Computer Screens

We believe in making our clients' compliance journey successful by creatively blending industry best practices and technology.  Our aim is to transform the clients' approach towards compliance from

'necessary evil' to 'fuel for growth'.



Audit | Consulting | Training


At Arunima, we perform Audit to add value and improve an organization's operations by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.

We do Consulting to help businesses get compliant to security standards and also help them make strategic decisions and uplift technology infrastructure. (viz. Information Security (ISO 27001), Business Continuity (ISO22301), Quality (ISO 9001)

We conduct Training to help an individual or an organization to increase compliance levels, accountability, and productivity at their respective workplace.

  • Technical Audits -

    • Vulnerability Assessment  Penetration Testing (VA/PT)

    • Application Security

    • Source Code Review

    • Network Infrastructure Security Assessment

  • Non-technical Audits -

    • ISO 27001 (Information Security

    • ISO 22301 (Business Continuity

    • General Data Protection Regulation (GDPR

    • ISO 20000-1 (IT Service Management)

    • Control Objectives for Information and Related Technologies (COBIT)

    • Health Insurance Portability and Accountability Act (HIPAA)

    • Trusted Information Security Assessment Exchange (TISAX)

    • ISO 9001 (Quality)

  • Evaluate – Analyze the “as is” condition of the operations of the organization and prepare a Gap Assessment Report.

  • Formulate – Create guidelines in terms of policies and procedures that are as per the compliance standard ‘formula’.


  • Enforce – Assist the Management Representative and Information Security Officer to deploy those formulated policies and procedures within the organization.


  • Examine – Internal Auditors then perform a review of the deployed and enforced policies and procedures by doing an Internal Audit. 


  • Certification – Hand-holding the organization to get certified to the designated ISO standard viz. ISO 27001, ISO 22301.

  • Governance, Risk and Compliance – Deliver training with the instances from Control Objectives for Information and Related Technologies (COBIT), ISO 19600 - Compliance management systems – Guidelines and U.S. National Institute of Standards and Technology (NIST 800-53) and other best practices.


  • Risk Management – Designed training program with ISO 31000: Risk management – Guidelines, COSO - Enterprise Risk Management - Integrated Framework and COBIT.


  • Information Security – Conceptualized training from ISO/IEC 27000 family of standards, SANS Security Policy Resource and COBIT.


  • Data Security – Impart training on Data Security with the inputs of General Data Protection Regulation (GDPR), ISO 27001 - Information Security, Safe harbor and Health Insurance Portability and Accountability Act (HIPAA).


  • Group of task driven, technology evangelist with distinctive "human centric" approach. 

  • Company strongly believes the team is a biggest asset, a key strength in projecting Arunima as a trusted partner.    


  • Blend of experienced professionals with multiple sectors and techno savvy freshers who are eager to change the way risk and compliance is managed.  


  • Successful implementations in Fortune 500 and Forbes Global 2000  


  • Our base: Focus on outcome, high quality service and deliverable, critical thinking, innovation, integrity and honesty.

Team Credentials and Certifications


Case Studies


Scope - Penetration Testing on the Software as a Service (SaaS) product based on  Azure and AWS PaaS services. The company offers Cybersecurity and Compliance Monitoring for medium to large scale in US and India.

Approach - Arunima Consulting was contracted to conduct a penetration test in order to determine the client’s exposure to a targeted attack. All activities were conducted in a manner that simulated a malicious actor engaged in a targeted attack against client with the goals of assess the security posture of client’s infrastructure from internet services


 Some Clients...


Client Testimonials


CISO, Cloud Managed WiFi Services provider in India and United States


Rebranding business operations is nothing less than a labor of love. Suraj’s guidance and input regarding information security and documentation creation was tremendously insightful and made the internal process so much easier. There were always many options to choose from without any pressure to make decisions quickly. Suraj was professional in his approach and communicated clearly regarding timelines.

I was very, very happy with his work and will definitely use him again for future consulting projects.”


(ISO 27001 Implementation)


Contact Us

Copyright © 2018 - 2021 Arunima Consulting Pvt. Ltd.

All Rights Reserved.


Annual Return (MGT-7)