Dec 2021 – Present · 4 yrs 3 mos · Bengaluru, Karnataka, India · Hybrid

• Be4Breach is a company I started in 2021 as a specialized cybersecurity consulting firm to help startups and enterprises fortify their digital assets through:
• Proactive Security Architecture: Implementing our proprietary "Security-by-Design" framework that has strengthened cloud, IoT, blockchain, and AI infrastructures for 75+ companies, reducing breach vulnerabilities by an average of 73%.
• Compliance-Driven Transformation: Turning regulatory requirements (ISO, GDPR, HIPAA) into strategic advantages through our "Beyond Compliance" methodology, enabling clients to accelerate market entry while maintaining robust security postures.
• Executive Security Leadership: Providing fractional CISO services and security roadmapping for growth-stage companies, establishing security as a business enabler rather than a cost center.
• Our team of 20 security professionals operates from our Pune headquarters, delivering specialized security services that have helped over 75 companies across APAC transform their security challenges into competitive advantages.
• Drop me a DM to secure your ecosystem today!
• [https://be4breach.com]

Jul 2021 – Dec 2021 · 5 mos

• Driving public cloud growth internally by championing its adoption within Sales and Delivery.
• I lead PoCs and create Solution Designs for Cloud Security Posture Management (CSPM) and Cloud Workload Protection (CWP) for clients.
• Serving as the Cloud Network engineering authority, I leverage extensive hands-on experience with public cloud platforms to build complex solutions.
• Enable Solution Architects and Delivery teams across the entire project lifecycle and foster deep relationships with senior technical customer stakeholders to drive cloud advocacy and hybrid integration strategies.
• Act as the primary technical point of contact between customers, delivery, and support.

Dec 2019 – Jun 2021 · 1 yr 6 mos

• As a leader in cybersecurity, I architected and guided teams in the deployment of critical security tools and services for Cloud, Containers (Docker, Kubernetes), and CI/CD pipelines, integrating them with leading solutions like Prisma Cloud and Dom9 for comprehensive application and platform protection.
• My direct engagement with clients focused on effectively mitigating their cyber risks and threats through the delivery of expert services on complex projects.
• I actively participated in business development, fostering vendor relationships and contributing to proposal development.
• Managed project financials and served as the primary point of contact for clients and internal teams.
• My deep functional and technical knowledge allows me to proactively address client/project needs with innovative solutions, and I am committed to mentoring and supporting delivery teams and staff to achieve excellence.

Dec 2018 – Dec 2019 · 1 yr · Thailand

• Successfully led a range of emerging technology initiatives in areas like Blockchain, AI/AR, IoT, and DevSecOps.
• My experience includes managing and delivering multiple critical vulnerability assessment engagements for financial institutions throughout Thailand, Malaysia, and Southeast Asia, encompassing a wide array of technical security reviews.
• Spearheaded GDPR & Data Privacy assessments for e-commerce clients, managed internal IT audits with a cybersecurity focus for insurance companies, and directed security reviews of SWIFT infrastructure for multinational insurers.
• Leadership was key in conducting cybersecurity maturity assessments for clients in telecommunications, manufacturing, and finance, providing strategic roadmaps for capability enhancement.
• Additionally, I led a cybersecurity incident review for an SME, demonstrating my ability to tackle diverse security challenges.

Aug 2018 – Dec 2018 · 4 mos

• Led advanced cybersecurity consulting engagements, providing strategic advice on proposals, solution design, and system optimization.
• Consistently led technical assessments and delivered specialized solutions to clients. Built and managed high-performing teams.
• Contributed to company strategy development. Solved complex technical problems across diverse technologies, often innovating new methods.
• Championed knowledge sharing within professional communities and mentored others. Actively supported sales, managed bids, and developed proposals for specialized engagements. Drove portfolio growth with existing clients through new opportunities.

Jan 2018 – Aug 2018 · 7 mos

• Lead strategic customer engagements, taking full ownership of the relationship and collaborating to develop and implement forward-thinking roadmaps for SIEM and security product lifecycle management, including deployment, upgrades, and expansion. My technical expertise allows me to design and champion reference architectures.
• Responsible for creating and deploying IT security best practices and driving early adoption of new solutions.
• As a vital link between product management and our customers, I ensured transparent communication of product roadmaps, provide expert guidance throughout their implementations, and actively advocate for customer needs to shape future product development.
• Deeply committed to proactive customer satisfaction, directly supporting the renewals process to minimize churn. By fostering strong communication and ensuring customers utilize all available resources, I empower their success.
• Effectively prioritized and orchestrate resources to resolve critical customer issues. I partner with sales teams to identify and capitalize on growth opportunities, ultimately helping customers understand and address potential risks to their business goals. I expertly manage complex customer projects requiring strong coordination across customer, Quick Heal (Seqrite), and partner teams.

Jul 2017 – Jan 2018 · 6 mos

• Led InfoSec Team, SME across technical, operational security & compliance. End-to-end security for organization & products.
• Ensured compliance (Statutory, RBI, PCI DSS, ISO 27001). Drove security enhancements & risk reduction. Expertise: Cryptography, PKI, Cyber Security Assessments, Web/Mobile Security, Threat Modeling (Cloud/IoT), Pen Testing.
• Managed SOC, Forensic, Audit, Compliance teams. Designed client compliance processes.

Aug 2016 – Jul 2017 · 11 mos · Frankfurt Area, Germany

• Led the execution of intricate application and infrastructure security testing engagements.
• Managed project timelines, prerequisites, and issue resolution to ensure on-time delivery.
• Translated technical vulnerabilities into actionable business risk insights.
• Served as the primary point of contact for business and technical teams throughout projects.
• Implemented strategies to enhance analyst quality and reduce errors.

Jan 2014 – Mar 2014 · 2 mos · Pune, Maharashtra, India

• Job Profile includes
• Managed DMZs, VPN and telecommunication technologies such as PBX and VoIP.
• Identified network vulnerabilities and explore network security controls such as use of SSL and TLS for transmission security.
• Identified the different components of a cryptosystem.
• Installed and maintained security infrastructure, including IPS, IDS, log management, and security assessment systems.
• Assessed threats, risks, and vulnerabilities from emerging security issues
• Technical Proficiencies Used: X-Ways Forensics, Oxygen Forensic Suite, UFED Cellebrite, EPOC, EnCase, pfSense, Passware Kit Forensics, MS-Office

May 2012 – Aug 2016 · 4 yrs 3 mos · South Africa

• Project: Computer Network Defense (CND) and Incident Response
• Role: Lead VAPT
• Duties
• In this role, I led Vulnerability Assessment & Penetration Testing (VAPT) initiatives, encompassing:
• Investigating software system and product vulnerabilities.
• Threat and Vulnerability Analysis.
• Reverse engineering & Malware Analysis.
• Wireless and Mobile Applications Security Testing.
• Discovery of Zero-Day vulnerabilities.
• I also served as a Security Consulting Subject Matter Expert, identifying and troubleshooting anomalies, advising technical architects and developers on secure design, and participating in global security incident response. My responsibilities extended to Incident Response & Risk Management, including vulnerability risk estimation, training junior responders, and contributing to leadership planning and testing of incident response capabilities.
• Key Achievements:
• Built a Risk Assessment Team by selecting top talent from IT, enabling proactive analysis of critical systems and development of vulnerability reports and remediation strategies.
• Developed and implemented comprehensive company policies and procedures for corporate security, email/Internet usage, access control, and incident response.
• Spearheaded the creation of four new information security departments: Risk Assessment, Vulnerability, Penetration Testing, and Security Engineering services, significantly enhancing the organization's security posture.