Santosh Kumar

SVP & CISO @ Mphasis | ๐ŸซIIT Madras | IIM Indore | CISSP, CISA, CIPP/E, CISM, AIGP, PMP, FIP(Fellow of Information Privacy)

Bengaluru, Karnataka, India

About

๐—–๐—ต๐—ถ๐—ฒ๐—ณ ๐—œ๐—ป๐—ณ๐—ผ๐—ฟ๐—บ๐—ฎ๐˜๐—ถ๐—ผ๐—ป ๐—ฆ๐—ฒ๐—ฐ๐˜‚๐—ฟ๐—ถ๐˜๐˜† ๐—ข๐—ณ๐—ณ๐—ถ๐—ฐ๐—ฒ๐—ฟ (CISO) | ๐—–๐—ต๐—ถ๐—ฒ๐—ณ ๐—”๐—œ ๐—ข๐—ณ๐—ณ๐—ถ๐—ฐ๐—ฒ๐—ฟ (CAIO) | ๐—™๐—ฒ๐—น๐—น๐—ผ๐˜„ ๐—ถ๐—ป ๐—œ๐—ป๐—ณ๐—ผ๐—ฟ๐—บ๐—ฎ๐˜๐—ถ๐—ผ๐—ป ๐—ฃ๐—ฟ๐—ถ๐˜ƒ๐—ฎ๐—ฐ๐˜† (๐—™๐—œ๐—ฃ) Santosh is a cybersecurity and AI governance leader with 26+ years of global experience across cybersecurity, data protection, privacy, digital risk, and responsible AI. His expertise spans enterprise cyber governance, technology risk, security engineering, SOC operations, incident response, and large-scale security transformation. A Fellow of Information Privacy (FIP), Santosh holds globally recognized certifications including CISSP, PMP, CISA, CHFI, CEH, CIPP/E, and CIPM. Having served as CISO across both product and services organizations, he has built and led globally distributed security teams across highly regulated industries. He works closely with leadership, translating cyber and technology risks into strategic insights that drive informed decisions and regulatory confidence. Santosh also serves as a Data Protection & Privacy Grievance Officer, overseeing global privacy law compliance. Santosh leads enterprise Governance, Risk & Compliance (GRC) programs with expertise across SOC 1/2, PCI DSS, HITRUST, TISAX, CyberGRX, and Cyber Essentials Plus, along with global standards including ISO 27001, ISO 22301, ISO 20000, ISO 42001, and ISO 21434. As Chief AI Governance Officer (CAIGO), he leads AI and Agentic AI governance, driving compliance with regulations such as the EU AI Act. His work includes AI risk classification, human-in-the-loop oversight, responsible AI frameworks, and ISO/IEC 42001 implementation to enable trustworthy AI adoption. He also leads ISMS and BCMS programs, strengthening business continuity, disaster recovery, resilience testing, and enterprise crisis preparedness. Santosh oversees 24ร—7 Security Operations, integrating threat intelligence, vulnerability management, UEBA, and AI-driven detection to improve SOC maturity and reduce MTTD and MTTR through advanced SIEM and SOAR. Technically, Santosh brings leadership across AWS, Azure, and GCP, driving Zero Trust architectures, secure cloud transformation, and AI-driven SecOps, while aligning security with modern SDLC and agile delivery. Beyond enterprise leadership, Santosh is a trusted advisor and speaker on cybersecurity, AI security, privacy, and digital risk governance, helping organizations build secure, intelligent, and future-ready digital enterprises. ๐Ÿ“ฉ [email protected] ๐Ÿ“ฉ [email protected]

Experience

  • Mphasis ()
    • Chief Information Security Officer (CISO)
      Jul 2025 - Present ยท 1 yr 1 mo

