Gokul Kumar

Cybersecurity Leader | AI Security | AI-Driven SOC Transformation | Zero Trust | SASE/SSE | Cloud & OT Security

Singapore

About

I am a senior cybersecurity leader with 30+ years of global experience helping organizations strengthen cyber resilience, modernize security operations, and reduce enterprise risk across IT, cloud, AI, and OT/ICS environments. My expertise spans AI security, AI-driven cyber defense, SOC transformation, threat detection & response, Zero Trust architecture, SASE/SSE, cloud security, and industrial cybersecurity. I work closely with executive leadership and business stakeholders to align cybersecurity strategy with operational resilience, secure digital transformation, and measurable business outcomes. I have led and supported cybersecurity initiatives across Financial Services, Oil & Gas, Power & Utilities, Telecom, Manufacturing, Transportation, Insurance, and BPO/ITES sectors across APAC and global markets. Core focus areas include: • AI Security & AI Governance aligned to NIST AI RMF • AI-Driven SOC Transformation & Autonomous Security Operations • SIEM, SOAR, XDR & Detection Engineering • Threat Intelligence & MITRE ATT&CK–Aligned Defense • Zero Trust, Identity Security & Micro-Segmentation • SASE/SSE, ZTNA, CASB & Secure Access • Cloud Security, CNAPP, CSPM & SaaS Security • OT / ICS Cybersecurity aligned to IEC 62443 • Cyber Risk Management, Governance & Compliance My approach is grounded in frameworks including MITRE ATT&CK, NIST CSF, NIST AI RMF, NIST SP 800-207, FAIR™, ISO/IEC 27001 and IEC 62443 I maintain strong alignment across modern cybersecurity platforms including Microsoft Security, Palo Alto Networks XSIAM, Wiz, Cribl, Vectra AI, Tines, Netskope, Zscaler, Illumio, CrowdStrike, Dragos, Nozomi Networks, Armis and Claroty. Selected certifications include CISSP, CISM, CISA, CRISC, CCSK v5, C|CISO, IEC 62443 Cybersecurity Expert, Certified AI Security Professional (CAISP), Trusted AI Safety Expert (TAISE), CCZT, Microsoft Security Copilot Ninja, and securiti -AI Security & Governance. Passionate about building resilient, intelligence-driven, and AI-enabled cybersecurity programs capable of defending modern enterprise and industrial environments against evolving cyber threats.

Experience

  • Senior Solutions Partner, Cybersecurity , AJK & Greater China at Orange Cyberdefense
    Feb 2026 - Present · 6 mos

  • Security Consulting Practice - Manager - AMEA at BT
    Jun 2022 - Jan 2026 · 3 yrs 8 mos

    As a Trusted Cybersecurity Advisor, I led strategic initiatives across AMEA, guiding enterprise clients in IT and OT environments through risk reduction, regulatory alignment, and cyber resilience. I collaborated with CISOs, CIOs, and executive stakeholders to shape security strategies aligned with NIST, ISO/IEC 27001, MAS TRM, and Zero Trust principles. 🔹 Key Responsibilities: • Led SOC assessments and transformation programs using MITRE ATT&CK, C2M2, NIST CSF, and ISO 27001 frameworks. • Delivered IT and OT Tabletop Exercises simulating ransomware, insider threat, and supply chain attacks. • Oversaw penetration testing for a telecom client, ensuring secure SDLC alignment and executive reporting. • Enhanced OT visibility and response using Nozomi Networks, Dragos, Claroty, and Forescout. • Advised on Microsoft Defender for Endpoint, Identity, IoT, and Azure Sentinel for advanced threat protection. • Developed detection use cases, IR playbooks, and threat modeling processes for improved SOC effectiveness. • Enabled compliance with MAS TRM, ISO 27001, and sector-specific standards for critical infrastructure and finance. • Mentored SOC and IR teams on threat detection, adversary emulation, and continuous improvement. 🏆 Key Achievements: • Delivered C2M2/NIST-based maturity assessments for critical infrastructure and financial services clients. • Led SOC transformation for a major Oil & Gas client, achieving a 40% reduction in MTTD/MTTR. • Conducted executive Tabletop Exercises across IT and OT, validating IR readiness and regulatory controls. • Improved OT SOC maturity and IR workflows using Claroty, Nozomi and aligned playbooks. • Awarded Star Performer for securing multimillion-dollar cybersecurity deals with Honeywell and Du Telecom.

