Banking And InsuranceCryptocurrencyDigital MarketingErpFood And BeveragesHealthcareLegalMarketing And AdvertisingMedia And EntertainmentMetals And MiningOil And GasRetailTelecom
Artificial IntelligenceBig DataCloudCyber SecurityE CommerceEducationGaming And VfxIT ServiceMobileNetworkingSAPScience And TechnologySecuritySoftwareStorage
CiscoDatabaseGoogleIBMJuniperM2MMicrosoftOracleRed Hat
CEO ReviewCompany Review

The Silicon Review Asia

VISTA InfoSec: Providing customized end to end InfoSec and Risk Management Services

The Silicon Review
June, 2017

thesiliconreview-narendra-sahoo-director-vista-infosec“We are focused to provide a level of professionalism, expertise and transparency exhibited and expected by the worlds finest and the world’s largest.”

Set up with an aim to render outstanding consulting services, VISTA InfoSec Pvt. Ltd. is a well-established name in the business world today.   Incorporated in the year 2004, the company has been engaged from day one in providing niche area services in Information Risk Consulting and Infrastructure Advisory.

Leading the market with their compliance services in providing standard services such as consulting in PCI DSS, ISO27001, ISO22301, ISO20000, alongside providing niche services in the areas of regulatory and statutory compliance such as HIPAA, SSAE16, SOX, FISMA, RBI and NPCI requirements; to improve ROI on the assignment, the company also handholds clients to implement recommendations with a team of Technical Experts, with no product selling. Apart from process consulting services, the company also provides technical assessment services such as VA/PT, Mobile Appsec, Web Appsec, Virtualisation Risk Assessment and Social Engineering. To be able to provide more comprehensive level of services, the company recently become a PCI DSS certifying body too. The move has not just extended horizons for them but has upped the level of trust their clients can have on their consulting services.

Headquartered in Mumbai, VISTA InfoSec makes its presence felt in global markets with businesses in the US and Canada, it strives to move into the expanding markets of Australia, UK and the Middle East.

Being Different in the Domain

Established as a leading brand that is trusted as a group of experts who function as a part of the client internal team and not just as a vendor, VISTA InfoSec has carved a niche for itself in the consulting space. Driven by a comment by a close client “I am fed up with consulting companies handing out hundreds of pages of reports in Word and Excel, almost impossible to use”; they have established an Internal Software Development team to develop a GRC (Governance, Risk and Compliance) and a MSS (Managed Security Services) product. The respective software platforms have been developed to help clients get the max ROI from their services; plus a fully customizable infosec training platform to enable clients ensure their employees are trained on their infosec responsibilities on a regular basis without any extra cost!


Since its inception, the company has been credited for winning the trust of prestigious clients. The list includes most of the banks such as PMC, TJSB, SVC, KJSB, GPPJSB; payment processors such as- Billdesk, ISG, EPS, CitrusPay and also large conglomerates such as the Tata Group, Cipla, L&T and even IBM and HP. They also take pride in being considered as vendor of choice for the Indian Navy having executed multiple strategic consulting assignments for them.

As far as specific industries are concerned, the company sees significant traction in BFSI, Pharma and Retail sectors and they see BFSI showing significant growth in the future.

Hear it from their Clients

“We have partnered with VISTA InfoSec for assisting us in implementing a combined ISMS framework encompassing the ISO 27001 and PCI DSS guidelines for our business. Their domain expertise and consultative solution driven approach were key to address the IT security risks arising from our complex processes. We greatly appreciate their inputs for helping our team prepare and train our final compliance audits; and are sure to engage VISTA InfoSec for any of our future initiatives.” - Mr. Karthik Ganapathy, VP- Operations - (Billdesk).

“NASSCOM’s applications are complex and built on multiply platforms so as to meet the demands of our board and dispersed member base. Additionally, these applications are developed and maintained by various partners. Being the entity we are, it becomes very important that we maintain utmost security for our members. VISTA InfoSec helped us in analyzing our applications and identifying vulnerabilities. Their support and commitment is outstanding.” - Ameet Nivsarkar, Vice President – NASSCOM.

“I am pleased to acknowledge the service of VISTA InfoSec in continuing to provide us with World Class Information Risk Services/Advisory which helped us mitigate our issues in the Information Security and Regulatory Compliance verticals. Their completely professional along with knowledgeable approach has differentiated them considerably from standard Information Security (IS) Consulting Organizations. They are an important partner in Information Risk Compliance and Management.” - Mr. S.V Sunder Krishnan, CRO - Reliance Life Insurance.

The FutureSight

Already leading the market with SOC in place, providing log monitoring and reporting capabilities for clients, the team at VISTA InfoSec aims to inflate the horizons to include niche areas such as mobile monitoring and big data security.