      โœ… ๐†๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž, ๐‘๐ข๐ฌ๐ค & ๐‚๐จ๐ฆ๐ฉ๐ฅ๐ข๐š๐ง๐œ๐ž (๐†๐‘๐‚): Defining ๐ฉ๐จ๐ฅ๐ข๐œ๐ข๐ž๐ฌ and ๐ซ๐ž๐ ๐ฎ๐ฅ๐š๐ญ๐จ๐ซ๐ฒ ๐š๐ฅ๐ข๐ ๐ง๐ฆ๐ž๐ง๐ญ. Overseeing ๐ˆ๐’๐Ž ๐Ÿ๐Ÿ•๐ŸŽ๐ŸŽ๐Ÿ/๐Ÿ’๐Ÿ๐ŸŽ๐ŸŽ๐Ÿ/๐Ÿ๐Ÿ๐Ÿ‘๐ŸŽ๐Ÿ/๐Ÿฎ๐Ÿฌ๐Ÿฌ๐Ÿฌ๐Ÿฌ, ๐’๐Ž๐‚๐Ÿ/๐Ÿ, ๐๐‚๐ˆ-๐ƒ๐’๐’, ๐‡๐ˆ๐“๐‘๐”๐’๐“, ๐“๐ˆ๐’๐€๐—, ๐‚๐ฒ๐›๐ž๐ซ๐†๐‘๐—, ๐‚๐ฒ๐›๐ž๐ซ ๐„๐ฌ๐ฌ๐ž๐ง๐ญ๐ข๐š๐ฅ ๐๐ฅ๐ฎ๐ฌ and client-mandated controls โœ… ๐ƒ๐š๐ญ๐š ๐๐ซ๐ข๐ฏ๐š๐œ๐ฒ ๐‹๐š๐ฐ๐ฌ โ€“ ๐†๐ซ๐ข๐ž๐ฏ๐š๐ง๐œ๐ž ๐Ž๐Ÿ๐Ÿ๐ข๐œ๐ž๐ซ โœ… ๐ˆ๐’๐Œ๐’ & ๐๐‚๐Œ๐’ ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Ensuring ๐๐‚๐/๐ƒ๐‘ strategy, ๐ซ๐ž๐ฌ๐ข๐ฅ๐ข๐ž๐ง๐œ๐ž ๐ญ๐ž๐ฌ๐ญ๐ข๐ง๐ , and ๐œ๐ฅ๐ข๐ž๐ง๐ญ ๐š๐ฌ๐ฌ๐ฎ๐ซ๐š๐ง๐œ๐ž โœ… ๐“๐ž๐œ๐ก๐ง๐จ๐ฅ๐จ๐ ๐ฒ ๐‘๐ข๐ฌ๐ค, ๐‚๐ฅ๐จ๐ฎ๐ & ๐€๐ˆ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Defining ๐‚๐ฒ๐›๐ž๐ซ ๐’๐ญ๐ซ๐š๐ญ๐ž๐ ๐ฒ & ๐‘๐จ๐š๐๐ฆ๐š๐ฉ. Governing ๐š๐ซ๐œ๐ก๐ข๐ญ๐ž๐œ๐ญ๐ฎ๐ซ๐ž ๐ฌ๐ญ๐š๐ง๐๐š๐ซ๐๐ฌ, ๐œ๐ฅ๐จ๐ฎ๐ ๐Ÿ๐ซ๐š๐ฆ๐ž๐ฐ๐จ๐ซ๐ค๐ฌ, ๐€๐ˆ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ & ๐‚๐จ๐„ โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐Ž๐ฉ๐ž๐ซ๐š๐ญ๐ข๐จ๐ง๐ฌ (๐’๐Ž๐‚) & ๐“๐ก๐ซ๐ž๐š๐ญ ๐Œ๐š๐ง๐š๐ ๐ž๐ฆ๐ž๐ง๐ญ: Overseeing 24ร—7 ๐’๐Ž๐‚, ๐ญ๐ก๐ซ๐ž๐š๐ญ ๐ข๐ง๐ญ๐ž๐ฅ, ๐•๐Œ, ๐”๐„๐๐€, and ๐€๐ˆ-๐๐ซ๐ข๐ฏ๐ž๐ง ๐๐ž๐ญ๐ž๐œ๐ญ๐ข๐จ๐ง๐ฌ. Improving ๐’๐Ž๐‚ ๐ž๐Ÿ๐Ÿ๐ข๐œ๐ข๐ž๐ง๐œ๐ฒ, ๐Œ๐“๐“๐ƒ, and ๐Œ๐“๐“๐‘ via ๐’๐ˆ๐„๐Œ & ๐’๐Ž๐€๐‘ โœ… ๐ˆ๐ง๐œ๐ข๐๐ž๐ง๐ญ ๐‘๐ž๐ฌ๐ฉ๐จ๐ง๐ฌ๐ž & ๐‚๐ฒ๐›๐ž๐ซ ๐ˆ๐ง๐ฏ๐ž๐ฌ๐ญ๐ข๐ ๐š๐ญ๐ข๐จ๐ง๐ฌ: Leading enterprise ๐ˆ๐‘, ๐œ๐ซ๐ข๐ฌ๐ข๐ฌ ๐ฆ๐š๐ง๐š๐ ๐ž๐ฆ๐ž๐ง๐ญ, ๐Ÿ๐จ๐ซ๐ž๐ง๐ฌ๐ข๐œ๐ฌ, ๐ซ๐ž๐ ๐ญ๐ž๐š๐ฆ๐ข๐ง๐ , and preparedness for ๐ซ๐š๐ง๐ฌ๐จ๐ฆ๐ฐ๐š๐ซ๐ž, ๐ณ๐ž๐ซ๐จ-๐๐š๐ฒ, and ๐ฌ๐ฎ๐ฉ๐ฉ๐ฅ๐ฒ-๐œ๐ก๐š๐ข๐ง threats โœ… ๐’๐ฎ๐›๐ฌ๐ข๐๐ข๐š๐ซ๐ฒ ๐‚๐ฒ๐›๐ž๐ซ ๐†๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž: Standardizing ๐ฉ๐จ๐ฌ๐ญ๐ฎ๐ซ๐ž, ๐ฆ๐จ๐ง๐ข๐ญ๐จ๐ซ๐ข๐ง๐ , and ๐š๐ฎ๐๐ข๐ญ๐ฌ across global entities โœ… ๐๐ฎ๐ฌ๐ข๐ง๐ž๐ฌ๐ฌ ๐„๐ง๐š๐›๐ฅ๐ž๐ฆ๐ž๐ง๐ญ & ๐‚๐ฅ๐ข๐ž๐ง๐ญ ๐“๐ซ๐ฎ๐ฌ๐ญ: Supporting deals and strengthening ๐œ๐ฅ๐ข๐ž๐ง๐ญ ๐ญ๐ซ๐ฎ๐ฌ๐ญ โœ… ๐Œ&๐€ ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Leading ๐ฉ๐ซ๐ž-๐š๐œ๐ช๐ฎ๐ข๐ฌ๐ข๐ญ๐ข๐จ๐ง ๐๐ฎ๐ž ๐๐ข๐ฅ๐ข๐ ๐ž๐ง๐œ๐ž and ๐ฉ๐จ๐ฌ๐ญ-๐ฆ๐ž๐ซ๐ ๐ž๐ซ ๐ข๐ง๐ญ๐ž๐ ๐ซ๐š๐ญ๐ข๐จ๐ง โœ… ๐„๐ฑ๐ž๐œ๐ฎ๐ญ๐ข๐ฏ๐ž ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Presenting ๐ซ๐ข๐ฌ๐ค, ๐ฆ๐š๐ญ๐ฎ๐ซ๐ข๐ญ๐ฒ, and ๐ฌ๐ญ๐ซ๐š๐ญ๐ž๐ ๐ฒ to Board โœ… ๐“๐š๐ฅ๐ž๐ง๐ญ & ๐‚๐ฎ๐ฅ๐ญ๐ฎ๐ซ๐ž: Building a high-performing team and ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ-๐Ÿ๐ข๐ซ๐ฌ๐ญ culture

