Social Work
Sivakumar Krishnan
Security Audit and Compliance Manager
Kuala Lumpur
Summary
Sivakumar Krishnan brings along well over 24 years of experience, specializing on IT Outsourcing Operation and Support. Proven Management skills and in-depth knowledge of IT Service Management (ITIL Certified). Has exposure on IT Compliance Assurance and Industry Audit Management frameworks. Well exposure thru training and experience in project initiation and deployment around operation improvement using industry recognized methodology like Lean and Six SigmaStrong in analytical skills, capable of accessing conditions and implementing appropriate intervention. Worked on both local and global projects that helped assisted organizations meet their goals and saving targets (1.2mil). Siva was rewarded as "Top Talent", "Valued Contributor" and "Among the best" for the work and dedication. Accomplished Internal Auditor offering more than 7 years preparing internal audit documentation and reports. Knowledgeable in GAAP and operations auditing. Forward-thinking individual with great understanding of auditing procedures. Offering more than 4 years of expertise of regulatory issue validation for large businesses. Known for accuracy, efficiency and analytical skills.
Overview
2025
2025
years of professional experience
8
8
Certifications
3
3
Languages
Work History
Account Compliance Officer / European Account
DXC Technology
1 2019 - Current
- Work with account teams to review scoping material for SOC
- Prepare annual/quarterly audit plan for Customers internal and regulatory auditors
- Jointly review, agree and update plan with customer, as well the key stakeholders
- Communicate audit plan and schedule to relevant stakeholders every quarter
- Issue audit notification and freeze TOR (Terms of reference/Scope document) for every audit
- Support/facilitate internal and external audits, including compiling documentation and evidence
- Conduct internal reviews/prepare operation teams for various audits
- Agree on audit findings with the customer and delivery key stakeholders
- Review and agree on the draft report with customer, as well as delivery key stakeholders
- Assign remediation action plan as relevant to security controls framework and track to closure
- Work with account teams to review potential SOC deviations and reports
- Gather metrics from multiple sources to provide monthly executive reporting
- Validation of task completion associated with contractual obligation
- Initiate QEX DC Risk Assessments
- Security Configuration oversight of ITO managed devices for client security compliance standards
- Understanding and interpretation of compliance requirements (liaison with Qualified Security Assessor (QSA), Compliance Lead)
- Account Security Team to discuss risk and compliance issues
- Input findings into ESIS Risk and Compliance framework / register
- Manage an exceptions register or interface with clients
- Validation of Risk collateral for closure
- Key Achievement: Spearheaded the IT Compliance Team, successfully obtaining unqualified SOC 1 and SOC 2 reports for four consecutive years
- Recognized by Account Executive valued individual in Audit and Compliance for exceptional contributions and consistent performance
Internal Auditor / Shell Account and Compliance Officer / Ahold Account
DXC Technology
01.2017 - 01.2019
- Help client meet SOC 1 Reporting/ISAE 3000 Type 2 report requirement which provides assurance on suitability of design, existence and operational effectiveness
- Providing support and guidance to Control Owners and Operations teams on how to meet Control requirements by documenting business procedures and processes
- Work in particular on Controls around Access (Access control policy, Access Rights, Privilege and Password Management) beside Change Standard and Procedures
- Conduct periodic assessment/inspection on controls by reviewing policy and procedures with appropriate sampling to ensure effectiveness
- Perform inquiries and testing as needed to identify and resolve vulnerabilities, potential emerging issues and risk
- Worked with Control Owners in the identification of opportunities for improvements in operational areas
- Report administratively to management the risk, progress of remediation and opportunities for improvements in operational areas
- Ensure significant risks within the organization are being managed and controlled to an acceptable level as determined by controls
- Escalate matters to respective BU leadership (i.e
- To ASO, if matter concern of security risk that not adhere to)
- Maintain and cultivate a master inventory of businesses policies, practices and processes that include centrally retain all audit related records
- Evaluate the adequacy/readiness of the organization, Control Owners and Operation teams for external audits
- Assist external auditor (i.e
- EY and Deloitte) to engage organization Auditee@Control Owners (COs) for interviews, furnish artifacts and facilitate inquires
- Evaluate Audit findings/observation/opinion and work with Control Owners in due course for swift remediation
