Nov 2023 – Dec 2025 · 2 yrs 1 mo · Hybrid

• At Grant Thornton, I played a key role in strengthening enterprise security operations through vulnerability management, automation, and compliance alignment.
• I led the Windows vulnerability management program, introducing automated remediation workflows and proactive risk response mechanisms that significantly improved patching efficiency and reduced exposure windows. By redesigning patch management approaches, I helped increase security operations efficiency by 65% while simultaneously cutting third-party tooling costs by 45% through smarter use of native platforms.
• I also engineered preventive maintenance and automation frameworks that reduced manual operational effort by 30%, enabling security teams to focus on high-impact risks rather than routine tasks. My work directly supported ongoing compliance with ISO 27001 and NIST CSF–aligned audits, contributing to the organization’s top audit performance ranking for three consecutive years.
• In my recent role, I expanded into Asset Security and ServiceNow automation, building more than 20 automated asset workflows to improve inventory accuracy, security alignment, and audit traceability across the enterprise.

Dec 2022 – Nov 2023 · 11 mos · Hybrid

• I was responsible for strengthening the organization’s endpoint security posture through SCCM-driven configuration management, security baselines, and enterprise patch strategy.
• I designed and maintained a robust SCCM infrastructure to support secure OS deployments, standardized configurations, and consistent policy enforcement across the enterprise. I built and enforced security baselines aligned with organizational risk appetite and compliance requirements, ensuring systems were hardened against common threats and misconfigurations.
• I developed task sequences for secure device provisioning, integrating security controls such as BitLocker, endpoint protection, compliance policies, and post-deployment validation checks — ensuring every system entered production in a secure-by-default state.
• To reduce operational risk, I created and executed a structured patch and vulnerability management strategy, combining automated deployment rings, risk-based prioritization, and validation cycles. This approach significantly improved patch success rates, reduced exposure windows, and strengthened the organization’s overall security risk posture.
• Through continuous optimization of SCCM workflows, update management, and configuration drift controls, I helped establish a security-first operational model where endpoint management directly supported cyber risk reduction, audit readiness, and business resilience.

Aug 2022 – Nov 2022 · 3 mos · India · On-site

• During my tenure at PC Solutions, I supported Grant Thronton's enterprise security initiatives through penetration testing, automation, and system hardening.
• I performed security testing across applications and infrastructure to identify vulnerabilities and improve defensive posture. To scale operations, I developed Python-based automation integrated with Ansible for Linux environments, improving configuration consistency and deployment speed. In parallel, I created PowerShell automation for Windows security operations, reducing response times and manual overhead in incident handling.

Jun 2022 – Jul 2022 · 1 mo · India · On-site

• As an End User Engineer, I ensured endpoint security and compliance across large user environments. I maintained OS compliance, BitLocker encryption enforcement, and system hardening to meet audit and policy requirements, working closely with infrastructure and security teams to eliminate configuration drift and close compliance gaps.

Dec 2020 – Nov 2021 · 11 mos · India · On-site

• As a freelance IT professional, I delivered end-to-end IT and security support for clients across multiple industries. My work included network deployments, hardware asset audits, and secure IT operations, supporting major organizations such as Dish TV, Jindal Steels, INOX, Care Health Insurance, and Jio.
• I provided both on-site and remote support, resolving complex system issues and improving the stability, security, and performance of client IT environments.