Full Name
Prabhath Karanth
Job Title
Lead, risk analyst
Company
Adobe Systems
Speaker Bio
Key accomplishments include:
• Co-author of the Adobe Common Controls Framework (CCF) which is widely adopted by all BU’s across Adobe
• Led the CCF implementation and successful achievement of SOC 2 – Type 2 (Security & Availability) and ISO 27001:2013 certifications for enterprise products within Adobe’s cloud offerings
• Led the PCI certification effort for Adobe.com e-commerce store successfully
• Led several security audit engagements with close partnership with legal/privacy council
• Led SOX 404 compliance/internal audit projects to achieve greater reliance on internal audit work and substantial savings in external audit fees
• Championed the reengineering of several compliance/security processes across adobe to scale them across the enterprise to achieve cost reductions and consistencies
• Led several advisory projects related to information security risk and compliance such as vendor information security reviews, BCP/DR, information security risk assessments etc.
• Facilitated the implementation of a common GRC platform that supports the business-level management of enterprise governance, risk and compliance (GRC)
• Co-author of the Adobe Common Controls Framework (CCF) which is widely adopted by all BU’s across Adobe
• Led the CCF implementation and successful achievement of SOC 2 – Type 2 (Security & Availability) and ISO 27001:2013 certifications for enterprise products within Adobe’s cloud offerings
• Led the PCI certification effort for Adobe.com e-commerce store successfully
• Led several security audit engagements with close partnership with legal/privacy council
• Led SOX 404 compliance/internal audit projects to achieve greater reliance on internal audit work and substantial savings in external audit fees
• Championed the reengineering of several compliance/security processes across adobe to scale them across the enterprise to achieve cost reductions and consistencies
• Led several advisory projects related to information security risk and compliance such as vendor information security reviews, BCP/DR, information security risk assessments etc.
• Facilitated the implementation of a common GRC platform that supports the business-level management of enterprise governance, risk and compliance (GRC)
Speaking At
