About the Speaker
  • speaker photo
    Shirish Munshi
    Partner, Cyber Risk & Regulatory, PwC

    Shirish is a Cybersecurity Partner at PwC and a seasoned and visionary cybersecurity executive with a distinguished career in leading global organizations to safeguard their technology and business assets using automation and advanced techniques (e.g., AI, ML). He has over 15 years of experience leading, managing and successfully delivering large multi-million-dollar initiatives in the areas of cyber risk management, regulatory programs, digital transformation for security organizations, and cyber governance. He has served as a trusted advisor to several security and business executives for mid-sized and large technology organizations, providing strategic and technical guidance, and implementing robust and transformative security programs.

    Throughout his career, Shirish has demonstrated strong interpersonal skills, business acumen and a proven track record of driving efficiencies, scalability and risk reduction for security programs. Shirish is known for fostering a culture of security awareness, empowering business teams with tools and techniques to better identify and reduce risks, and a proactive and holistic approach to protecting critical data and assets.

    Shirish’s expertise extends across a wide range of cybersecurity domains, including cyber risk management, third-party security, regulatory compliance (e.g., NIST 800-53, ISO 27001, PCI DSS), and application security. At PwC, Shirish has led the development of various cyber-AI solutions and services, where he consistently delivered measurable results, led market and sector growth, and delivered custom services for clients. Outside his cybersecurity role, Shirish has demonstrated strengths in the building and leading diverse high-performing teams and driving inclusive mindset.

    Shirish holds a Master’s degree in Information Management, where he conducted research in the areas of cybersecurity and information assurance. He also holds multiple industry certifications, including ISO 27001 Lead Implementer, and is a regular speaker at industry conferences with published articles on cybersecurity topics such as software supply chain security.