Speakers
Chief Guest
Shri. Santhosh George, CEO, Reserve Bank Information Technology Private Limited (ReBIT)
Santhosh George is the Chief Executive Officer of ReBIT. He was elevated to the role of Chief Executive Officer in April 2023 after his tenure as Head of Project Management Vertical since 2021.
Prior to joining ReBIT he was the President and Head of Enterprise Security product engineering and AI/ML Research Lab at Sequretek.
Mr. Santhosh was responsible for global implementation and professional services at Cognizant, KPMG and Rolta as well as enterprise product engineering with global teams at Oracle Corp and Misys. He has extensive experience in digital and cloud enablement and technology led business transformation in BFSI, retail and supply chain among various verticals. In his long and illustrious career has been at the helm of building application platforms and products in eBusiness suite ERP, leading global product engineering for banking products in their global development centres and set up industry product solutions group for enterprise applications.
He is a Computer Science engineer from National Institute of Technology (NIT), Calicut and has a post-graduation in Business Management from Xavier School of Management (XLRI).
About the Talk: Cyber Culture by Design: Embedding Trust Beyond Tools
Cyber culture by design emphasizes embedding trust into organizational practices, not merely relying on technological tools. It promotes proactive integration of security and ethical principles into daily operations, encouraging employees to make informed decisions and fostering a shared sense of responsibility. By nurturing open communication, ongoing education, and transparent governance, organizations develop resilience and adaptability to evolving cyber threats. Building trust beyond tools creates a supportive environment where individuals collaborate and remain vigilant, ensuring cybersecurity becomes an inherent part of the company’s DNA—strengthening defenses from within and safeguarding long-term digital trust and integrity.
Balaji Rangachari, Consulting Solutions, Sr. Director, Oracle India
Speaker Profile
An ardent believer in the “Customer First” philosophy, driving solution-oriented engagements for Oracle Consulting Services. Specializing in collaborating with clients to tackle complex business challenges, leveraging the right technologies and orchestrating the involvement of expert teams for optimal outcomes. With over 33 years of experience across Telecom and IT—including roles in Sales, Business Development, and Solution Specialization—have been instrumental in delivering robust security solutions to BFSI customers in addition to ERP, Analytics, Integration solutions across India and Sri Lanka
About the Talk: Culture as Control: Turning ISO Standards into Ethical Practice
Manoj will emphasizes that in today’s AI-driven, hyper-connected world, organizational culture is a vital control mechanism—more effective than technology alone. It explores how ethical behavior, shaped by leadership and reinforced through ISO standards, builds resilience, reduces insider threats, and fosters trust. Key themes include ethical AI, cybersecurity trends in India, and the shift from compliance-driven to culture-driven governance. ISO standards like 27001, 27701, and 42001 are shown as tools to embed ethics into daily operations, making culture the ultimate firewall and strategic differentiator
Manoj Kulkarni, ICT Business Head – DNV Business Assurance, India
Speaker Profile
Manoj comes with 30+ years of hands-on experience in Quality Management, Information Security, IT Service Management & Business Continuity. He has worked extensively in auditing, assessing, and consulting various sectors such as IT &ITES, ICT, Automotive, F&B, BFSI, Electronics, Consumer Durables, and many more. He has provided strategic advice and guidance to senior management of some of the top organizations throughout consulting and auditing engagements.
About the Talk: The Board’s Lens on Risk and Governance
SUNDARESAN RAJESWAR – BA, FCA, CIA, CISA, CFE, CRMA, CFSA, CCSA, CGAP
Speaker Profile
Sundaresan is a well-recognised strategic advisor and governance architect with over 30 years of leadership across governance, audit, risk, forensics, and organizational transformation. His career spans many sectors marked by a consistent focus on ethical growth, strategic clarity, and operational resilience.
He advised boards and C-suites in India and the Middle East and engaged in over 50 countries. Sundaresan brings cross-cultural fluency and deep insight into global business dynamics.
Rajeswar is bestowed with the Internal Audit Beacon Award (2022) as one of “A Dozen Who Made a Difference”, the CA Achiever Award (2017) for outstanding contributions, and the Toastmasters Presidential Citation (2024) for extraordinary leadership.
Rajeswar is in the IIA Global Committee for Advocacy, & Research & Education. He is in the CA Board of Studies Academic Mentor & in the Committee for Aggregation of CA firms.
