Dec 2022 – Aug 2024 · 1 yr 8 mos · United Kingdom 🇬🇧 INDIA 🇮🇳 · Hybrid

• As an Enterprise wide Technology Security Architect my role:
• Defining and overseeing the process to design and execute a comprehensive Cyber Security Strategy that aligns with business objectives and mitigates risk across the organization.
• Leading the development and roll-out of Cyber Security architecture roadmaps, policies, and procedures, ensuring they are in line with industry standards and best practices.
• Driving organizational compliance with regulatory requirements, standards, and guidelines.
• Evaluating and implementing security solutions to enhance the organization's security posture, leveraging advanced threat intelligence and emerging technologies.
• Providing mentorship and driving process improvements for a multicultural team, promoting a culture of excellence and continuous learning.
• Collaborating effectively with stakeholders across the enterprise to ensure alignment and effective execution of Cyber Security initiatives.
• Bringing expertise in Cyber Security risk management, data protection, and incident response to provide valuable insights and guidance to senior leadership.
• Working to identify and address vulnerabilities and threats before they impact the enterprise, and promoting organizational resilience.
• Providing thought leadership and staying up-to-date on industry trends and emerging threats to ensure the organization is well-positioned to navigate an increasingly complex Cyber Security landscape.
• Demonstrating a strategic, holistic, and results-driven approach to Cyber Security, with a strong commitment to safeguarding critical assets and protecting the organization's reputation.
• Following Tandm (Technology assurance and demand management) workflow designed to guide projects through all stages of the project lifecycle. It provides clarity from demand management to technology assurance, covering both architecture and security sign-off.

Dec 2020 – Dec 2022 · 2 yrs · Hybrid

• As a highly skilled and experienced Cloud Security Architect and Security professional, I have led and executed comprehensive cloud security operations for a wide range of industries, including oil and gas, media, aviation, renewable energy, and even the Olympic games. With my vast knowledge and expertise in the latest security tools and technologies, I am a valuable asset to any organization looking to secure their cloud infrastructure.
• My experience in the Olympic games as a Security Architect has given me a unique perspective on ensuring the safety and security of large-scale events. With my ability to work with over 25 different tools and technologies for end-to-end implementation and proof of concepts, I have honed my skills in managing complex security operations that require a high level of precision and attention to detail.
• As a passionate and results-driven professional, I am constantly staying ahead of the latest threats and technologies to provide my clients with the most up-to-date and effective security solutions. From procurement to implementation and ongoing management, I am committed to ensuring the security of my clients' cloud systems throughout the entire security lifecycle.

Aug 2019 – Dec 2020 · 1 yr 4 mos · Gurugram, Haryana, India

• As a Security Consultant weared Hat of below roles:
• Security Consultant: Provides strategic advice on information security, risk management, and compliance
• AppSec: Conducts security assessments, vulnerability scanning, and penetration testing for web and mobile applications
• Threat Modelling and Architecture Review: Analyzes system architectures for security gaps, vulnerabilities, and risks, and recommends mitigation strategies
• Cloud Security Solution Architect: Designs and implements secure cloud-based solutions for organizations
• Cybersecurity Expert: Knowledgeable in network security, endpoint security, identity and access management, and data protection
• Risk Management: Conducts risk assessments, develops management plans, and implements mitigation strategies
• Compliance: Helps organizations comply with industry regulations and standards, such as HIPAA, PCI-DSS, GDPR, and ISO 27001/2
• Incident Response: Develops incident response plans, conducts investigations, and provides guidance on remediation.

Sep 2018 – Aug 2019 · 11 mos · Delhi NCR

• Leading security operations at KPMG India as shift lead and incident response and protection group member.
• Developing and implementing security policies, procedures, and guidelines to mitigate risks and prevent cyber attacks.
• Conducting regular security assessments and audits to identify vulnerabilities and recommend solutions.
• Collaborating with cross-functional teams to develop and implement security programs for KPMG's clients.
• Leading incident response efforts to mitigate the impact of security incidents and minimize business disruption.
• Developing and delivering security awareness and training programs for KPMG employees.
• Staying up-to-date with the latest security trends and technologies to ensure KPMG's security posture remains strong.
• Building strong relationships with internal stakeholders, external partners, and industry peers to share best practices and drive innovation.
• Driving continuous improvement initiatives to enhance the effectiveness and efficiency of KPMG's security operations.

Feb 2018 – Present · 8 yrs 1 mo · Remote

• As a seasoned Cybersecurity Blogger and YouTube Vlogger with over 5 years of experience, I specialize in:
• Reporting and analyzing the latest trends and developments in the field of cyber threats.
• Providing valuable insights and actionable advice to help individuals and organizations stay safe and secure online.
• Raising awareness about the importance of cyber awareness and promoting best practices for online safety.
• You can find my WordPress blog, Cyber Shot, running successfully for the past 5 years at https://bcyberawarebyvikspandita.wordpress.com/. My YouTube channel, where I report and analyze new trending Cyber Threats, can be accessed at https://www.youtube.com/@vikaspandita. Join me in my journey to create a safer and more secure online world!

Jan 2018 – Sep 2018 · 8 mos

• Extensive experience in managing cyber security for leading MNCs and ensuring compliance with internal and external policies.
• Proficient in using advanced security tools and technologies to maintain a secure IT infrastructure.
• Skilled in collaborating with different departments to identify potential risks and implement effective risk management strategies.
• Proven ability to lead and manage cross-functional teams to deliver successful cyber security projects.
• Deep knowledge of security incident response planning, testing, and execution.
• Strong communication and interpersonal skills to work effectively with stakeholders at all levels of the organization.
• Passion for staying up-to-date with the latest cyber security trends and technologies to ensure proactive risk mitigation.
• Demonstrated ability to analyze complex security issues and develop practical solutions to address them.
• Strong focus on continuous improvement and process optimization to enhance cyber security posture.

Oct 2014 – Jan 2018 · 3 yrs 3 mos

• Information Security Analyst | SIEM Expert | Malware and Phishing Analysis expert