Romharsh Razdan

Partner, Digital Trust

KPMG in India

Romharsh is a Partner at KPMG in India, Digital Trust. He has over 15 years diverse experience advising clients across the globe, primarily in financial services. He leads the Payment Risk and Co-leads Cloud Security practice for Digital Trust in India. He is also part of KPMG Global Cloud and Operational Resiliency Team.

He has led multiple regulatory (technology and risk regulations/circulars/advisories) assessments and advisory projects for multiple banks, IT/ITeS, Insurance and FS companies.

He has led multiple cloud security advisory projects for multiple Banks, AMC, MFs and IT companies.

He has led multiple payment system (I-Banking, SWIFT, ATM, Instant Money transfer, M-Banking, Mobile Wallets etc.) assessments/review using STRIDE Threat Model for multiple banks.

He has led 17+ projects for large banks in India for developing a cyber security strategy and framework with cyber crisis governance program covering 3rd party risk management areas based on RBI, SEBI, Cert-In, NIST Guidelines and India National Cyber Security Policy.

He has led a project in assisting the 4+ banks in review, design and establish an enterprise fraud risk management center and related processes including the latest cyber security frauds and manual frauds.

Before KPMG in India, Romharsh has worked with India’s largest public sector bank as a manager in IT department looking after vendor-related web portals including internet banking.

Areas of Expertise: 

Romharsh has deep experience in providing services in the space of Emerging Technology Security (Cloud, AI/ML, IoT, RPA), Payment Security, Cloud Security Engineering & Governance, Regulatory Compliance (Payment Regulatory Compliance and Technology), Vendor Risk Management & Governance, Tech. Regulatory Advisory/Assessments, Tech. Risk, IT Strategy and Architecture, IT System Selection, Data Centre Operations and Management, IT due diligence, IT Governance, Business Continuity, ITSM (Incident, Change, Patch, Problem Management) to a large number of organisations, which are primarily in Banking, Telcom, IT, AMC, Insurance and NBFC sector. 

Cloud Security Engineering & Governance, Regulatory Compliance (Payment Regulatory Compliance and Technology), Technology Risk, Vendor/ System Selection and Program Risk Management, Enterprise Fraud Risk Management, Cyber & Operational Resilience, IT Risk, Governance and Security, Technology Enabled Transformation and Business Continuity.

  • 2 years full time MBA from Symbiosis International University Pune

  • B. Tech. in Computer Science & Engineering

  • Certificate of Cloud Security Knowledge (CCSK)

  • CSM ScrumMaster Passed and PMP Trained

  • ISO42001 LA, ISO31000 LA, ISO27001 LA, ISO22301 LA, ISO27017 Trained, ISO27701 LA

  • Certified Blockchain Expert and Certified Hyper ledger Expert