The board’s lens on risk and governance has evolved from compliance oversight to strategic stewardship. Directors are expected not only to safeguard the enterprise but to shape its resilience, ethics, and long-term value creation. The session will spotlight:
A new lens on best practices for Boards & Diagnostic Tools to assess Board narratives that elevate oversight into stewardship The 5P’s of Governance Model Audit Committee Practices & Priorities CISO Involvement and Influence on Board and C-Suite.
About the Talk:AI/ML Security: From Crisis to Compliance
Adhithya R, Product Manager,SQ1 Security
Speaker Profile
Adhithya Rajasekaran is an engineer-turned-product manager with 12+ years of experience, currently leading product management at SQ1 Security. A recent entrant into the GRC and cybersecurity space, he has developed a strong interest in AI security and governance, and actively engages with open-source through the Linux Foundation and OpenSSF.
AI adoption is accelerating across industries, but so are concerns around safety, bias, and regulatory exposure. Security gaps in models and datasets now pose material risks to enterprises and their customers.
This session highlights how AI/MLBOMs and guardrails provide the missing layer of control, bridging security with governance and compliance frameworks.
Key Takeaways:
- Understand emerging AI/ML security risks and their business impact.
- Learn how AI/MLBOMs improve visibility and accountability.
- See how guardrails enforce governance and reduce operational risk.
- Gain a structured path from today’s AI security chaos to sustainable compliance.
About the Talk: Innovation VS Governance Managing Without Loosing Control
KUMAR MS, CHIEF INFORMATION OFFICER, IITM PRAVARTAK TECHNOLOGIES FOUNDATION
Speaker Profile
The modern business environment demands agility and continuous innovation to remain competitive. However, rapid progress must be balanced with sound governance to ensure sustainability, compliance, and risk management. This address focuses on the delicate interplay between innovation and governance, emphasizing that governance is not a constraint but an enabler that provides direction and accountability. By adopting structured frameworks, organizations can accelerate innovation while maintaining oversight and control. The discussion will illustrate how effective governance acts as a stabilizing force, allowing enterprises to pursue speed, creativity, and transformation without compromising integrity or long-term objectives.
Kumar M S is a highly accomplished Technology Leader, Cyber Security Advisor, and ICT Expert, renowned for delivering complex, mission-critical technology programs across Telecom, Transport, Manufacturing, Healthcare, and e-Governance domains. His distinguished career is marked by a rare blend of technical excellence, program leadership, and the ability to seamlessly align technology solutions with business and strategic objectives. Throughout his 30+ years of professional journey, he has held senior technology leadership with reputed organizations such as IITM Pravartak Technologies Foundation, Deloitte, PwC, Wipro.His extensive work with Government and Law Enforcement, like Cyber Crime Wing, Greater Chennai Corporation, Demonstrates his ability to operate at the intersection of technology, public safety, and governance offering both strategic advisory and program delivery support.
He is member of CERT-IN Working group on “Guidelines & Framework for Auditing ICS/OT Environments”
About the Talk: Empathy as Strategy: Shaping Culture and Trust in Governance
This Talk delves into Governance is about people, not just policies. By using empathy strategically, leaders can understand diverse perspectives, foster inclusion, and build trust among stakeholders. With growing regulatory complexities and societal expectations, governance must transcend compliance to nurture ethical cultures and responsible decision-making. Integrating empathy into leadership and governance practices enhances resilience, stakeholder confidence, and sustainable growth. This approach fosters a culture of accountability, transparency, and trust, essential in today’s evolving business landscape. Empathy-driven governance is crucial for creating ethical organizations that can adapt and thrive in changing environments. Key Takeaways ate Empathy as a Leadership Tool, Culture & Accountability, Stakeholder Trust, Sustainable Growth
Ravi Subbiah, Managing Partner – Cybersecurity, TCS
Speaker Profile
Ravi is a seasoned cybersecurity expert, boasts 25 years of experience in the IT industry. As a certified security and program management professional, Ravi has managed security portfolios exceeding $25 million. Renowned as a leader in the cybersecurity domain, Ravi has been instrumental in shaping security strategies and roadmaps, fortifying defenses against cyber threats. An award-winning industry leader, Ravi has also contributed to numerous conferences and publications, emphasizing insights on cybersecurity, privacy, risk, and cloud security. He has been awarded Cybersecurity Resilient Leader by CIO News for 2024 and Top 100 CISOs in India by the CISO Platform for 2024. He is an Executive Core Committee member – Global Cybersecurity association and Harvard Square President Circle founding Member (Harvard University). He holds multiple certification like Leaders Excellence Certification – Harvard Square , CCISO, CISM< CIPM, CCSK, PgMP, PMP, CEH.
