GRC & IT Consultant

Hi, I'mKov Rastogi

I bridge the gap between technology, finance, and security, specializing in third-party risk management and CMMC compliance.

View Projects Contact Me
LinkedInEmailPhone
My background and journey

About Me

I'm a results-driven professional who thrives at the intersection of technology and finance, where data meets strategic decision-making. With a foundation in International Business, Finance, and Data Science from UC San Diego, I've built expertise across IT consulting, data engineering, and business analysis, specializing in Governance, Risk, and Compliance (GRC) frameworks.

My passion lies in leveraging AI and automation to transform business operations and risk management. I focus on building sophisticated models that not only drive business insights but also ensure regulatory compliance and security. Whether it's developing automated risk assessment systems, creating predictive financial models, or implementing AI-driven compliance monitoring, I'm energized by solutions that bridge the gap between cutting-edge technology and sound governance.

Name
Kov Rastogi
Email
kovidrastogi@gmail.com
Location
Los Angeles
Availability
Open to opportunities
Download Resume
Technologies & Frameworks I work with

My Skills

GRC & Risk Management

Third-Party Risk Management (TPRM)
Vendor Due Diligence
Risk Assessment Frameworks
CMMC Level 2 Implementation
NIST 800-53 Controls
DFARS Compliance
Regulatory Compliance Monitoring

Security & Compliance

DoD Contractor Security
CUI Protection
Zero-Trust Architecture
Information Security Risk Assessment

Assessment & Analysis

Security Report Analysis
Vendor Documentation Review
Risk-Based Metrics Development
Compliance Tracking
Remediation Support
Cross-Functional Collaboration

Technology & Tools

Windows Server 2019/2022
Active Directory
BeyondTrust PAM
Windows Defender ATP
ServiceNow ITSM
Microsoft 365 Government
Azure Government

Data & Reporting

SQL
Snowflake
PowerShell
Python
Tableau
Power BI
Risk Dashboard Development
ETL Processes

Process Improvement

Workflow Automation
Process Documentation
System Integration
Continuous Monitoring
Program Enhancement Initiatives
Highlights of my work

Featured Experience

SCE Strategic Project Dashboard

An agile, data-driven evaluation and management system for strategic projects at Southern California Edison, featuring a portfolio health cockpit, initiative roadmaps, and financial overviews.

Dashboard
Data Visualization
Project Management
Chart.js

Hyperautomation Blueprint

A strategic framework for enterprise transformation, detailing a five-phase lifecycle from discovery to optimization, complete with a technology ecosystem and prioritization matrix.

Hyperautomation
Strategy
RPA
AI
Process Mining

The Algorithmic Shift: An AI Research Report

An interactive report exploring how AI and automation impact societal adaptation to global demographic changes, with case studies and policy analysis.

AI Research
Societal Impact
Data Visualization
Governance

GRC Strategy: Radical Resilience

An interactive dashboard detailing an AI-driven Governance, Risk, and Compliance (GRC) framework designed to transform a defense contractor's cybersecurity posture.

GRC
Cybersecurity
Strategy
AI
Risk Management
My professional journey

Work Experience

GRC/IT Consultant (Contract)

Feb 2025 – Present

Airborne Systems

  • Orchestrated the third-party risk management (TPRM) lifecycle for over 70 critical vendors, achieving a 100% first-pass success rate for the CMMC Level 2 certification audit by implementing a rigorous evidence-gathering and validation framework.
  • Collaborated with cross-functional teams including Operations, Cybersecurity, and compliance officers to identify and remediate security gaps, implementing risk-based controls that achieved 25% network latency reduction while maintaining regulatory compliance.
  • Architected the organization's GRC documentation framework, creating a centralized system for risk assessments and compliance artifacts that streamlined federal audit cycles and reduced evidence-gathering time by 40%.
  • Managed the continuous monitoring program for high-risk vendors, proactively identifying and mitigating emerging threats to maintain alignment with DoD security mandates and Zero Trust principles.

Energy Data Analyst (Contract)

Sep 2024 – Feb 2025

Prologis

  • Conducted comprehensive vendor risk assessments for utility partnerships with PG&E and SCE, resolving complex API integration issues and ensuring regulatory compliance across 4 regional markets through systematic due diligence processes.
  • Collaborated with Operations and Engineering teams to assess third-party technology risks, implementing data normalization pipelines and automated monitoring solutions that reduced processing time by 15%.
  • Maintained accurate vendor assessment records and tracking systems using SQL, Snowflake, and Salesforce Lightning, supporting strategic risk management reporting and increasing project prioritization efficiency by 20%.

IT PM Intern

June 2023 – June 2024

Southern California Edison

  • Led cross-functional risk assessment projects using structured methodologies, identifying $47K in operational efficiencies through comprehensive vendor evaluation and risk analysis processes.
  • Developed risk scoring algorithms and assessment frameworks using SQL and Python analytics, enabling $31K in cost avoidance through predictive risk assessment models and strategic vendor prioritization.
  • Collaborated on third-party system integration projects for critical infrastructure monitoring, improving data accuracy by 40% and generating comprehensive risk dashboards that enhanced executive reporting efficiency by 25%.

Information Technology Specialist

Sep 2022 – Oct 2023

UC San Diego

  • Provided comprehensive security assessments and risk evaluations across Windows Server, macOS, and Linux environments for 15,000+ users, resolving authentication vulnerabilities and achieving 95% first-call resolution rate.
  • Supported Identity Access Management implementations including Okta SSO and Duo MFA solutions, conducting security risk assessments and ensuring compliance with institutional security standards, reducing security incidents by 30%.
  • Developed security incident response documentation and risk management workflows using ServiceNow ITSM, creating comprehensive assessment templates and training programs that increased organizational security awareness by 40%.
Let's work together

Get In Touch

Contact Information

Let's Connect

Find me on LinkedIn, send an email, or give me a call.

Current Status

Available for freelance work and full-time opportunities

Send Me a Message