Practitioner

  • MSP Practitioner (Managing Successful Programmes)

  • RESILIA (Cyber Security)

  • ISO 27001 Foundation, Lead Auditor, Lead Implementer

  • ISO 22301 Lead Auditor, Lead Implementer

  • ISO20000 Foundation and Auditor

  • Certified Privacy and EU GDPR Practitioner (CPEGP)

  • Certified Sarbanes Oxley Expert

  • Agile Scrum Foundation, Agile Scrum Master

  • SIAM Professional

  • VeriSM Professional

  • Six Sigma Green Belt

  • CMMI (intro to CMMi 1.3/ATM)

  • OCTAVE Risk Assessment methodology (of CMU)

  • Business Continuity Planning & Disaster Recovery Specialist

  • Certified GRC Professional / Practitioner (GRCP / CGRCP)

  • APMG Accredited COBIT 5 trainer (Foundation, Implementation, Assessor, NIST F/w implementation)

  • Accredited ISO27001, ITIL (all levels, all modules) and PRINCE2 trainer (all levels)

  • Cloud Computing Trainer (EXIN, TUV-SUD)

  • ISO 27001 Foundation, Lead Auditor and Lead Implementer Trainer (TUV-SUD)

  • ISO20000 Lead Implementer Trainer

  • Agile Scrum Master / Agile Scrum Foundation / Agile Project Management Trainer

  • CCSK Trainer (Cloud Security)

Experience

Consulting and Other Experience

 

Current

 

  • Providing with advisory on implementing COBIT to a MNC.

  • Providing with advisory on EU GDPR implementation to a MNC.

  • Developing a Cloud Audit course for an accreditation body.

  • Kick starting COBIT 5, EU GDPR and Cloud Security (combined) consulting assignment for a US based IT service provider.

 

Recent

 

  • Engaged in a COBIT 5 assessment and implementation consulting with the second-largest India-based IT services company.

  • Delivered an ITIL Expert series of training in the USA for a European conglomerate.

  • Engaged in delivering a series of ITIL sessions for a Duabi Govt organisation

  • Delivered a SOx, COSO and SSAE16 training for a global US IT major.

  • Extended consulting services to a leading French investment bank in establishing Service Desk using ITIL framework

  • COBIT 5 Assessment for a UAE Govt enterprise in Dubai.

  • Engaged in Information Security and IT Service Management process definitions and implementation with a global telecom giant (ISO27001:2013 & ISO20000)

  • Engaged in Information Security process definitions and implementation for a US based application services and data center management company (ISO27001:2013)

 

Past

 

  • Have created and rolled out strategy for the IT business unit for a multinational consumer electronics and home appliances giant which included the following:

    • Implemented agile processes for a European major and was an Agile Coach.

    • COBIT framework implementation and assessment

    • ITSM Implementation based on BS15000 / ITIL

    • BS15000 & ISO27001 certification activities

    • Consulting on ISO 9001:2000, ITSM/ITIL, ISMS, CMMi, PCI-DSS

    • Redefinition of QMS for IT.

    • Lead CMMi Level 5 implementation for Information Systems Group, Part of SEPG

    • Introducing Agile concepts and enable Agile Scrum methodology implementation

    • Sarbanes Oxley control audit and process definitions, SOx Control Checks

    • EFQM Implementation (Relevant to IT Dept.) as part of Business Excellence initiative

    • Balanced Scorecard Derivation and Implementation

    • Audit planning and scheduling.

    • Plan disaster recovery actions and Data Backup processes for IT Dept. / Organization.

    • Metrics definitions and tracking

    • Project Plan, Process Definitions, Audits

    • Conduct Risk Analysis (System Implementation, Business, IT, Projects)

    • Failure data analysis in detail for formulating and implementing corrective and preventive actions in the process area. (CAPA), Root Cause Analysis of incidents

    • Define and initiate six sigma projects for process improvements.

    • QMS metrics and deliverables definition and performance monitoring.

    • IT Project management

    • Review IT Strategy for alignment with corporate business strategy.

