Jun 2024 – Jan 2026 · 1 yr 7 mos · Bengaluru, Karnataka, India

• Cyber Risk
• ● Spearheaded the launch of an AI-powered cybersecurity newsletter, delivering curated insights on emerging threats and industry trends to enhance cyber awareness across the organization
• ● Led the review and optimization of the external cyber risk benchmarking process, improving cross-team collaboration and increasing the effectiveness of comparative risk assessments
• ● Maintained and governed an enterprise-wide cyber risk register, ensuring accuracy and alignment with organizational risk posture, serving as a single source of truth for all risk-related decisions
• ● Streamlined cyber risk reporting by implementing automated solutions using Excel and Power BI, reducing manual reporting efforts by 50% and significantly improving timeliness and accuracy
• ● Partnered with internal stakeholders to proactively identify cyber risk exposures across systems, processes, and data flows, and advised on mitigation strategies aligned with business objectives and risk tolerance
• ● Continuously enhanced knowledge of cybersecurity principles, frameworks (e.g., NIST, ISO 27001), threat landscapes, and risk controls to: Effectively identify and advise on internal cyber risk exposures related to processes, systems, and data handling

Apr 2023 – Jun 2023 · 2 mos · Bengaluru, Karnataka, India · On-site

Sep 2022 – May 2024 · 1 yr 8 mos · Mumbai, Maharashtra, India

Sep 2021 – Jun 2022 · 9 mos · Stockholm, Stockholm County, Sweden

• Created NASL scripts by researching different software's to detect network vulnerability for servers and end user machines on different OS platforms like Windows and Linux.
• Researched different vulnerabilities and mapped them to the potential ransomware threats leading to the development of the new feature for the vulnerability detection tool.
• Analyzed and developed multiple phishing templates of both websites and emails for the Phishing and Awareness Training program in the customer's environment.

Jun 2019 – Sep 2021 · 2 yrs 3 mos · New Delhi Area, India

• ⦁ Monitored organization’s networks for security breaches and investigated violations.
• ⦁ Utilized Intrusion Detection and Prevention systems, Security Information and Event
• Management (SIEM)
• ⦁ Analyzed and identified security alert information from all approved security devices,
• collection techniques and designated system logs.
• ⦁ Performed system and network vulnerability scans in order to identify and remediate
• potential risks.
• ⦁ Conducted base level analysis to determine the legitimacy of the files, domains and emails
• using online resources IPVoid, Virustotal, URLvoid and Robtex.
• ⦁ Monitored, analyzed and reported network data presented by all application using Splunk.

Jun 2018 – Jul 2018 · 1 mo · Noida Area, India

• Worked in a Data Center with System team, Network team and SAP team.

Jun 2017 – Jul 2017 · 1 mo · Noida Area, India

• Worked on Informatica, MySQL and ETL tools