Skip to content Skip to footer
PKF
PKF
Close

Governance, Risk & Compliance

Contact Us Now

    GRC Consulting & Technology

    Segregation of Duties (SoD) in access and mitigation

    ISO 27001 Implementation

    SOC2 Compliance

    SOX Controls Testing

    GRC Consulting & Technology

    As businesses face globalization and rapid changes, effective Governance, Risk, and Compliance (GRC) management has become essential. Many companies struggle with fragmented GRC processes that lead to inefficiencies, increased costs, and exposure to unforeseen risks.

    We offer a comprehensive, integrated approach to GRC. By uniting governance, risk, and compliance in a single strategy, we will help you streamline operations, automate manual tasks, and enhance visibility across all departments, resulting in faster decision-making, improved risk management, and stronger compliance.

    Our services include:

    • Segregation of Duties (SoD) Review: We help you design user roles for business applications eliminating any SoD conflicts. We also review SoD conflicts in user access and provide remediation strategies to mitigate the risks identified.
    • ISO 27001 Implementation: Achieving ISO 27001 certification is essential for ensuring the confidentiality, integrity, and availability of your information assets. We guide you through the full lifecycle of ISO 27001 implementation, from gap analysis to the development of policies and procedures and implementation of controls that align with the standard.
    • SOC 2 Compliance: Whether you are aiming to meet client demands or industry regulations, our experts help you achieve SOC 2 compliance by assessing and implementing the necessary controls to protect the security, availability, and confidentiality of your systems and data.
    • SOX Controls Testing: For organizations subject to the Sarbanes-Oxley (SOX) Act, we provide comprehensive testing of internal controls over financial reporting (ICFR). Our team ensures that your controls are effectively designed and operating, reducing the risk of material misstatements and ensuring compliance with SOX requirements.

    Sridhar Vijayaraman

    Senior Data Analyst

    Sridhar Vijayaraman is a dynamic and results-driven Data Analyst with expertise in Python, SQL, KNIME, and Data Visualization. With extensive experience in data analysis, process automation, and project management, he excels at translating complex data into actionable insights to drive business decisions. Sridhar has contributed to diverse projects, including audits, ERP consulting, and interactive dashboard development.

    A mentor in data analytics practices, he has led training initiatives to foster data-driven decision-making and innovation across teams. His sector exposure spans mining, infrastructure, finance, and more, reflecting his versatile skill set and strategic outlook. Sridhar holds a Masters in International Business (Marketing) and a Post Graduate Degree in Data Science.

    Tanuj Bhandary

    Senior Associate, IT Risk Advisory

    Tanuj is an experienced IT risk advisory professional specializing in information security, compliance frameworks, and data analytics. With a career spanning exposure in industries such as finance, banking, insurance, and logistics, he has played a key role in driving cybersecurity resilience and supporting digital transformation initiatives.

    Tanuj’s expertise includes ITGC audits, vulnerability assessments, firewall reviews, and implementing enterprise security strategies. Known for his analytical approach and commitment to operational excellence, Tanuj helps organizations achieve robust risk management and secure IT environments. Tanuj holds a Master’s Degree in Computer Applications (MCA)and is a Certified Information Systems Auditor (CISA) and Certified Ethical Hacker (CEH v10).

    Ajinkya Redkar

    Senior Associate, IT Risk Advisory

    Ajinkya is a Chartered Accountant and Certified Information Systems Auditor (CISA), with expertise in financial audits, IT governance, and cybersecurity. He brings a unique combination of auditing, risk management, and information security skills to his role.

    Ajinkya has successfully handled several IT risk advisory engagements for clients in India and abroad. His expertise includes testing General IT Controls (GITCs), IT Automated Controls (ITACs), and performing audit trail reviews to ensure compliance with global and Indian regulatory standards.

    With a strong focus on data privacy, cybersecurity, and risk mitigation, Ajinkya is committed to integrating advanced security measures into financial frameworks for enhanced organizational resilience. Ajinkya also holds Certified Information Systems Security Professional (CISSP) and Diploma in Information Systems Audit (DISA) certifications.

    Raja Rajeswaran

    Finance & ERP Specialist

    Rajarajeswaren brings over 15 years of expertise in finance, accounting, and ERP consulting, with a strong focus on SAP configuration, integration testing, and post-implementation support. His portfolio includes IT application controls, SOD conflict reviews, and IT general controls assessments for leading companies in FMCG, Aviation, Financial Services sectors and many more.

    A certified SAP FICO consultant and a commerce graduate, he excels in bridging technical and functional requirements to deliver comprehensive solutions for complex business scenarios.

    Pankaj Dhiman

    Senior Manager, IT Risk Assurance

    With over 8 years of expertise in IT advisory, Pankaj specializes in regulatory compliance, cybersecurity assurance, and IT audits for Exchanges (BSE & MCX), Stockbrokers, Asset Management Companies (AMCs) as per Securities Exchange Board of India (SEBI).

    His experience includes conducting Information Security Audits, ITGC reviews, and SOX control testing, as well as managing audits aligned with SEBI, Reserve Bank of India (RBI), and Insurance Regulatory and Development Authority (IRDA) standards.

    Pankaj has a proven track record in assessing IT frameworks, including access management, network security, and disaster recovery, and auditing critical security tools like WAF and SIEM. A qualified Chartered Accountant and CISA-certified professional, he is also certified in ISO 22301:2019 and ISO 27001:2022 frameworks.

