Nov 2022 – Apr 2025 · 2 yrs 5 mos · Chennai, Tamil Nadu, India · Remote

• Manage a team of security engineers responsible for securing the enterprise as well as hosting service.
• Assist in defining, designing and implementing information security systems and processes to secure hybrid data-center and public cloud infrastructure
• Engage in the software development lifecycle to ensure secure designs and coding practices
• Manage internal and 3rd party app security, penetration testing and vulnerability management programs
• Work closely with Operations, IT, Support and Engineering teams to monitor and remediate security incidents
• Work with Sales and Legal teams to interface with enterprise customers' security teams during pre-sales and post-sales engagements
• Assist with compliance audits in the company
• Assist in creating a culture of security-conscious employees with programs and influence.
• Led a global security analysis of 100+ applications and 300+ network devices and Identified 3 major security gaps
• o Found that addressing just 5% of infrastructure issues fixed 75% of vulnerabilities
• o Improved overall security, especially for internet-facing systems
• Led various security assessment projects including:
• o Cybersecurity (NIST framework)
• o Identity and Access Management
• o PCI-DSS compliance
• o ISO 27001
• o Cloud security
• o Data privacy
• o Disaster recovery
• Conducted hands-on security testing:
• o Penetration testing
• o Cyber war games
• o Tabletop exercises
• Managed large-scale IT projects:
• o Data center consolidations
• o Cloud migrations
• o Merger & acquisition integrations
• o Led teams across multiple locations

Dec 2021 – Nov 2022 · 11 mos

• Coordinate and drive Data Privacy audit discussions for DS SOM Class of Business working with multiple internal stakeholders and external auditors. Understand and advise Operations Managers how high risk and sensitive data needs to be managed, stored and used across our Downstream landscape.
• Understand Downstream landscape and data movements to assure compliance to information risk management guidelines and policies
• Support design of appropriate controls and remediation of findings to enable operational effectiveness
• Be the primary contact providing consultation and resolution of matters relating to compliance with Key and Non Key controls
• Provide subject matter expert support, guidance, and leadership on IT General Controls (including SOX and other Legal & Regulatory) information risk management, application security, compliance, and assurance matters. In scope is the full Downstream service portfolio, with specific focus on a Class of Business
• Evaluating the efficiency of controls and work with relevant Business SOMs to improve/automate
• Establish, build and enhance the skill set of Control Owners and Operators within Downstream to ensure a consistent and sustained level of risk and controls capabilities is achieved for the application and infrastructure landscapes.
• Facilitate issues identified during testing and monitoring. Plan and work with control owners and operators and the relevant testing team.
• Be actively involved in process and control design, working towards control standardization and best practices includes Risk & Control Identification (RCI) and Project Delivery.
• Work closely together with our Control Owners and Operators and monitor and steer them where needed.

Feb 2019 – Nov 2020 · 1 yr 9 mos · Bengaluru, Karnataka, India

• In this organization, I have taken up the Technical Marketing Engineer role in efficiently planning, installing, configuring and deploying data privacy systems. The project that I worked on, intended to create an application that would be used to determine privacy performances and standards. Also, I structured the design for defining new products and implemented methods to evaluate an online security system. Further,
• I spearheaded different presales activities including successful execution of Proof of Concepts (POC), Interoperability Tests (IOT), trials, and customer demonstrations.
• I efficiently set up a process for determining privacy practices' priorities.
• In addition to these, I strategically defined product roadmaps, feature priorities, and new product initiatives after consolidating customer requirements.
• I established metrics to measure and report privacy performance and trends.
• Besides, I administered and assisted in the implementation of audit recommendations according to the needs and ensured compliance with privacy standards and policies for data collection, retention, destruction, acceptable use, breach management and data loss prevention.
• To evaluate risk, I utilized different methodologies including ISO and flowcharts.
• I determined potential process improvement opportunities and issues that need remediation.

Apr 2017 – Jan 2019 · 1 yr 9 mos · Bangalore

• Here, I served as a Technical Lead for incorporating privacy, design, infrastructure, and audits. Also, orchestrated various privacy laws in implementing system and network security for consistent growth of the company. I spearheaded risk management operations with a view to achieving clients' objectives and ensuring that resources were utilized optimally during implementation, global rollouts and production support. Also,
• While implementing procedures, I conformed to privacy policies and performed privacy impact assessments; leveraged system and network security support to the customers.
• Besides, I incorporated privacy by design principles and considerations into the design process.
• I skillfully performed different audits including Infrastructure, Enterprise Network, PCI and ISO 27001 audits.
• By virtue of experience, I acquired empirical knowledge on International Privacy Laws and Regulations.
• I spearheaded different risk management initiatives including identifying, analyzing, assessing and monitoring risks, besides reviewing IT risk register for the group.
• In addition to this, I calculated risk ranking for the group and prepared IT audit calendar accordingly.
• I provided technical guidance and owned demonstrations for analyst report submissions and briefings while assisting the manager in developing and documenting program metrics.