Realizing the dearth of Process Compliance personnel in the industry with almost everyone focused on certifications such as CEH, VISTA InfoSec has established “Academia Compliance” which grooms fresher’s and experienced personnel aspiring to become an Information Security Officer or an Information Security consultant or even a CISO, to be able to think not just from technology perspective but also formulate strategy as an InfoSec professional with a business angle…

Knowing the Mastermind 

Narendra Sahoo, Director- A visionary, Mr. Sahoo carries over 24 years of experience in the IT industry, out of which the last 12 years has been dedicated to VISTA InfoSec. His professional qualifications include PCI QSA, CISA, CISSP, CRISC, ISO 27001 Lead Assessor. Starting off as an assembly language programmer, with the advent of networking and the Internet in India, he moved on into networking and IT management of which InfoSec was a natural progression.

A very well versed professional with proficiency in globally recognized standards such as ISO27001, PCI DSS, ITIL/ISO 20000, COBIT and many international regulations such as HIPAA, CSV, SOX, SSAE16, SOC, etc., Mr. Sahoo has conducted IT consulting and assessments for large Banks, Software development organizations, Banks, Research & Development companies and BPOs in India and overseas. Well versed with  strategy development and an astute Technical background, he has audited, designed and strategized for a wide variety of Information security and networking technologies. He has provided consulting services for premier organizations such as Tata Group, Shell Oil, Cipla, numerous payment processing organisations and a host of banks including the Reserve Bank of India and the Indian armed forces.

He has recently been awarded the “Crest of Honor” by the Indian Navy for his contributions. He was inducted into the CSI – Hall of Fame for his significant contributions to the fraternity.

…And this is how VISTA InfoSec came into being

Growth story by the visionary Narendra Sahoo, Director & Founder

Working for more than 10 years in the IT and infosec field holding respectable positions, I realized that I am not the typical “employee material”. Between jobs, I used to freelance and used to make quite a bit of money in the same. In around 2004, free lancing assignments were few and all cash reserves were over. A very close friend suggested to have a proper Pvt Ltd. company if I intend companies to trust me. So, with inputs from a very close mentor and friend, we came up with a name for the company and got the same registered on Dec 1, 2004. Initially, I started taking up small assignments for the first couple of years. A bright young boy with a streak for R&D joined me in 2005; with just one employee, it was always a struggle as I had no contacts. For the first few years, we had a handful of clients with us, but then slowly contracts started flowing in and the company started to stabilize as we learnt from our mistakes and failures and started to evolve as a company.

Abiding by our ethics of being very transparent and having an open work environment, in sync with our Code of Ethics, with no “axe to grind” on the sidelines such as sale of hardware/software, today are positioned as a part of the client’s internal team. Moving a step ahead, we went the extra mile to ensure that the clients are not just handed a set of “Risk Compliance” documents but even Technical inputs to objectively achieve the Risk Mitigation. Hence, we diversified into providing not just “Risk Compliance” consulting but also innovative and cost effective “Infrastructure Advisory” services. Even without large scale advertising or expensive sponsorships, VISTA InfoSec has grown by leaps and bounds mostly by word of mouth and references provided by our satisfied clients. And the bright young boy (Rohan Patil) who joined in 2005 is now heading operations in VISTA InfoSec and is much sought after by large and small organizations for his consulting acumen.

Feathers in their Cap

  • On boarded by the PCI Council as a Qualified Security Assessor.
  • Awarded with the “Best Information Security Company of the Year” by Computer Society of India
  • Awarded with the “Information Security Company of the Year” by dynamicCISO
  • VISTA InfoSec meets the criteria of BS ISO/IEC 27001 specification for Information Security Management System
  • VISTA InfoSec successfully empanelled to provide “Information Security Services” by GoM
  • VISTA InfoSec achieves place in the Top 500 of the fastest growing companies in the Asia – Pacific region by DELOITTE TECHNOLOGY FAST 500 ASIA PACIFIC (APAC).

“Moving a step ahead, we have gone the extra mile to ensure that our clients are not just handed a set of “Risk Compliance” documents but even Technical inputs to objectively achieve the Risk Compliance.”

“We can be your complete outsourcing partner and provide an Efficient and Effective Plan to enable you to focus on your core competency.”


Pine Labs Reaffirms its Commitment to Indian Payments Space with Qfix Acquisition

HDFC Bank is Qfix's main distribution partner Pine Labs has announced that it has acquired Qfix, a Mumbai-based online payments startup. This acquisi...

Salesforce Expands into Thailand, Opens Office in Bangkok

Salesforce has announced permanent presence in Thailand by launching its new office in the country’s capital, Bangkok. The permanent presence wi...

GMLL is expected to soon add two more stores to its retail arm ‘Price Mantra’

Garment Mantra Lifestyle, a popular name in the Indian fashion retail segment, recently made an announcement that the company is expanding its retail ...

Tariff plans will cost higher from the next financial year as telecom companies are gearing up to increase rates

The ongoing Covid pandemic had significantly increased the number of mobile and internet users worldwide. The high amount of usage is expected to drop...