  • Information Security Advisor - ASIA at Trustwave
    Jul 2021 - May 2022 · 11 mos

    Served as the primary security advisor for Trustwave’s Managed Threat Detection and Response (MTDR) and SIEM services across Asia. Supported enterprise clients by delivering strategic security guidance, threat analysis, and operational tuning to enhance detection coverage and SOC effectiveness. 🔹 Key Responsibilities: • Acted as regional SOC lead advisor for MTDR/MDR deployments, third-party integrations, and SLA governance. • Managed threat detection tuning, use case development, and client enablement, improving response accuracy and SOC workflows. • Designed and executed use case optimization strategies, reducing false positives by over 35% across multiple environments. • Delivered executive-level threat intelligence briefings using SpiderLabs research and dark web telemetry. • Oversaw SIEM tuning, runbook improvements, and custom correlation rules for enhanced detection. • Conducted recurring incident reviews, root cause investigations, and post-incident reporting. • Supported behavioral analytics implementation and prioritization frameworks in collaboration with global SOC and engineering teams. 🏆 Key Achievements: •Achieved 35%+ reduction in false positives, improving analyst efficiency and MTTD for key clients in finance and telecom. •Delivered custom executive threat reports to C-level stakeholders, incorporating dark web insights and regional TTP trends. •Enabled successful onboarding of high-value use cases into MTDR platform, improving threat coverage and alert fidelity. •Facilitated rapid detection tuning post-incident, helping clients prevent recurrence and strengthen response strategy. •Strengthened client engagement and satisfaction by delivering proactive threat briefings and operational health reviews.

  • Solutions Architect at Claroty
    Dec 2020 - Jun 2021 · 7 mos

    Served as a key technical advisor and solution architect for OT/ICS cybersecurity deployments across critical infrastructure sectors in Asia-Pacific. Worked closely with industrial clients to assess risk, design secure architectures, and enable operational visibility and threat detection using Claroty's platform. 🔹 Led solution architecture, deployment planning, and PoC engagements for Claroty’s Continuous Threat Detection (CTD), Secure Remote Access (SRA), and Edge solutions. 🔹 Conducted OT network assessments and supported asset discovery, segmentation design, and protocol visibility optimization. 🔹 Acted as a trusted advisor to clients across energy, manufacturing, and utilities sectors—bridging security requirements with industrial constraints. 🔹 Collaborated with pre-sales, product, and customer success teams to ensure solution fit, scalability, and secure integration with enterprise SOC and SIEM platforms. 🔹 Provided technical enablement to partner channels and supported regional field engineering efforts across APAC. 🏆 Key Contributions: • Successfully architected and supported multi-site OT visibility projects for critical energy and pharma clients in Southeast Asia. • Delivered high-impact demos and workshops that accelerated client decision-making and shortened sales cycles. • Played a pivotal role in aligning Claroty’s solutions with enterprise security architectures, contributing to customer win strategies.

  • Senior Cybersecurity Architect - APAC at Honeywell
    Aug 2017 - Nov 2020 · 3 yrs 4 mos

    Led the design, delivery, and strategic direction of industrial cybersecurity services across APAC. Spearheaded the establishment of the ICS Center of Excellence (COE) in Singapore, launched in April 2018, and acted as the technical interface between clients and Honeywell's global cybersecurity teams. Delivered tailored OT cyber defense programs aligned with IEC 62443, NIST, and sector-specific compliance needs. • Conducted OT SOC readiness assessments and led maturity uplift initiatives for clients in energy, manufacturing, and F&B. • Designed incident response playbooks and facilitated OT-specific tabletop exercises to strengthen ICS resilience. • Integrated passive detection platforms including Nozomi, Darktrace, and Honeywell Forge into OT SOC pipelines. 🔹 Developed OT-specific detection rules and correlation logic to monitor ICS anomalies and protocol-level threats. • Delivered trusted advisory services covering OT threat intelligence, IR coordination, architecture review, and cybersecurity training. • Worked with product teams to validate IT/OT solutions (e.g., Carbon Black, McAfee, IXIA) for operational compatibility. 🏆 Key Achievements: • Established the ICS Center of Excellence in Singapore for industrial cybersecurity consulting across APAC. • Built the Cyber Combat OT cyber range lab for red/blue team simulations and incident response testing. • Winner – Honeywell APAC Cyber Combat (Blue Team). • Led deployment of ICS Shield and application whitelisting solutions across critical infrastructure clients. • Received multiple Client Appreciation Awards (South Korea – Device Control; China – App Whitelisting). • Winner – Honeywell Bronze Award for global ICS Shield implementation in the F&B sector.