Sep 2015 – Jan 2017 · 1 yr 4 mos

• Back then, I was entrusted with the ownership of customer issues and seeing problems through to resolution within agreed time limits. Also, I consistently monitored the performance of computer systems by researching, diagnosing, troubleshooting and identifying solutions to resolve system issues. I was responsible for the design of system landscape and defining client instance strategy. Additionally,
• As a Support Engineer, I provided 24*7 network support and adhered to SLAs while escalating tickets.
• I resolved network related problems of McAfee's Vulnerability Manager, McAfee NSM, NSP, and MSME.
• To troubleshoot security related issues and complications on customer networks efficiently, I collaborated with different other engineers.
• I utilized sniffer expert and decode utility to perform packet level troubleshooting and displayed actual packet, including all headers.
• Additionally, I utilized McAfee Vulnerability Manager tool to conduct Vulnerability Assessment.
• I liaised with the development engineers to develop the fix and test it in the lab environment before deploying it to the customer’s environment.

Jun 2014 – May 2015 · 11 mos · Tamil Nadu, India

• Here again, I played a significant role in performing different administration activities such as deploying and maintaining IT network infrastructure. I diligently collected network performance data, monitored network security and optimized server capacity to manage the flow of information. Also, I carried out testing data exchange and communication between computers, routers, modems, and servers. Apart from these,
• I skillfully resolved network related errors with Juniper SRX branch end devices and troubleshot network security issues on customer networks in coordination with other engineers.
• Again, I conducted packet level troubleshooting using sniffer expert and decode utility to show the actual packet including all headers.
• To streamline process improvement opportunities and develop an adoption plan, I coordinated with managers and the leadership team.
• In addition, I comprehended existing technology, performed analysis on new technologies, and referred to standards and frameworks.
• I educated and trained junior engagement team members.

Oct 2013 – May 2014 · 7 mos · Bangalore

• Back then, I was entrusted with the ownership of customer issues and seeing problems through to resolution within agreed time limits. Also, I consistently monitored the performance of computer systems by researching, diagnosing, troubleshooting and identifying solutions to resolve system issues. I was responsible for the design of system landscape and defining client instance strategy. Additionally,
• As a Support Engineer, I provided 24*7 network support and adhered to SLAs while escalating tickets.
• I resolved network related problems of McAfee's Vulnerability Manager, McAfee NSM, NSP, and MSME.
• To troubleshoot security related issues and complications on customer networks efficiently, I collaborated with different other engineers.
• I utilized sniffer expert and decode utility to perform packet level troubleshooting and displayed actual packet, including all headers.
• Additionally, I utilized McAfee Vulnerability Manager tool to conduct Vulnerability Assessment.
• I liaised with the development engineers to develop the fix and test it in the lab environment before deploying it to the customer’s environment.

Oct 2012 – Feb 2013 · 4 mos · Bangalore

• As an analyst, I have in-depth knowledge of hardware and software systems, high-level interpersonal skills, and the ability to solve complex IT issues. I possess the ability to quickly establish good working relationships with clients. Also, I developed skills in connecting to the customer’s computer system via remote access and identifying the nature of hardware, software, or networking issue and also, carefully examine the records of a user’s history of software or hardware problems and offer suggestions to prevent future issues. Further,
• I leveraged 24*7 network support in customer’s environments and resolved system security related issues on customer networks.
• I take great pride in mentioning that I sorted out network related problems of SonicWALL UTM device and troubleshot issues related to Firewall, Intrusion Detection Systems (IDS), Virtual Private Network (VPN), and Authentication Authorization and Accounting (AAA).
• To resolve issues encountered at customer’s network in real-time, I resorted to network simulation method.
• I acquired expertise in categorizing problems based on their difficulty level by performing advanced problem analysis.
• From a documentation standpoint, I generated and published technical documentation intended for internal and external use.
• I examined the available logs of the product to troubleshoot the problem and conducted packet level troubleshooting using sniffer expert and decode utility to show the actual packet, including all headers.

Jun 2009 – Sep 2012 · 3 yrs 3 mos · Bangalore

• In this organization, my key role was to design and deploy network appliances like firewalls, intrusion detection services and system log servers. Undertook special projects like LAN/WAN design and implementation. Performed cross-functional tasks as required including on-call rotation for network transport operations. Some of the key responsibilities that I undertook were,
• I administered LAN/WAN support for the corporate network management of infrastructure.
• Also, I established and maintained Visio documentation database of network topology and proficiently configured and managed routers, switches, and related networking and computer peripheral devices.
• I utilized a variety of access control lists and object grouping to implement packet filtering.
• To upgrade Cisco Routers, Switches and Firewall (PIX) Internetwork Operating System (IOS), I used Trivial File Transfer Protocol (TFTP) and installed Cisco IPS sensors/modules to configure essential system parameters.
• I gained experience in configuring Remote Authentication Dial-In User Service (RADIUS), Terminal Access Controller Access Control System + (TACACS +), and AAA using CISCO Access Control Server (ACS).