Kush Sharma, Cism, Cisa, Cdpse, Pmp
About Kush Sharma, Cism, Cisa, Cdpse, Pmp
Kush Sharma is a Senior Security Specialist in the Technology Controls Program at the U.S. Securities and Exchange Commission, with over 20 years of experience in IT operations, security, governance, risk, audit, and consulting.
Work at U.S. Securities and Exchange Commission
Kush Sharma currently serves as a Senior Security Specialist in the Technology Controls Program at the U.S. Securities and Exchange Commission. He has held this position since 2020, contributing to the organization's efforts in securing technology and managing risks associated with information security. His role involves implementing security controls and ensuring compliance with regulatory standards.
Previous Experience in Information Services
Prior to his current role, Kush Sharma worked at Reed & Associates, CPAs, where he held the position of Head of Information Services (CIO) from 2015 to 2017. In this capacity, he oversaw the information services department, focusing on enhancing IT operations and security measures. Additionally, he served as a Senior Manager in DevOps & Data Science at the same firm from 2011 to 2014.
Consulting Roles in Cybersecurity and Risk Management
Kush Sharma has extensive experience in consulting roles, including his position at Blue Cross and Blue Shield of Illinois, Montana, New Mexico, Oklahoma & Texas, where he worked as a Consultant in Cyber Strategy and Risk Management from 2018 to 2020. He also served as a Consultant for Governance, Risk & Compliance at Stericycle for a brief period in 2017. His consulting work has involved developing strategies for risk management and compliance across various industries.
Education and Expertise
Kush Sharma earned a Bachelor's degree in Computer and Information Sciences and Support Services from the University of Bridgeport. He possesses over 20 years of experience in IT operations, security, governance, risk, audit, and consulting. His expertise includes a wide range of frameworks and standards such as NIST, COBIT, ITIL, and PCI DSS, among others.
Focus on Governance, Risk, and Compliance
Kush Sharma specializes in strategizing and executing Governance, Risk, and Compliance (GRC) functions. His work encompasses the development of policies and procedures, oversight and controls, and training initiatives. He emphasizes that effective security measures do not necessarily require high costs and can be achieved through manual processes supported by technology and continuous training.