Kunal Sinha — DevOps Engineer

Kunal Sinha is Cyber Security Engineer and Program Manager at Microsoft and AI Security enthusiast . Previously works with Cotiviti as a Technology Security Manager with the Corporate Information Security Office (CISO Executive) team. He is responsible for Technology Security Infrastructure and Policy Compliance across Cotiviti Data Centres based out of the US and the Europe. He also provides technology security guidance to Cotiviti Technology group based out of Hyderabad office. He is the point contact for all Vulnerability Management, Security Operations and Policy Compliance related issues. Started as a Research Associate in R&D centre for EC-Council in August 2007 where he was involved in preparing course and exam materials. He also played a pivotal role in preparing the EC-Council C|EH certification. He then joined INDMAX and extensively worked with their client SuccessFactors where he gained varied experience in security technologies, monitoring scanning tools, ISO27001 standard, Vulnerability Assessment, penetration testing techniques (VA/PT) and IDS. Kunal worked for DELOITTE for six years for GISO executive team and one year in ServiceNow. Total Experience: 18 Years Specialties: Information Security, Vulnerability Assessment, Penetration Testing (VA/PT), Qualys, IDS/IPS, Firewall, RSA, Tripwire, SIEM, ArcherGRC, Internal IT Audit, ISO27001, Incident management and response, Ethical Hacking, Multi Factor Authentication, Cyber Security, Cloud Security, Security Operations (SOC) EXPERIENCE WITH SECURITY TOOLS: • SIEM: Splunk, LogRhythm, MacAfee Nitro ESM, Secure Vue, AlienVault, RSA Envision. • EDR: Crowrdtrike. MDE • Antivirus: MacAfee, Symantec, Microsoft SCEP and defender. • Email Security: Proofpoint Email Security, TRAP, TAP. • DLP: Digital guardian, Symantec. • IDS/IPS: Sourcefire IDS/IPS, PAN. • FIM: Tripwire. • Proxy and content filter: Zesclar. • Network Access control: RSA Net witness, • Data Security: Varonis. • WAF: Websense, MacAfee web gateway. • Vulnerability Management: Qualys Guard, Nexpose. Critical watch. • Web application security: Veracode, Burp suite, Acunetix. • Certification Authority: Comodo. Please feel free to reach me at kunal26mar@gmail.com

Stackforce AI infers this person is a Cybersecurity expert with extensive experience in Cloud Security and Vulnerability Management.

Location: Hyderabad, Telangana, India

Experience: 18 yrs 1 mo

Skills

Cybersecurity
Cloud Security

Career Highlights

18 years of experience in Cybersecurity and Information Security.
Expert in Vulnerability Management and Cloud Security.
Contributed to OWASP AI Testing Guide and developed course materials.

Work Experience

AT&T

Sr. Specialist Cybersecurity (3 mos)

Freelance

AI and Cyber Security Consultant (5 mos)

Microsoft

Cyber Security Specialist and Program Manager (4 yrs)

Cyber Security Engineer (2 yrs 6 mos)

Cotiviti

Global Vulnerability & Threat Senior Manager (3 yrs)

ServiceNow

Information Security Specialist at ServiceNow (1 yr)

Deloitte

Assistant Manager of Technology Security (2 yrs 7 mos)

Technology Senior Security Analyst (3 yrs 3 mos)

IndMax IT solutions PVt. Ltd

Senior Security Analyst (1 yr 8 mos)

SuccessFactors

Senior Security Analyst (1 yr 8 mos)

EC-Council

Research Associate (1 yr 10 mos)

Education

PGDCL&IPR at University of Hyderabad

Master of Business Administration - MBA at Swami Vivekananda Subharti University, Meerut

B.Tech at Dr. A.P.J. Abdul Kalam Technical University

Kunal Sinha

DevOps Engineer

Hyderabad, Telangana, India18 yrs 1 mo experience

Highly StableAI Enabled

Key Highlights

18 years of experience in Cybersecurity and Information Security.
Expert in Vulnerability Management and Cloud Security.
Contributed to OWASP AI Testing Guide and developed course materials.

Stackforce AI infers this person is a Cybersecurity expert with extensive experience in Cloud Security and Vulnerability Management.

Contact

Skills

Core Skills

CybersecurityCloud Security

Other Skills

Artificial Intelligence (AI)Vulnerability ManagementApplication SecurityMicrosoft AzureNetwork Security ImplementationFirewallsRSA SecurityTripwireInformation Security ManagementISO 27001CISSPSecuritySecurity AuditsNetwork SecurityOpen Source

About

Experience

At&t

Sr. Specialist Cybersecurity

Dec 2025 – Present · 3 mos · Hyderabad, Telangana, India · On-site

Freelance

AI and Cyber Security Consultant

Jul 2025 – Dec 2025 · 5 mos · Hyderabad, Telangana, India · Remote

Delivered Cyber Security consulting services to Prokopto.io.
Provided Cyber Security consulting services to Cyspace Global.
Developed course material on Cybersecurity and Artificial Intelligence for Simplilearn.com.
Actively contributed to the OWASP AI Testing Guide.

