Immanuel V

Product Engineer

Bengaluru, Karnataka, India10 yrs 1 mo experience

Key Highlights

Expert in Cybersecurity and Risk Management.
Proven track record in compliance auditing.
Strong leadership in cloud security initiatives.

Stackforce AI infers this person is a Cybersecurity expert specializing in risk management and compliance across various industries.

Contact

Skills

Core Skills

CybersecurityRisk AssessmentVulnerability AssessmentCloud SecurityInformation Security ManagementCompliance Auditing

Other Skills

Back-End Web DevelopmentBig DataBusiness IntelligenceCC++CEHCI/CD SecurityCSA StarCSSComputer HardwareComputer Hardware TroubleshootingData Protection AuditEthical HackingHIPAAHTML

About

Currently working as a Cybersecurity Manager for Cloud, Product (SSDLC) and AI Security at Lenovo. Experienced in Risk advisory and Information security domain with a demonstrated history of working with clients across the globe. Performed various cyber/information security, risk and compliance assessments. Strong consulting professional with Project and Client Management skills. Also, I am a Cybersecurity evangelist, Career counsellor and Motivational Speaker. Skilled in: 1. PCI-DSS, ISO 27001 LA, CSA Star 2. SOC2 Audits & ITGC Testing 3. RBI ISMS framework for Non-Banking Financial Corporations 4. IRDAI Cybersecurity framework & ISNP Audit for Insurance companies 5. Vulnerability assessment, Patching and Hardening of Network, Server & DB 6. Cloud security assessment 7. Risk Assessment of Organization and Cloud Infrastructure 8. Implementation, Monitoring, Management and Review/Testing of Security controls/solutions such as SIEM, Anti-virus, DLP, Firewall for IT infrastructure and Cloud Infrastructure. 9. Vendor Risk Assessments 10. Policy and Procedure reviews for ISMS.

Experience

Lenovo india

Cybersecurity Manager

May 2025 – Present · 10 mos · Bengaluru, Karnataka, India · Hybrid

I am a Cybersecurity Manager with Lenovo's Solutions and Services Group (SSG), where I oversee the cybersecurity assessment and product architecture review of innovative software products. My expertise lies in conducting thorough vulnerability and risk assessments for solutions in Software, Cloud, AI, Robotics, and the Internet of Things (IoT). My role is to lead a proactive approach to security, ensuring our technology is resilient and secure by design.

CybersecurityRisk AssessmentVulnerability AssessmentCloud Security

Hpe aruba networking

Senior Cloud Engineer- CyberSecurity

Nov 2023 – May 2025 · 1 yr 6 mos · Bengaluru, Karnataka, India · Hybrid

Conducted Vulnerability Assessment and Penetration Testing for SaaS applications following OWASP top 10 guidelines.
Implemented Kubernetes and Container security measures to enhance overall product security.
Identified security issues in the Product CI/CD pipeline and provided guidance for automation using AI coding tools.

Vulnerability AssessmentPenetration TestingKubernetes SecurityCI/CD SecurityCloud Security

Leadsquared

Manager- Information security

May 2022 – Nov 2023 · 1 yr 6 mos · Bengaluru, Karnataka, India · On-site

1. Audit and Implementation: Performed Internal and External Audits for ISO 27001, HIPAA and SOC 2
2. Cloud Security: Analyzed security of AWS Environment infrastructure to assess areas in need of improvement.
3. Risk Assessment: Performed Risk Assessment based on ISO 27002, NIST and Octave Framework
4. Vendor Assessment: Performed vendor assessment and created the process to assess vendor-based risks.
5. Information Security management of AWS cloud environment, On-prem network, Secure SDLC Lifecycle, CI/CD, IT Security, DevSecOps etc.
6. Product Security: Prepared SOP's, Training material, Quiz, and communicated policies on Information security for the Organization.
7. Customer Security Assessment: Responded to Customer RFP's and Vendor Questionnaires and supported Vendor Audits of BFSI sector.

ISO 27001HIPAASOC 2Cloud SecurityRisk AssessmentInformation Security Management

Optym

Senior Information Security Specialist

Apr 2020 – May 2022 · 2 yrs 1 mo · Bengaluru, Karnataka

Global Information security officer for Optym
1. Internal Audits based on Compliance such as ISO 27001 and CSA Star
2. Risk Assessment of Organization and Cloud Infrastructure
3. Implementation, Monitoring, Management and Review of Security controls/solutions such as SIEM, Anti-virus, Firewall for IT infrastructure and Cloud Infrastructure.
4. Vulnerability assessment, Patching and Hardening
5. Vendor Risk Assessments
6. Policy and Procedure reviews for ISMS.

ISO 27001CSA StarVulnerability AssessmentPolicy ReviewsInformation Security ManagementRisk Assessment

Ey

Technical Risk Consultant

Oct 2018 – Apr 2020 · 1 yr 6 mos · Chennai, Tamil Nadu, India · On-site

1. ITGC Audit and Compliance: Performed SOC 1 & SOC 2 ITGC Audits, Review and testing of risks and controls for security of servers, Network device, Data base and cloud architecture.
2. Data Protection Audit: Performed Data protection assessment to identify critical and sensitive data related to business, applicable regulations, compliance, and security controls around it.
3. Risk Assessment: Performed Risk assessment for using methodology such as OCTAVE Framework, FAIR Methodology, ISO 27001 etc.
4. IRDAI Cyber Security Audit/Assessment: Performed Audit as per Insurance Regulatory and Development Authority of India (IRDAI) Cybersecurity Framework for Insurance companies.
5. RBI ISMS Master guidelines for NBFC- Performed Audit as per RBI Master guidelines ISMS framework for Non-Banking Financial Corporations.
6. ISO27001 ISMS Audits- Performed ISMS Audit, review and apply to other frameworks.
7. FAIT- Financial Audit over Information Technology systems ITGC Testing for Manager Access, Manage Change and Manage IT operations.

SOC 1SOC 2Data Protection AuditRisk AssessmentCompliance Auditing

Sisa information security

Senior Associate Consultant

Jan 2017 – Sep 2018 · 1 yr 8 mos · Bengaluru, Karnataka, India · On-site

1. PCI DSS Audit v3.2.1- Performed Audit Support for PCI DSS Certification and Re-certification including Gap assessment, Evidence verification, PCI Scoping, Network Segmentation and PCI ASV scans.
2. Network VAPT- Conducted Network Level VAPT, Network segmentation and Firewall rule review for Clients across globe, onsite and offsite to test the PCI Scope network with Vulnerability scanning tools and Penetration testing using Kali Linux.
3. Configuration and Hardening Check- Network device configuration and Server hardening tests based on CIS Benchmarks, Nessus tools to validate the client implemented best practices.
4. R&D support- To develop better Reporting tool (Customized Reports), Integration of results from different Vulnerability assessment applications to report vulnerabilities and appropriate solution.

PCI DSSVulnerability AssessmentNetwork SecurityCompliance AuditingRisk Assessment

Dell

Resolution Expert

Sep 2015 – Sep 2016 · 1 yr · Bengaluru Area, India · On-site

1. Resolving security Incidents- Virus Removal, Firewall Installation, Ransomware Troubleshooting, Data backup and recovery, System hardening.
2. Hardening and Configuration- Performed Installation of anti-virus, additional firewall and hardening of windows 7/8.1/10 and configuring backups for customer based on requirement.
3. Hardware and Network Troubleshooting- Hardware, software and Networking Issues for Dell US Customers.