Debasish Sahu

CEO

Bengaluru, Karnataka, India11 yrs 7 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Expert in managing cybersecurity operations and compliance.
Proven track record in vulnerability management and risk assessment.
Strong collaboration skills across product and engineering teams.

Stackforce AI infers this person is a Cybersecurity expert specializing in compliance and risk management within enterprise environments.

Contact

Skills

Core Skills

CybersecurityRisk ManagementApplication SecurityComplianceTechnical Support

Other Skills

GRCVulnerability ManagementSecurity EngineeringSOC OperationsRisk AssessmentIncident ResponseISO 27001Cloud SecurityDevSecOpsSIEMThreat ManagementNIST 800-53OWASPProduct SecuritySecurity Architecture Engineering

About

I help lead and manage cybersecurity operations at Ecolab’s India Global Capability Center, supporting global security initiatives that protect our people, platforms, and products. My experience spans Product and Application Security, Governance, Risk & Compliance (GRC), Vulnerability Management, and Security Engineering, Identity and Access Management (IAM) along with direct support to our Global Security Operations Center (SOC). I focus on strengthening Ecolab’s security posture through proactive risk management, automation driven vulnerability remediation, and alignment with enterprise security frameworks and compliance requirements. Passionate about building secure by design systems and fostering collaboration between product, engineering, and security teams to drive measurable business resilience.

Experience

11 yrs 7 mos

Total Experience

2 yrs 5 mos

Average Tenure

5 yrs 5 mos

Current Experience

Ecolab digital center

4 roles

Senior Manager - Global Security

Promoted

May 2024 – Present · 2 yrs

I manage cybersecurity operations at Ecolab’s India GCC, supporting global security programs and driving enterprise resilience across applications, infrastructure, and cloud environments. My work involves cross functional collaboration with global teams to ensure robust risk management, compliance, and operational excellence.
Key Responsibilities:
Lead and coordinate local cybersecurity operations, aligning with Ecolab’s global security strategy and governance framework.
Manage and mature the Product and Application Security program driving secure by design practices and continuous security assessments.
Oversee Vulnerability Management lifecycle from identification and prioritization to remediation and risk reporting.
Partner with Security Engineering teams to design, implement, and automate security controls across hybrid environments.
Contribute to Governance, Risk & Compliance (GRC) initiatives, ensuring adherence to internal policies, regulatory standards, and frameworks (e.g., ISO 27001, NIST).
Collaborate with the Global Security Operations Center (SOC) for incident response, threat monitoring, and security event triage.
Support audits, risk assessments, and continuous improvement initiatives within the GCC and enterprise security programs.
Promote security awareness and best practices across product and engineering teams.
Expertise in:
Application Security | GRC | Vulnerability Management | Security Engineering | SOC Operations | Risk Assessment | Incident Response | ISO 27001 | Cloud Security | DevSecOps | SIEM | Threat Management

Application SecurityGRCVulnerability ManagementSecurity EngineeringSOC OperationsRisk Assessment+8

Technical Manager - Cybersecurity

Oct 2023 – May 2024 · 7 mos

Lead Cybersecurity

Feb 2023 – Sep 2023 · 7 mos

Senior Cybersecurity Engineer

Oct 2020 – Jan 2023 · 2 yrs 3 mos

Application SecurityNIST 800-53CybersecurityGRCOWASPProduct Security+19

Pfsweb, inc.

Compliance Analyst

Jan 2018 – Sep 2020 · 2 yrs 8 mos · Bengaluru Area, India

Worked as part of the Information Security and Compliance team, responsible for maintaining and enhancing the organization’s compliance posture across global standards including PCI-DSS, SOX, GDPR, and NIST 800-53.
Led multiple initiatives in vulnerability management, risk assessment, and audit readiness while ensuring adherence to corporate cybersecurity frameworks and regulatory requirements.
Key Responsibilities:
Ensured continuous compliance of enterprise infrastructure against PCI-DSS, GDPR, SOX, and NIST 800-53 frameworks.
Conducted vulnerability management and web application security assessments using tools like Nessus and Qualys, and tracked remediation progress via ticketing systems.
Supported risk assessment and compliance reporting processes; prepared detailed IT security scorecards covering key risk indicators and control metrics.
Monitored and analyzed security logs through SIEM tools (Splunk) to detect potential threats or policy violations.
Performed periodic audits across Credit/Fraud systems, HR operations, and IT controls aligned with SOX and PCI-DSS requirements.
Assisted in the implementation of GDPR compliance controls, data protection policies, and access review mechanisms.
Developed and maintained security policies and procedures, ensuring consistent application of cybersecurity best practices.
Conducted phishing simulations and awareness campaigns to strengthen employee security culture.
Supported network hardening and infrastructure security checks to reduce attack surfaces.
Key Tools & Technologies:
Nessus | Qualys | Splunk | SCCM | SolarWinds Orion | iPAM | KnowBe4 | SharePoint | Kayako Fusion