About the Talk: GRC Storytelling: Communicating Risk and Value to Diverse Stakeholders
Cybersecurity risks are universal, but their impact depends on how they’re communicated. The same incident can mean technical flaws for IT, financial loss for executives, disruption for the public, or systemic risk for regulators. Misaligned communication leads to poor decisions.
By translating risks risk into value, cybersecurity moves from being a cost centre to being a business enabler
VASUDEVAN GADDAM, Chief Information Security Officer, Tectona SoftSolutions Pvt Ltd, Chennai
Speaker Profile
Vasudevan Gaddam, brings over 27 years of Global cybersecurity leadership across semiconductors, banking, healthcare, and operational technology sectors.
His expertise lies in integrating risk-based controls, real-time vulnerability management, and automated continuous audits to strengthen cyber resilience and ensure ongoing compliance.
With two decades of leadership at HCL Technologies India & Overseas as operations Head.
Holds certifications including CISA, ISO 27001 Lead Auditor, ITILv3, and Six Sigma Green Belt, Vasudevan combines strategic vision with operational execution.
About the Talk: GRC 2.0 Skills: Upskilling for the Next Generation
About the Talk: Digital Ethics: Governing Technology with a Human Compass
The presentation explores digital ethics – The practice of guiding technology use and development with a fundamentally human approach. We will discuss what is digital ethics, it’s growing importance in today’s world, examine the core values that shape ethical decision making in the digital space. The talk will highlight both ethical and unethical behaviours in technology, share real world examples that illustrate these challenges, introduce established frameworks for implementing ethical standards.
We will also touch upon how controls across people, processes and technology support ethical governance and conclude with practical steps for applying digital ethics within organizations.
Lakshmi Balaji, Director, AstraZeneca India
Speaker Profile
Lakshmi Balaji is a seasoned information and cyber security professional with over 17 years of extensive experience in IT industry, spanning various domains.
Over the years, she has made significant contribution to the BFSI sector, gained valuable insights from consultancy roles and worked with NBFCs as well as diverse clients across the globe.
Currently she serves as a director in a leading healthcare and biopharma organization, bringing a wealth of expertise and a global perspective to the field of digital security.
About the Talk: RegTech in Action: Automating Compliance Without Losing Context.
In today’s fast-changing regulatory landscape, compliance can’t just be about ticking boxes. This session explores how RegTech streamlines compliance through automation, reducing manual effort and errors, while preserving the vital context behind every regulation. Join us to see how technology makes compliance faster, smarter, and more meaningful.
The session shall focus on “Embedding Human-in-the-Loop (HITL) Controls”, the need, a simple workbook outline for participants to take away, a Training guide and more. This is a power-packed session on “GRC, Automation with CONTEXT at the centre-of-the-table”
Mani N, Co-Founder, Head Strategy, GTM Global Markets, GRCxperts
Speaker Profile
Mani comes with about 20 yrs of professional cybersecurity career including Big4, M&M etc with a Double Post-Graduation & Industry certifications (past/current) viz., CISA, CEH, ABCP, ITIL, COBIT, ISO 27001 LA, CDPSE, ISO 42001 (AIMS)
An avid speaker, writer and hands-on consultant with experience in hands-on implementing large-scale GRC, Information & cybersecurity Security projects globally in BFSI, Healthcare & Manufacturing.
Set up cybersecurity practice lines viz., GRC, Application Security, Cloud Security, OT Security
An acknowledged thought Leader, his Philosophy of “Live Local, Think Global” led him to liaise with leading research entities such as Gartner’s; contributing to many success stories at client engagements.
