Oct 2021 – May 2024 · 2 yrs 7 mos · Pune, Maharashtra, India · Hybrid

• Strengthening Secure Business Scale through Security Oversight and Risk Capability Development
• As organizations expanded their cloud footprint and global vendor ecosystems, consistent and reliable visibility into third-party security posture became essential to supporting secure operations, brand trust, and customer confidence. The need was not only to assess risk, but to do so in a way that could scale, remain credible, and inform decisions.
• In this context, I served as a Lead Assessor and performed QA reviews for third-party security assessments across complex vendor ecosystems, covering domains including cybersecurity, IT and network security, identity and access management, secure SDLC, physical and environmental security, and operational controls. I worked across multi-location environments to align scope, evidence expectations, and assessment sequencing with operational realities, enabling effective execution without disrupting BAU activities.
• Beyond assessment delivery, I contributed to research and capability development initiatives focused on strengthening how cybersecurity risk is evaluated and monitored at scale. This included work on Cyber Risk Quantification (CRQ) to support more informed, decision-ready risk discussions beyond qualitative assessments, and Continuous Control Monitoring (CCM) to enable regular, data-driven visibility into control performance rather than reliance on point-in-time assessments. The emphasis was on practicality, scalability, and alignment with governance expectations.
• Also, developed RFPs, SOWs, and POVs, translating security and risk concepts into clear, outcome-oriented proposals that supported delivery alignment and client decision-making.
• The outcome was stronger consistency in security assessments, improved confidence in risk visibility, and more reliable inputs for governance and decisions, enabling organizations to scale securely while protecting brand value and customer trust.

Jan 2017 – Oct 2021 · 4 yrs 9 mos · Pune, Maharashtra, India · On-site

• Building Practical Security Foundations through Information Security Operations
• As organizations increasingly relied on digital systems to support daily operations, the immediate need was to establish basic information security hygiene, meet compliance expectations, and respond effectively to operational security issues. In a small-scale organization, security work required hands-on involvement across multiple areas to keep systems stable and risks manageable.
• In this role, I supported information security operations by assisting with security assessments, basic incident handling, and implementation of baseline security controls. I worked closely with infrastructure and network teams to help identify vulnerabilities, support remediation actions, and ensure essential controls were in place to protect systems and data.
• I contributed to compliance-aligned security activities by supporting control implementation and documentation in line with standards such as PCI DSS and ISO/IEC 27001, helping the organization build structured security practices. I also supported business continuity activities, assisted with patching and endpoint protection, and contributed to maintaining security documentation, policies, and procedures.
• Exposure to early cloud and application security concepts helped me understand how security risks emerge at the operational level and how practical controls are applied in real environments. I also supported solution design and pre-sales activities where required, gaining visibility into how security requirements are translated into implementable solutions.
• The outcome was a solid grounding in information security operations, control implementation, and incident readiness. This role provided the practical, hands-on foundation that later enabled me to work effectively in cybersecurity governance, audit, and risk oversight roles with an execution-aware perspective.

Oct 2015 – Dec 2016 · 1 yr 2 mos · Pune, Maharashtra, India · On-site

• Ensuring Reliable Connectivity and Operational Stability through Network Engineering
• At an early stage of my career, reliable network connectivity was essential to keeping business operations running smoothly and meeting customer expectations. Network disruptions directly affected productivity, service delivery, and trust, making stability and performance critical priorities.
• In this role, I supported the core network infrastructure for client environments, working on installation, configuration, and day-to-day management of network devices. I handled escalated site-down incidents in coordination with service providers, focusing on timely restoration of services and minimizing business impact.
• I worked on monitoring and improving network performance, investigating recurring issues through log analysis, diagnostics, and root cause assessment. I followed defined change control procedures when implementing configuration updates and maintained accurate documentation, network diagrams, and vendor information to ensure operational clarity and continuity.
• The outcome was improved network reliability, faster resolution of connectivity issues, and stronger operational discipline around change and documentation. This role built my foundational understanding of infrastructure stability, incident handling, and operational risk.

Nov 2013 – Sep 2015 · 1 yr 10 mos · Pune, Maharashtra, India · On-site

• Establishing Reliable Network Foundations for Business Continuity
• In the early phase of my career, stable and well-designed network connectivity was fundamental to supporting business operations and customer service. Organizations depended on reliable LAN, WAN, and WLAN environments to ensure uninterrupted access to systems, applications, and services.
• In this role, I worked as a Network Engineer, supporting the implementation and maintenance of LAN, WAN, and WLAN solutions, including IPv4 addressing for customer environments.
• I handled day-to-day network troubleshooting across a range of issues such as intermittent connectivity, slow network performance, routing problems, site-down incidents, quality-of-service challenges, and firmware upgrade activities. I focused on identifying root causes and restoring connectivity efficiently to minimize operational impact.
• I also supported disaster management activities, including backup and restore operations, contributing to the organization’s ability to recover from outages and maintain service continuity.
• The outcome was improved network reliability, quicker resolution of connectivity issues, and stronger operational discipline.