PCI-DSSSOXGDPRNIST 800-53Vulnerability ManagementRisk Assessment+8

Ibm

Security Delivery Specialist

Feb 2015 – Dec 2017 · 2 yrs 10 mos · Bengaluru Area, India

Worked within IBM’s global security delivery organization, ensuring compliance and security assurance across enterprise server and storage platforms in alignment with ISO 27001, PCI-DSS, and HIPAA standards. Played a key role in vulnerability management, patch compliance, and risk mitigation through proactive audit readiness and automation driven governance.
Key Responsibilities:
Managed vulnerability and compliance assurance across multi-platform environments (Windows, UNIX, AIX, Linux, VMware, VCE) aligned with IBM’s internal security frameworks.
Performed security health checks and hardening of enterprise storage systems (EMC Celera, NetApp, Brocade, VNX, XIV Gen 2/3, SVC, Datadomain, etc.) to maintain compliance posture.
Leveraged IBM BigFix/Endpoint Manager for patch compliance, configuration baseline validation, and automated remediation.
Conducted internal ITGC reviews, prepared audit evidence, and supported corporate audits and client assessments.
Raised and tracked non-conformance incidents (NCIs), coordinated remediation, and ensured closure of audit findings.
Delivered root cause analyses (RCA) and defect prevention plans (DPP) for process or configuration gaps.
Drove ISO 27001 governance, operational risk tracking, and mitigation activities with cross-functional teams.
Supported automation initiatives such as Continuous Compliance (CC) and Risk-based Continuous Patching (RCP) to improve efficiency and reduce manual effort.
Partnered with auditors on policy reviews, client agreements, and security documentation.
Key Tools & Platforms:
IBM BigFix / IEM | COGNOS | BMC Remedy | iLO | SCA | ECM | ADE | CIRATS | GACDW | GCM | CWP | SCoA Tool | HwSw Currency Tool | ITCS 104 Log Analysis

ISO 27001PCI-DSSHIPAAVulnerability ManagementAudit ReadinessRisk Mitigation+3

Freecharge

Freelancer

Sep 2014 – Feb 2015 · 5 mos · Bengaluru, Karnataka, India

Worked as a freelancer with Freecharge (Accelyst Solutions Pvt. Ltd.), supporting technical operations and customer experience teams to ensure smooth and secure digital payment transactions.
Key Responsibilities:
Resolved technical issues related to payment gateways and merchandise transactions, ensuring minimal downtime and seamless customer experience.
Handled and prioritized support tickets to provide timely, accurate, and effective solutions to transaction-related queries.
Collaborated with internal teams to identify root causes, track resolution progress, and improve incident response efficiency.
Ensured adherence to internal SLAs and maintained consistent communication with stakeholders during issue resolution.
Key Skills:
Payment Gateway Support | Technical Troubleshooting | Transaction Monitoring | Customer Issue Resolution | Ticket Management | Incident Analysis

Technical TroubleshootingPayment Gateway SupportCustomer Issue ResolutionTechnical Support

[24]7.ai

Technical Support Specialist

Jun 2014 – Feb 2015 · 8 mos · Bengaluru, Karnataka, India · On-site

Worked as part of the global technical support team at [24]7 Inc, providing real-time assistance to international clients for resolving issues related to Adobe applications. Focused on ensuring seamless user experience through technical troubleshooting, installation support, and product guidance.
Key Responsibilities:
Delivered technical support to clients worldwide for multiple Adobe products, ensuring timely resolution of application issues.
Assisted customers with software installation, product activation, runtime error resolution, and application troubleshooting across different operating systems.
Guided users through product usage, purchase validation, and feature related inquiries, enhancing overall customer satisfaction.
Authored and maintained FAQ blogs and self help documentation for unsupported Adobe freeware applications, improving community driven issue resolution.
Ensured adherence to service quality standards, response SLAs, and effective communication throughout the support process.
Key Skills:
Technical Troubleshooting | Adobe Applications | Software Installation & Configuration | Customer Support | Incident Resolution | Knowledge Base Management | Communication Skills

Technical TroubleshootingAdobe ApplicationsCustomer SupportTechnical Support