Shankar Kumar Jha

Cybersecurity Auditor & Consultant

CISA | ISO 27001:2022 Lead Auditor

I help organisations strengthen their cybersecurity by conducting enterprise audits, assessing IT risks, and implementing governance frameworks that are practical, effective, and audit-ready—aligned with global standards like ISO 27001, NIST, and COBIT.

CISAISO 27001:2022 LA

Services I Offer

Helping organizations strengthen their security posture, ensure regulatory compliance, and achieve audit readiness through tailored, industry-leading cybersecurity solutions and strategic consulting.

Information Security Audits

Comprehensive audits for IT infrastructure, applications, and business processes aligned with ISO 27001, NIST, COBIT (ISACA), and industry-specific regulatory standards.

ISO 27001:2022 Consulting

End-to-end guidance for implementing and maintaining ISO 27001:2022 ISMS — from gap assessment to internal audits and certification readiness.

IT Governance & Risk Management

Define and assess risk-based controls, develop governance policies, and implement frameworks like COBIT and NIST RMF for enterprise security.

Regulatory Compliance & GRC

Support for GDPR, RBI, HIPAA, and other global regulations with integrated GRC audits, documentation, and control mapping.

VAPT & Technical Risk Assessments

Conduct vulnerability assessments, penetration testing, and security configuration audits with detailed remediation advisory.

Cybersecurity Strategy & Roadmaps

Develop security maturity models, incident response plans, and multi-year cyber resilience strategies tailored to business goals.

Our Audit Process

A proven, transparent approach—aligned with global best practices.

1
Initial Consultation
Understand your business, define the audit scope, and gather high-level requirements.
2
Asset Inventory & Risk Profiling
Provide asset inventory (template supplied), classify information assets, and assess business impact.
3
Controls Assessment
Review and test technical, administrative, and physical controls as per ISO 27001, NIST, or COBIT standards.
4
Gap Analysis & Reporting
Identify gaps, document risks and nonconformities, and share a detailed audit report.
5
Remediation Advisory
Recommend prioritized actions, assist with remediation, and prepare for final compliance review.
6
Executive Review & Sign-off
Present findings to management, address queries, and formally close the audit with documented results.

Prime Features I Audit

Our CISA/ISO 27001 audits cover all critical security and compliance controls— giving you true peace of mind.

Pricing & Service Tiers

Transparent, competitive pricing for every organisation—no hidden fees. Custom quotes available.

Standard Audit

From ₹25,000Typical: ₹25,000 – ₹45,000/audit

Best for startups and MSMEs seeking a compliance check and baseline cybersecurity assessment.

Security Audit (ISO 27001/NIST/COBIT)
Risk Gap Analysis
Actionable Recommendations
Email Support

Request Quote

Pro Audit

From ₹55,000Typical: ₹55,000 – ₹90,000/audit

For SMEs and growing businesses with deeper compliance and technical risk needs.

All Standard features
VAPT & Technical Assessment
Compliance Mapping (GDPR/RBI/HIPAA)
Consultation Call (1 hr)
Priority Email Support

Get Started

Enterprise Audit

From ₹1,25,000Typical: ₹1,25,000 – ₹2,50,000+/audit

For large organizations, regulated industries, or those needing end-to-end security, audit, and reporting.

All Pro features
Onsite/Remote Audit
Executive Briefings
Continuous Compliance Monitoring
Dedicated Support

Request Quote

Download Asset Inventory Template

Use this professionally designed template to provide your asset details for a CISA / ISO 27001 audit.
Recommended for all clients before audit kickoff.

Download Excel Template

Introduction

Shankar Kumar Jha

Services I Offer

Information Security Audits

ISO 27001:2022 Consulting

IT Governance & Risk Management

Regulatory Compliance & GRC

VAPT & Technical Risk Assessments

Cybersecurity Strategy & Roadmaps

Audit Process

Our Audit Process

Initial Consultation

Asset Inventory & Risk Profiling

Controls Assessment

Gap Analysis & Reporting

Remediation Advisory

Executive Review & Sign-off

Prime Features I Audit

Prime Features I Audit

Access Control & User Management

Identity & Authentication Management

Network Security & Segmentation

Endpoint Security & Patch Management

Cloud Security & SaaS Governance

Data Classification & Protection

Asset Management & Inventory

Physical & Environmental Security

Backup & Disaster Recovery

Vulnerability Management & Technical Risk

Log Management & SIEM Monitoring

Incident Response & Forensics

Third-Party & Supply Chain Risk

Policy, Procedure & Documentation Review

Regulatory & Compliance Coverage

Awareness & Training Programs

Change & Configuration Management

Business Continuity & Resilience

Privacy & Data Subject Rights

Continuous Monitoring & Metrics

Price Range

Pricing & Service Tiers

Standard Audit

Pro Audit

Enterprise Audit

Download Audit Asset Inventory Template

Download Asset Inventory Template