- Managing a variety of stakeholders and their expectations through regular communications and meetings
- Deliver insights and share best practice across the stakeholders
Project Lead / NGDM Deployment
DXC Technology
01.2014 - 01.2017
- Responsible for the successful NGDM project initiation, planning, execution, monitoring, controlling and closure of the project
- Engage and involved leadership team for successful transition by coordinating activities, resources & logistics
- Key Achievement: Orchestrated and Deployed Globally endorsed New Generation Delivery Model(NGDM), for entire ITO Delivery staff of 700 staff members ahead of target schedule, which later become key selling point for new logo deal pursuit
Productivity Lead / GOC Lean
DXC Technology
01.2011 - 01.2013
- Recruit practices that are more often managed with a primary goal of minimizing cost, by enabling business capability and capacity
- Engage and involved leadership team for successful transition by coordinating activities, resources, logistics and information
- Key Achievement: Achieved year end productivity improvement of 3.6% for leverage support pool of 250 staff over period of 2year with 18% work-load reduction
- This achievement helped HPE ITO GOC Msia, met 1.2mil saving target
Unix Delivery Manager / UNIX Infrastructure Support HP/HPE ITO GOC
DXC Technology
01.2008 - 01.2011
- Oversees the delivery of services, ensure consistently high service performance, monitors employees and evaluates customer feedback to develop quality improvement processes
- Ensuring future demand from growth and projects is understood and factored into capacity plans
- Key Achievement: Partnered with Client to create 3year strategic technical plan, which benefited HP with additional revenue with new purchase of infrastructure and improved significantly Client’s key application up-time
Operation Team Lead / Leverage Infrastructure Support HP/HPE ITO GOC
DXC Technology
01.2004 - 01.2008
- Provide Operation Guidance for a team of 18 Technical Support Team members, managing over 12 Outsource Clients with 20K Unix and Window Server Infrastructure
- Delegating tasks and set deadlines for the teams
- Key Achievement: Cross-trained all 18 Technical Support Team to managed both UNIX and Window infrastructure, internally
Education
Bachelor of Science - Computer Engineering
University Northumbria
UKSkills
IT Compliance Assurance
Risk and Audit
Analytics - Lean Six Sigma
Management Skills
Unix Platform Administrator
Certification
AWS Certified Cloud Practitioner, 2024
Skills - Topskills
Unix Platform Administrator, 5+ years, Analytics - Lean Six Sigma, 5+ years, IT Compliance Assurance, 5+ years, Management Skills, 4+ years
Keyrolesperformed
- Unix Delivery Manager, 3 years
- Lean Productivity Lead, 3 years
- Project Management, 3 years
- Audit and Compliance, 7 years
Workrewardsrecognition
- 2023, Valued Contributor for IT Assurance - SOC Report Compliance – Ahold Account
- 2017, Top 25 Talent, HPE Msia
- 2016, Among the Best NGDM Deployment for HPE ITO GOC
- 2015, Valued Contributor for Lean Productivity for Msia HPE ITO GOC
Profilesummary
24 Years 5 months, 19 years 9 months, Sivakumar Krishnan brings along well over 24 years of experience, specializing on IT Outsourcing Operation and Support. Proven Management skills and in-depth knowledge of IT Service Management (ITIL Certified). Has exposure on IT Compliance Assurance and Industry Audit Management frameworks. Well exposure thru training and experience in project initiation and deployment around operation improvement using industry recognized methodology like Lean and Six Sigma. Strong in analytical skills, capable of accessing conditions and implementing appropriate intervention. Worked on both local and global projects that helped assisted organizations meet their goals and saving targets (1.2mil). He was rewarded as 'Top Talent', 'Valued Contributor' and 'Among the best' for the work and dedication.
Interests
Timeline
Internal Auditor / Shell Account and Compliance Officer / Ahold Account
DXC Technology
01.2017 - 01.2019
Project Lead / NGDM Deployment
DXC Technology
01.2014 - 01.2017
Productivity Lead / GOC Lean
DXC Technology
01.2011 - 01.2013
Unix Delivery Manager / UNIX Infrastructure Support HP/HPE ITO GOC
DXC Technology
01.2008 - 01.2011
Operation Team Lead / Leverage Infrastructure Support HP/HPE ITO GOC
DXC Technology
01.2004 - 01.2008
Account Compliance Officer / European Account
DXC Technology
1 2019 - Current
Bachelor of Science - Computer Engineering
University Northumbria
Similar Profiles
Henry Arthur VincentHenry Arthur Vincent
Client Capability Lead at DXC Technology, DXCClient Capability Lead at DXC Technology, DXC
Nikhil C TNikhil C T
Business Analyst / Manual QA Tester at DXC Technology/Fidelis Technology Services Pvt LtdBusiness Analyst / Manual QA Tester at DXC Technology/Fidelis Technology Services Pvt Ltd
DHANASEKARAN RAJUDHANASEKARAN RAJU
IT Project Manager at DXC TechnologyIT Project Manager at DXC Technology