Artificial Intelligence (AI)Cybersecurity

Microsoft

2 roles

Cyber Security Specialist and Program Manager

Promoted

Jun 2021 – Jun 2025 · 4 yrs · Hyderabad, Telangana, India

Working as Cyber Security Specialist and Program manager on M365 Core Security team(Green Team) responsible for invisible Security for this service and reduce attack surface.
Improved the Network Security Architecture for M365 Azure tenant
Responsible for implementing EDR across M365 Azure cloud
Improved Security Documentation and Reporting
Collaborate with Compliance and Operational team
Improve firm standard by identify and mitigate risk
Specialist in identifying and documenting root cause analysis for incident
Lead the stakeholder engagement with business owners
Responsible for Repo Compliance
Implemented Zero Trust by implementing Privileged Access management

Cloud SecurityVulnerability ManagementCybersecurity

Cyber Security Engineer

Jun 2021 – Dec 2023 · 2 yrs 6 mos · Hyderabad, Telangana, India

Application SecurityCloud SecurityMicrosoft AzureNetwork Security Implementation

Cotiviti

Global Vulnerability & Threat Senior Manager

Jun 2018 – Jun 2021 · 3 yrs · Hyderabad Area, India

Working in Cyber Security Team of Cotiviti and lead the Vulnerability Management and Policy compliance module.
Assist to achieve the HITrust compliance for Cotiviti
Developed the gold image with CIS Benchmark for all the technology
Assist in determining risk in the environment and work in mitigating its impact
Expert of Azure Security Architecture and Microsoft products

Servicenow

Information Security Specialist at ServiceNow

May 2017 – May 2018 · 1 yr · Hyderabad Area, India

Working for Corporate Information Security Office (CISO Executive) responsible for Date Centre and End Points Security.
Single handily manages Vulnerability management across all the ServiceNow devices
Responsible for Date Centre Information Security
Responsible for End Points Devices Security
Review changes happening in Data Centres devices
Manager of QUALYS (VM and PC Module) for EU assets of ServiceNow
o Configuring Asset Group in Qualys and importing it to ServiceNow CMDB
o Perform the authenticated scan (Authentication using integrated the Password Vault)
o Reporting in all format also integrated with new ServiceNow Vulnerability response module
o Enforce Qualys policy compliance with internal Policy, industry mandated and external regulations
o Lead Configuration compliance standard project -achieve agreement on common industry standard compliance benchmarks using CIS
o Periodic policy scans and reporting within the Windows server, UNIX, Network, Cloud Environment
o Review of failing controls and any subsequent implementation of controls configuration
o Deploy Qualys agent access all End points
o Deploy EC2 Connector on AWS devices and Qualys agent on Azure devices

Deloitte

2 roles

Assistant Manager of Technology Security

Sep 2014 – Apr 2017 · 2 yrs 7 mos · Hyderabad Area, India

Working for Deloitte Global Information Security Office (Deloitte CISO Executive) which is responsible to secure Information System of Deloitte and its member firm
Develop the Information Security Strategy which is implanted across Deloitte
Publish the GISO bulletin for any information security issues
Implement ISO-27001 standard control and PCI-DSS Control
Woking with Deloitte Member Firm to improve their Security Standard
Primarily responsible for Global Hosting Center(Date Center) Security and Compliance
Perform Vulnerability Assessment using Qualys
Perform the Security Sign off while any asset is moved to production SLA
Review request for change in Security prospective
Incident Response and Forensic Investigation
Provide guidance to SOC team which handle the SIEM (Arcsight, Splunk)

Technology Senior Security Analyst

May 2011 – Aug 2014 · 3 yrs 3 mos · Hyderabad Area, India

Global Security Office

Indmax it solutions pvt. ltd

Senior Security Analyst

Aug 2009 – Apr 2011 · 1 yr 8 mos

Working in Security Operation Center of SuccessFactors

Successfactors

Senior Security Analyst

Aug 2009 – Apr 2011 · 1 yr 8 mos

Working for Security Operation Canter of SuccessFactors which is having seven Data Canters, one corporate office and several branch offices across the world. The Service which we provide is as following:
Detection and protection of intrusions in real-time (IDS, IPS)
Systematize the security devices including Firewall, RSA, Tripwire, OSSIM etc
Centralized log management and analysis
Incident management and response
Vulnerability assessment and Penetration testing
Characterize security policy of organization
Regularly perform the Internal Audit
Generate weekly and monthly report from heterogeneous security products in regular language
Regularly accomplish awareness program for member of other team on information security