Shobhit Mehta

Director, Security & Compliance

Shobhit is the Security & Compliance Director at Headspace, an on-demand mental health company in San Francisco, CA. Prior to Headspace, he worked for 11+ years in different facets of Security & Information Assurance with HSBC, Deutsche Bank, Credit Suisse, PayPal, & Fidelity Investments to build and mature their security and compliance programs.

He also works with ISACA to develop the exam questions for flagship certifications such as CISA, CISM, CGEIT, serves as the technical reviewer for CGEIT & CISA Review Manual, and is a published author for ISACA’s COBIT 5 journal. He regularly presents at industry conferences such as (ISC)2 Security Congress, BSidesSF, and maintains a personal blog ( to deconstruct the jargons related to GRC & Healthcare. He is also an accomplished author, having published a book on ISACA’s CRISC certification.

Shobhit completed his MS in Cybersecurity from Northeastern University, Boston, and holds CISSP, CCSP, CRISC, CISA, CISM, CGEIT, HITRUST CCSFP, ISO 27001 Lead Auditor, and ITIL Foundation certifications.