About Paras Shah

PRACTICE LEAD , STRATEGIC PLANNING

About Paras Shah

PRACTICE LEAD , STRATEGIC PLANNING

Paras Shah

Paras Shah 2560 2337 Paras Shah

SKILLS AND EXPERIENCE:

Paras has over twenty-five years’ experience in business and technology consulting. He has offered consulting and advisory services to wide-ranging commercial, public sector, educational and not-for-profit organisations to solve business and technology problems in areas such as Business and IT strategy alignment, Risk management, Governance, IT capability maturity assessment, Management Systems, Information Security, Business Continuity, and
Process and business improvements.

He started his career as a Chartered Accountant and ventured into the field of Information Technology as an Auditor in 2001. He leveraged his understanding of finance and cost accounting principles across large IT implementation and outsourcing projects. Paras is a Certified Trainer and Certification Assessor for Management Systems Certifications including ISO27001 (Information Security), ISO9001 (Quality), ISO20000 (IT Service Management), and ISO22301 (Business Continuity). He’s also accredited trainer for COBIT5 Foundation, Implementation and Assessor trainings.

Some of his volunteering involvements include:
  • Immediate Past President, ISACA Sydney Chapter (President 2014-2016)
  • ISACA Framework Committee Member (2012-2015)
  • Member of Standards Australia’s Quality Management Committee ‘QR-008’, responsible for ISO 9000 family of standard (2012-2019)
  • Member of Standards Australia’s Security Techniques Sub-committee ‘IT-012-4’, responsible for ISO 27000 family of standard and other (2013-2019)

Trainer

Training:
  • ISO27001 Lead Implementer
  • ISO27001 Lead Auditor
  • Certified in the Governance of Enterprise IT (CGEIT)
  • Certified in Risk and Information Systems Controls (CRISC)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • COBIT5 Foundation,
  • COBIT5 Implementation
  • COBIT5 Assessor
  • Technology Risk Management Foundation
  • Technology Risk Management Lead Implementer
  • ISO27001 Foundation
  • ISO27001 Practitioner
  • (Organisation) Change Management – Practitioner
  • (Organisation) Change Management – Foundation
Customised training
  • Information Security for Senior Executives and Board
  • COBIT5 QuickStart or Masterclass
  • COBIT5 for Risk
  • COBIT5 for Assurance
  • COBIT5 for Information Security
  • ISO27001
  • ISO31000 / ISO38500
  • IT Governance for Non-IT Professionals
  • IT Risk Management for Non-IT Professionals