What compliance frameworks do you support?

We support SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, and other major compliance frameworks.

How long does a typical compliance audit take?

SOC 2 Type I typically takes 2-3 weeks, while Type II takes 8-12 weeks depending on scope.

Do you offer ongoing compliance support?

Yes, we offer fractional compliance services and ongoing support to maintain your compliance posture.

What industries do you specialize in?

We specialize in fintech, healthcare, SaaS, and other highly regulated industries.

Chaudhry Abrar Mukhtar

Director of Security Compliance

Professional Background

Professional Journey

With over 9 years of experience in Cybersecurity, Governance, Risk, and Compliance (GRC), I currently serve as the Director of IT Security and Compliance, leading enterprise-wide initiatives to safeguard information assets and ensure regulatory compliance. Throughout my career, I've held key leadership roles including Lead GRC Specialist, Manager of IT Security and Compliance, and Information Security Analyst, with a strong focus on implementing frameworks like ISO 27001, SOC 2, PCI-DSS, HIPAA, and NIST 800-53. My professional certifications include ISO 27001 Lead Auditor, AWS Certified Security – Specialty, CRISC, and CISM, equipping me to lead robust, business-aligned security programs.

Years of Experience

With AskDegree

Country of Origin

Pakistan

Areas of Expertise

Governance, Risk, and Compliance (GRC), ISO 27001, SOC 2, PCI-DSS, HIPAA, NIST 800-53, Risk Assessments, Gap Analysis, Internal Audits, Third-Party Risk Evaluations, Information Security Management Systems (ISMS), CIS Top 18, NIST CSF, Business Continuity Planning (BCP), Disaster Recovery (DR), Policy Development, Cloud Security Governance.

Automation Technologies

Drata, Secureframe, Vanta, TrustCloud, 6clicks, UpGuard, SecurityScorecard, JIRA, Confluence, Coda, Notion, Datadog, SentinelOne, ManageEngine, AWS, Dashlane, Microsoft 365, Google Workspace.

Education

Bachelor of Science in Computer Science (BSCS)
ISO 27001 Lead Auditor
AWS Certified Security – Specialty
CRISC, CISM

Professional Associations

ISACA Member
GISPP Member

Professional Experience

Manager – IT Security and Compliance (AskDegree LLC)

Lead GRC Specialist (Constellation Software Industry)

Information Security Specialist (Ibex Global)

Information Security Analyst (Sarena Textile Industries)

Key Achievements

Successfully led multiple organizations through ISO 27001 and SOC 2 certifications by establishing robust ISMS and control environments.
Spearheaded SOC 2 readiness projects, including risk assessments, control gap analysis, and audit coordination.
Implemented compliance automation platforms (Drata, Vanta, Secureframe, TrustCloud, 6clicks) to streamline evidence collection and ongoing monitoring.
Mentored and guided security teams and compliance staff on industry best practices, contributing to long-term security culture development.