Sep 2021 – Oct 2025 · 4 yrs 1 mo

• Part of PepsiCo’s Global Strategy & Transformation – Architecture & Engineering group (previously under the Global CTO). Part of GCC leadership.
• Leading IT-OT convergence across PepsiCo’s global manufacturing footprint, redefining infrastructure standards, cybersecurity, and managed services, while laying the foundation for a future-ready smart manufacturing vision.
• Driving cross-domain architecture leadership across IAM, Cloud, Network, Security and Compute, enabling seamless global IT and OT integration.
• Spearheading Industrial/OT/ICS architecture and engineering, leading the global cybersecurity Zero Trust model for over 350+ PepsiCo food and beverage plants.
• Architecting and rolling out integrated IT-OT infrastructure designs, ensuring security, scalability, and operational efficiency.

Jan 2020 – Sep 2021 · 1 yr 8 mos

• Part of PepsiCo Global CTO - Enterprise Architecture and Engineering group,
• Working on MFG/OT/ICS/IIoT Cybersecurity, Architecture and Engineering Security globally.
• Architectural Patterns development for OT programs
• Policy and Guidelines
• POCs and Pilots for new technologies in OT space and final rollouts at manufacturing sites

Jan 2019 – Dec 2020 · 1 yr 11 mos

• Program Chair - IIOT & Smart Manufacturing Core Committee, a ISA new division for Industry 4.0 and IIoT.
• https://www.isa.org/templates/two-column.aspx?pageid=158565

Dec 2018 – Nov 2019 · 11 mos

• Cyber security education chair for ISA district 14.

Sep 2013 – Present · 12 yrs 9 mos

Oct 2017 – Jan 2020 · 2 yrs 3 mos · Global role

• As the global Head of ICS / OT Domain Security Architecture at Novartis, I led enterprise-wide OT and IT security initiatives, driving the cybersecurity strategy and architecture for 60+ Novartis manufacturing plants worldwide.
• Key Highlights:
• Directed the ISRM Security Architecture team at NBS Hyderabad, leading cross-domain teams across IAM, Cloud, Network Infrastructure, and Compute to deliver robust global IT and OT security solutions.
• Spearheaded the Design, Defense, and IT & Security Service Coordination (DDC) for a multi-million-dollar OT security program, establishing foundational security frameworks for critical manufacturing operations.
• Enhanced the cybersecurity posture of OT environments with initiatives such as:
• Secure Remote Access and Zero Trust principles.
• Patch Management and OT Active Directory implementations.
• Deployment of Anomaly Detection Technologies (passive vulnerability assessment for OT).
• Backup & Recovery, Network Segmentation, and advanced Firewall configurations for IT/OT zones.
• Integration of SOC services, IDS (threat detection), and comprehensive IT/OT monitoring for performance and alerts.
• Led and mentored a high-performing team of 20+ security architects, fostering a culture of technical excellence, collaboration, and innovation.

Jul 2016 – Oct 2017 · 1 yr 3 mos · Bangalore

• Principal Consultant (Manager), in Advisory - Cyber security LOB for ICS/OT security.
• Lead engagements in ICS/OT assessments and consulting for clients majority from Oil and Gas, Manufacturing, Automotive and Power sector (Generation, Transmission and Distribution).
• Worked for major clients, few listed below:
• Shell - Oil and gas, (P&T- Secure plant implementation governance)
• Saudi Electric Company - Power, (Cyber Security assessment- Generation, Transmission and Distribution)
• Daimler - Automobile, (OT SOC design)
• Vedanta - Process (Assessment - Aluminium),
• Reliance - Oil and gas, ( ISA/IEC62443 training)
• & few more OT security engagements.
• Worked on secure architecture design review of different ICS vendors such as Schneider-Electric (including Invensys), GE, SIEMENS, ABB, ALSTOM and AREVA for different clients.
• Configuration review of security devices such as switches(CISCO), firewalls and next generation firewall (Tofino, Fortinet etc).
• ICS security risk assessment, Standard security gap analysis and assessment. System hardening review and VAPT in OT environment.
• Security framework design and development based on industry cyber security best practices and standards like NITS, IEC/ISA62443, NERC-CIP, NCIIPC, ISO2700x & SANS Top 20 Critical Control.

Jan 2014 – Jul 2016 · 2 yrs 6 mos

• Industry Cyber Security Testing Deployment Lead. “Edison Group Expert” In "Cyber Security Domain".
• Penetration test plan & check list creation for industrial automation products based on Industry standards.
• Coordination with global security team for security standard and process incorporation.
• Perform vulnerability analysis and Penetration test on ICS SWs and HWs like PLC, Drives, Distributed IOs etc using automated tools like Achilles, NMAP, Codenomicon defensics, Nessus, Nexpose, Burp suite, ZAP, Openvas, Metasploit, Kali linux for penetration test. Manual test and analysis by reading the Wireshark traces & automated test reports.
• Threat modeling, Attack surface & vector identification.
• Provide security training to multicultural functional verification resources from different countries like France, Germany, UK and India.
• Attending the webinars/trainings related to cyber security from different vendor like SANS, Symantec, cybrary etc regularly and apply these learning’s into ISL lab.

Jan 2013 – Dec 2015 · 2 yrs 11 mos

• Interoperability: Leading the Interoperability test team which takes care of testing Interoperability of software developed for Industrial control system; PLC & Device(Drives/IOs) configuration SWs, DTMs and EF/EFB/DFB Libraries for different segments. Customer support (L1 & L2) on device integration and interoperability issues.
• Received Pat on Back and Star award.

Jan 2011 – Jan 2013 · 2 yrs

• Verification and Validation of ICS(Industrial Control Systems) software for Distributed IOs, PLCs, EF/EFB Libraries generating tool for PLCs & UnityDIF a PLC program comparing tool.
• ACS: Advantys configuration software is configuration software for distributed Input/Output modules of Schneider electric’s Advantys series like STB, OTB, FTB and FTM. Test the distributed Advantys DIO on different field bus networks like Modbus TCP, Ethernet IP, CANopen, Profibus along with the PLCs, Drives, Sensors and HMIs. Customer support (L1) on device integration and interoperability issues.
• UnityDIF: It’s a PLC configuration comparing tool, all the section a PLC configuration software support can be compared using this tool. This tool helps the customer in managing the change control of their program which is used to configure the PLCs.
• EFBtoolKit: It’s a PC based software to develop the custom EFB (Elementary function block), EF(Elementary functions) for UnityPro(PLC configuration SW), after creating EFB/EFs these can be imported to UnityPro and customer can reuse these functions in programming the PLC without investing time in recreating these functions.
• Received Pat on Back, Star and Best project award.

Jan 2010 – Dec 2010 · 11 mos · Bangalore

• Lead integration test for IOP.
• Test cases and Test Script in TMS according to Requirements.
• Firmware and GUI Integration and System test on Drive's HMI Panel (IOP- Intelligent Operator Panel).
• Story board writing for requirements based on customer inputs (Agile).
• Responsible for Execution of Functional, GUI, Validation, Smoke, Integration and Regression testing.
• Got Star Award for the best performance.

Dec 2007 – Dec 2009 · 2 yrs · Bangalore

• GUI Integration test on Drive's HMI Panel.
• Automation development and testing using C and Lua Language.
• Firmware and GUI Integration on Drive's HMI Panel (IOP- Intelligent Operator Panel).
• IOP is used for Sinamics G120, G120D and G110D standard drives and the Simatic ET200 frequency converter.