    • Cost reduction in support services

    • Service level agreements (OLA & SLA)

    • Preparation of the team for CMMi Level 5 assessment

  • Created IT Roadmap for a global healthcare IT organization

    • Established the entire quality related activities and define quality strategy for the US based healthcare major in India and rolled out. Coordinated with World Headquarters and work globally to deploy quality projects. Initiated quality consulting for global units in coordination with World Head Quarters.

  • Conducted countrywide audit on IMS based on ISO27001, TL9000 and OHSAS18001 for a telecom major in India.

  • Established QMS for a telecom giant in India.

  • Established information security framework for

    • An energy major in India

    • A global IT company

    • For an image processing major for IT

    • For a global telecom hardware company

  • Established SDLC framework based on CMMi for –

    • An Indian MNC

    • A global telecom support organization

  • Established IMS framework based on ISO9001, ISO14001, OHSAS18001 and successfully taken the organization based out of UAE through external audit.

  • Worked with a logistics MNC in establishing IMS based on ISO9001, ISO14001, OHSAS18001 and SA8000.

  • Was engaged with a petroleum giant in the middle east defining their IT governance framework based on COBIT & ValIT

  • Provided with a strategy to the IT division of a multi speciality hospital chain to select the right IT solution for their information management across the corporation and rolled out

  • Defined metrics framework and performance criteria to support the business vision for one of the European IT clients.

  • Designed, developed, organized and delivered public/corporate trainings on different subjects which include ITIL V3, PRINCE2, COBIT, ISO27001:2005, ISO9001:2008, SOX  &  Internal Auditing & Implementation, Documentation, Risk Management, CMMi etc.

Training Experience

 

  • Designed, developed, organized and delivered public/corporate trainings on different subjects which include ITIL, PRINCE2, COBIT, PCI-DSS, ISO27001, ISO20000, EU GDPR, SOX, SSAE16, COSO, ISO9001 & Internal Auditing & Implementation, Documentation, Risk Management, CMMi etc.

  • Conducted open house and corporate trainings on Process standards (ISO & others), soft skills (communication, creative thinking etc.) and IT related frameworks, and has imparted numerous trainings to participants from different industry segments including IT, ITeS, Engineering, Logistics, SCM. Many employees from tier1 companies have participated in the training sessions on ITIL, PRINCE2, IT Risk Management, ISO27001, CMMi, SOX etc.

  • Have trained thousands of IT professionals on ITIL V3/2011 framework and facilitated acquiring the certification.

  • Coordinate with various stakeholders to ensure fulfillment of training needs, preparation of the annual training calendar based on the identified training needs.

  • Work with multiple training providers.

  • Engaged in delivering trainings for employees right from the beginning of career on different topics ranging from soft skills to technical skills.

    • Organized presentation sessions involving employees where they present a topic and an evaluation is done on the presentations.

    • Organized technical sessions for deliberation on various topics for knowledge sharing/dissemination 

  • Part of public forums (ISACA and other professional) delivering speeches on different topics.

  • Was a member of Junior Chamber and conducted many sessions on different topics. Part of other NGOs where developed vocational courses and delivered.

 

  • ISACA licensed COBIT trainer, accredited ITIL and PRINCE2 trainer and and TUV – SUD accredited ISO27001 Lead Auditor/Implementer trainer; conducted numerous sessions on ITIL, COBIT, PRINCE2 and ISO27001.

  • Content development - Develop courseware on different process frameworks/standards on demand for commercial/licensed usage.

  • Travelled across the globe delivering training and consulting services. Handled multi ethnic, multi-cultural audience.

Audits and Assessments 

  • Working with two leading global certification bodies as  ISMS and BCMS Auditor

  • Performed many Computer System Validation (CSV) activities for medical device manufacturers and distribution companies based on FDA QSR and GXP.

  • Performed data privacy assessments for large enterprise based on EU GDPR, local regulations in the UAE.

Ayilur Ramnath

Mentor, Coach, Researcher, Author & Speaker

AyilurLogo.png
bottom of page