Apr 2024 – Sep 2025 · 1 yr 5 mos · Hyderabad, Telangana, India · On-site

• 1. Strategic Leadership & Governance
• Lead the design and execution of the enterprise-wide information security strategy across all Tanla group companies.
• Establish security governance structures, policies, and controls that are scalable and aligned to business objectives.
• 2. Security Operations & Threat Management
• Security Operations Center (SOC), incident response, and threat intelligence functions.
• Drive proactive detection, prevention, and mitigation of security threats through red/blue teaming, threat modeling, and real-time monitoring.
• Ensure business continuity
• 3. Compliance, Risk & Regulatory Management
• Ensure end-to-end compliance - ISO 27001, ISO 31000, SOC 2, GDPR, HIPAA, DPDP (India) and others.
• Risk Register
• Lead third-party security assessments, internal/external audits, and customer assurance activities.
• 4. Telecom and RBI Regulatory Security & Compliance
• Work with internal legal team, aligned with telecom licensing and operational obligations.
• Lead regulatory audits and inspections - Guidelines as per RBI, Trai, CST etc.
• Proactively prepare for the Tanla Group entities for upcoming changes.
• 5. Product & Infrastructure Security
• Secure cloud infrastructure (AWS, Azure, private cloud) - IaaS, PaaS, and SaaS deployments.
• Implement DevSecOps practices and conduct secure code reviews
• 6. Data Privacy & Protection
• Establish frameworks for data classification, encryption, access control, and secure data retention.
• Respond to data breach events with transparency, regulatory coordination, and clear incident handling.
• 7. Stakeholder Engagement & Awareness
• Work closely with business heads, engineering teams, legal/compliance functions, and client organisations to align security objectives.
• Represent the company in RFPs, client security reviews, and external communications
• Lead regular employee awareness programs, phishing simulations, and training sessions to cultivate a strong security culture.

Dec 2021 – Mar 2024 · 2 yrs 3 mos · Bengaluru, Karnataka, India · On-site

• Heading Information Security operations
• Created and formulated the security roadmap for the organization and driving on that road
• Drove product security and Engineering activity in alignment
• Building the SOC and attempting the continual improvement.
• Helping with operations such as Vulnerability Mgmt, Zero Trust, OSINT Scan, WAF, DDoS, Audits and other security related activities
• Studying the security market to be on par
• Managing Org wide communications on information security
• Managing Infosec operations
• Communication and driving security initiatives across the organization
• Driving cross functional security sprints
• Owning up and driving the upward track of improving internal and external security posture
• Managing Vendors in the space
• An active member( lead developer ) of the ZERO Trust Expert group at CSA

Dec 2020 – Dec 2021 · 1 yr

• The profile involves all the activities of a CISO and much beyond that :) . As a part of security solution provider, I am learning and updating a lot being an active member across Engineering, sales and other field activities of a company that is growing at the 10th fastest speed among Indian Companies. It is very important to be on top of the market requirements and hence I study about the Zero Trust market and Competition closely and track down the those critical features.
• CSA has recognized me as a Zero Trust and SDP expert and I am part of the small/large group global Zero Trust committee on SDP Training and Architecture discussions.
• The cyber security team ethically hack the solutions and posture of each related elements along with the assets of the organization in order to protect the and keep the highest possible security posture. The team also drives the bug bounty platform, SafeHats and VAPT.

Nov 2017 – Nov 2020 · 3 yrs · Bangalore

• VEvolve is in to Customized Software and Information Security.
• We are providing VAPT, CTF services and building a AI/ML based security product working along with students of NIT Trichy. More details will be shared soon...
• Everyone need a safer IT world. The security solutions and services of VEvolve secures the security postures of the applications and infrastructure against the unwanted intrusions and hacking. VEvolve is offering Penetration testing, security audits and events such as Capture the Flags
• Companies are often frustrated by the effort it takes to implement a fully functioning ERP in a cost effective way and power the business. FlexyRP eliminates the need to "chase, extensive training, and long duration of implementation" by simplifying the workflows.
• Our Story
• VEvolve Software private limited company got incorporated in 2017 in the ERP/Security field. We have traveled 2,00,000 kilo meters on car meeting 121 customers, perfecting our ERP solution.
• Today VEvolve have business presence in UK, UAE, US and India in the security and ERP area.
• VEvolve has grabbed two fortune 500 client in the security field, rest to follow. Information security is getting more traction everyday.The company is planning to develop innovative IPs in the security field, making use of the latest technologies such as Artificial Intelligence.
• Website : www.vevolvesoftware.com

Aug 2016 – Nov 2017 · 1 yr 3 mos

• Drove product portfolio of GIS (Global Infrastructure Services) Wipro.

Oct 2015 – Aug 2016 · 10 mos

• Some of my responsibilities include,
• Technically driving a team towards creation of the software solutions to enhance quality assurance in DevOps, cloud infrastructures and various Data center environments.
• Recruitment
• Manage the team

Sep 2014 – Oct 2015 · 1 yr 1 mo

• The team is responsible for overseeing the implementation of NetApp’s product security and protecting against vulnerabilities spanning the entire NetApp product portfolio.
• Our work includes the penetration test of the various products in the portfolio. I am handling cross-functional, technical and Managerial activities in this role.

Oct 2013 – Sep 2014 · 11 mos

• Drove automation across the group
• Lead multiple projects in parallel and took care of the dependencies with related team and tracked the interlinked projects. Some of the projects I lead were,
• 1. Role based Access Control
• 2. Secure multi tenancy
• 3. SVM Peer
• 4. IPSpaces for virtualization
• 5. Active directory group authentication

Oct 2010 – Oct 2013 · 3 yrs

• Had a role to lead the teams in this tenure
• The first half I was working with the virtualization team, where we made the ONTAP OS ready for the Virtual Machine. I was leading the projects and working along with the team. The major projects were,
• 1. Qualifying the High availability where we had to virtualize interconnect cable communication and mail box communication effectively.
• 2. Qualifying the Disk model where we had to support i disk shelf with upto 28 disks of 36 types.
• 3. Automation of the VM image qualification
• 4. Qualifying various ONTAP functional features in the platform
• The last 1.5 years I was working with the Multitenancy infrastructure group, where I drove the automation across the group. I was working on and leading the below projects in parallel,
• 1. Role based Access control
• 2. Secure Multi tenancy
• 3. SVM Peer

Jan 2008 – Oct 2010 · 2 yrs 9 mos · Bengaluru Area, India

• Architectured and designed the Vmware automation framework vTAF being in a two member team, wrote many of the core modules and actively build the functional modules. Later the team was grown to develop the whole product and take it to market and internal consumption.
• Owned the VMFS for the automation as a functional area.

Jan 2008 – Dec 2008 · 11 mos · Bengaluru Area, India

• Focused qualification of VM kernal features.

Jan 2007 – Dec 2008 · 1 yr 11 mos · Bengaluru Area, India

• As a python automation engineer, owned a tool to diagnose the HP printer instalation.

Jun 2005 – Sep 2006 · 1 yr 3 mos · Bangalore

• Harware qualification for Dell server and OMSA.

Mar 2005 – Aug 2007 · 2 yrs 5 mos · Bangalore