He has presented at several national & international conferences on sessions related to GRC, Information & Cyber Security & Risk Management. These include: CIO Summit, Gartner, GRC Summit, CII Connect, ISACA Annual Conference
Current focus is on “Derisking AI”, with focus on ‘AI for GRC’ and ‘GRC in AI’ programs
About the Talk: Continuous Auditing Automation
Today’s digital adoption and deployments are fast paced. No longer a periodical audit will be sufficient. 10s & 100s of microservices, dynamic cloud environments, containers getting auto deployed in minutes. The scale & speed of change are making the traditional audit models shrunk and do I have to mention the shrunk in the budgets of audit team?
Is it all doomed? Not at all.
Continuous Audit Automation is a thought where the preventive controls can be embedded in deployment automations, detective controls can be put in place for identifying any run-time drift, real-time visibility. Let’s have an open conversation on the opportunities, challenges & how automation can empower the audit function
Sivaramakrishnan N, CISO & Head of Infosec, M2P Fintech
Speaker Profile
Sivaramakrishnan N is a Technlogy & security leader with over two decades of experience across banking, fintech, and consulting.
Currently serving as Vice President & Group CISO, he’s led large-scale security transformations, cloud migrations, and compliance programs across global platforms.
Known for blending deep technical know-how with practical execution, Siva has built secure digital ecosystems, scaled DevSecOps practices.
He’s passionate about making security seamless, scalable, and business-friendly—without slowing down innovation.
About the Talk: Integrated Assurance: Connecting Cyber, ESG, and Financial Controls
This session explores how cyber, ESG, and financial controls—often managed in silos—must converge to deliver integrated assurance. With India’s regulatory push (CERT-In directives, DPDP Act, MCA audit trails, SEBI BRSR Core) and global parallels (SOX, SOC 1 and 2, ISAE 3000), the discussion highlights the need for connected assurance to reduce blind spots and strengthen trust. The session also demonstrates the risks of fragmentation. The session introduces a convergence model of People, Process, and Technology, considers future frontiers in AI, and positions CISAs as integrators of trust.
V. Sriram, Partner, Bala & Co
Speaker Profile
Mr. V. Sriram, FCA, CISA, DISA (ICAI), CPA (USA), CEH, ACCA (UK), is the Managing Partner of Bala & Co. With 20+ years of professional experience, he specializes in data security and privacy audits, SSAE 18/SOC audits, AI Governance and General Risk Controls compliance. His unique combination of financial and technology expertise enables him to guide organizations in building trust through integrated assurance.
About the Talk: Data Governance as a Growth Enabler: Quality, Privacy & Ownership
About the Talk: The Talent Equation in GRC: Building Cross-Disciplinary Teams for Tomorrow
Cybersecurity GRC is no longer paperwork — it is the language of digital trust. Yet organizations worldwide face an acute shortage of cyber GRC talent, especially in India. In this session, Uma Ramani explores the “Talent Equation” — why building cross-disciplinary teams is critical to resilience.
Uma Ramani, Head – Cyber Oversight & Governance, IDFC FIRST Bank
Speaker Profile
Uma Ramani is Head of Cyber Oversight and Governance at a digital bank, with over two decades of experience in cybersecurity strategy, risk, and regulatory compliance. A Harvard-certified cybersecurity leader with global credentials (CISA, CISM, CIA), she has built security frameworks from the ground up. Uma is passionate about digital trust, security-by-design, and enabling informed choices through her growing thought leadership in the cybersecurity space.
About the Talk: Innovation As A Control
Compliance has long been treated as a burden manual checklists, audits, and reactive fixes. But today, innovation itself is becoming the strongest form of control. From GRC 1.0’s paper-based era, to 2.0’s automation, and now 3.0 powered by AI, predictive analytics, and continuous monitoring, digital tools are redefining how we manage risk and build trust. The question is will compliance stay a cost center, or evolve into a true driver of growth and resilience?
Vignesh C, CEO, WhizzC
Speaker Profile
Vignesh is the Founder & CEO of WhizzC, a cybersecurity leader with over a decade of experience in compliance and ethical hacking. He co-founded Vault Infosec in 2016, securing 50+ companies, and in 2024 launched WhizzC to make compliance seamless and startup-friendly using automation and AI. He holds multiple certifications including CISA, CEH, MCP, CCNA, ISO 27001 Lead Implementer, and Splunk Certified User. Known for his hands-on skills, Vignesh once hacked into 50+ companies within just 6 hours, a story he detailed in his widely read Medium blog.