    Sakshi Bist

    Senior Program Manager, Digital Transformation

    Sakshi is a highly accomplished program manager with over a decade of expertise in driving digital transformation and IT strategy initiatives across global markets. She specializes in managing complex multi-vendor engagements, crafting strategic roadmaps, and optimizing IT processes for governments and multinational organizations, managing to deliver measurable results.

    Her career spans diverse regions, including Canada, the USA, Europe, Africa, and Southeast Asia, where she has successfully led large-scale programs and collaborated with senior stakeholders to achieve impactful outcomes. with a focus on process optimization and measurable outcomes.

    Certified in ITIL V3, PRINCE2, and ServiceNow Administration, and an MBA graduate from Indian School of Business (ISB), Sakshi combines innovation and leadership to deliver impactful solutions.

    Sreedevi Srinivas

    Director, Risk Advisory

    Sreedevi is a highly experienced consulting and assurance professional with over 20 years of expertise spanning industry and practice. She specializes in finance process optimization, having successfully led transformation and transition projects, including comprehensive change management initiatives.

    Her experience extends to managing SOX compliance, internal audits, and IT General Controls (ITGC) audits for clients across diverse industries and global markets.

    Sreedevi’s strategic approach and proven expertise make her a trusted advisor in driving operational excellence and risk management. Sreedevi is also a qualified Chartered Accountant (CA) and a Certified Information Systems Auditor (CISA).

    Neerav Modi

    Director, IT Risk Advisory

    Neerav is a highly accomplished IT risk advisor with extensive experience in assurance and consulting services for global clients. His areas of expertise include IT SOX, SOC 1 & 2, IT risk management, cybersecurity, and audits across applications, infrastructure, and RPA. Neerav is well-versed in data privacy, cloud security, mobile device security, and identity and access management solutions.

    A Chartered Accountant and Certified Information Systems Auditor, he also holds advanced certifications, including CISM, CCSK, CDPSE, CIPP/E, and ISO 27001 Lead Auditor. With a deep understanding of global IT risk landscapes, he empowers organizations to strengthen their IT frameworks and achieve operational excellence.

    Mayank Jha

    Director, IT & Cyber Assurance Services

    Mayank is an accomplished IT auditor and cyber assurance expert with extensive experience in IT consulting, FAIT audits, and assurance programs including SOC 1 & 2 and ISO 27001. With experience spanning energy, manufacturing, healthcare, and more, he has developed and led global assurance programs.

    A certified engineer and legal professional, Mayank combines strategic thinking and technical proficiency to help organizations navigate complex IT challenges with resilience and precision.

    Venkatesh Krishnamoorthy

    Partner, IT Advisory and Consulting Services

    Venkatesh is a seasoned professional with over 20 years of experience in IT Risk Advisory and Consulting, specializing in delivering strategic solutions for clients across various industries. As a Partner at PKF Consulting Services, Venkatesh spearheads the firm’s IT Advisory and Consulting services, focusing on helping organizations mitigate risks while enhancing operational resilience.

    With a proven track record of managing large-scale advisory engagements, Venkatesh brings a deep understanding of Cybersecurity, IT governance, risk management, and compliance frameworks, including GDPR, SOX, and ISO 27001. He leads cross-functional teams to assess and manage IT security risks, ensuring that clients are equipped with comprehensive solutions tailored to their unique business needs.

    Venkatesh’s key achievements include leading complex cybersecurity assurance audits for global enterprises, covering a wide range of controls across IT infrastructure, governance, and application security. His work has helped organizations in highly regulated sectors, such as banking, finance and insurance, strengthen their security postures and achieve compliance with industry regulations.

    Venkatesh is also instrumental in driving digital transformation initiatives for several global organizations, advising clients on their ERP implementation journey and adoption of emerging technologies such as cloud computing, AI and blockchain, with a focus on risk management and secure implementation.

    He is a Chartered Accountant and holds the Certified Information Systems Auditor (CISA) and Project Management Professional (PMP) certifications.

    Apply Now


      Upload Your Resume

      PKF Consulting Services is empanelled with CERT-In (Indian Computer Emergency Response Team) since October 2022. CERT-In is the National Incidence Response Centre for major computer security incidents in the Indian Cyber Community. CERT-In’s primary role is to raise security awareness among Indian cyber community and to provide technical assistance and advise them to help them recover from computer security incidents. CERT-In provides technical advice to System Administrators and users to respond to computer security incidents. It also identifies trends in intruder activity, works with other similar institutions & organisations to resolve major security issues, and disseminates information to the Indian cyber community.

      PKF Consulting Services is proud to be an Oracle Silver Partner, reflecting our commitment to delivering high-quality solutions using Oracle’s robust technology. This partnership enables us to leverage Oracle’s comprehensive suite of cloud applications and database services to provide clients with innovative solutions that drive efficiency and growth. Together, we enhance our capabilities in data management, analytics, and enterprise resource planning, helping organizations navigate their digital transformation journeys with confidence.

      AriaTech is a leading provider of value-added services in Risk Management. PKF Consulting Services partners with AriaTech to provide Configuration and User Access control Reviews for SAP and Oracle ERP using their products QuickAudit and BControl. With our combined expertise, we are well-positioned to help organizations manage their ERP systems effectively in today’s dynamic digital landscape.

      As a proud member of the PKF International network, PKF Consulting Services benefits from a vast global platform of independent accounting and advisory firms. With 214 firms operating across 150 countries, PKF International offers unmatched expertise in delivering audit, tax, and business advisory services tailored to local markets. Supported by a global team of more than 21,000 professionals, our partnership with PKF allows us to provide clients with cutting-edge solutions and deep industry knowledge. Together, we leverage the power of a global brand to meet the complex challenges of today’s business environment with confidence and excellence.