    • Chief AI Officer (CAIO)
      Nov 2025 - Present ยท 9 mos

      โœ… Lead enterprise-wide ๐—”๐—œ & ๐—”๐—ด๐—ฒ๐—ป๐˜๐—ถ๐—ฐ ๐—”๐—œ ๐—š๐—ผ๐˜ƒ๐—ฒ๐—ฟ๐—ป๐—ฎ๐—ป๐—ฐ๐—ฒ strategy enabling safe, scalable, and compliant AI adoption. โœ… Own ๐—˜๐—จ ๐—”๐—œ ๐—”๐—ฐ๐˜ compliance including ๐—”๐—œ ๐—ฟ๐—ถ๐˜€๐—ธ ๐—ฐ๐—น๐—ฎ๐˜€๐˜€๐—ถ๐—ณ๐—ถ๐—ฐ๐—ฎ๐˜๐—ถ๐—ผ๐—ป, high-risk controls, and human oversight. โœ… Establish and operate ๐—œ๐—ฆ๐—ข/๐—œ๐—˜๐—– ๐Ÿฐ๐Ÿฎ๐Ÿฌ๐Ÿฌ๐Ÿญ (๐—”๐—œ๐— ๐—ฆ) covering AI, GenAI, and agentic systems. โœ… Define ๐—ฅ๐—ฒ๐˜€๐—ฝ๐—ผ๐—ป๐˜€๐—ถ๐—ฏ๐—น๐—ฒ & ๐—˜๐˜๐—ต๐—ถ๐—ฐ๐—ฎ๐—น ๐—”๐—œ principles including ๐—™๐—ฎ๐—ถ๐—ฟ๐—ป๐—ฒ๐˜€๐˜€, ๐—”๐—ฐ๐—ฐ๐—ผ๐˜‚๐—ป๐˜๐—ฎ๐—ฏ๐—ถ๐—น๐—ถ๐˜๐˜†, ๐—ง๐—ฟ๐—ฎ๐—ป๐˜€๐—ฝ๐—ฎ๐—ฟ๐—ฒ๐—ป๐—ฐ๐˜†, ๐—˜๐˜…๐—ฝ๐—น๐—ฎ๐—ถ๐—ป๐—ฎ๐—ฏ๐—ถ๐—น๐—ถ๐˜๐˜†, ๐—ฅ๐—ฒ๐—น๐—ถ๐—ฎ๐—ฏ๐—ถ๐—น๐—ถ๐˜๐˜†, ๐—ฆ๐—ฎ๐—ณ๐—ฒ๐˜๐˜†, ๐—ฅ๐—ผ๐—ฏ๐˜‚๐˜€๐˜๐—ป๐—ฒ๐˜€๐˜€ & ๐—ฅ๐—ฒ๐—ฑ๐˜‚๐—ป๐—ฑ๐—ฎ๐—ป๐—ฐ๐˜†, ๐—ฆ๐—ฒ๐—ฐ๐˜‚๐—ฟ๐—ถ๐˜๐˜† & ๐—ฃ๐—ฟ๐—ถ๐˜ƒ๐—ฎ๐—ฐ๐˜† in line with EU AI Act obligations and ISO/IEC 42001 controls. โœ… Govern the ๐—˜๐—ป๐—ฑ-๐˜๐—ผ-๐—˜๐—ป๐—ฑ ๐—”๐—œ ๐—Ÿ๐—ถ๐—ณ๐—ฒ๐—ฐ๐˜†๐—ฐ๐—น๐—ฒ, including autonomous agent design, tool access, memory, and orchestration. โœ… Lead ๐—”๐—œ & ๐—”๐—ด๐—ฒ๐—ป๐˜ ๐—ฅ๐—ถ๐˜€๐—ธ ๐— ๐—ฎ๐—ป๐—ฎ๐—ด๐—ฒ๐—บ๐—ฒ๐—ป๐˜, addressing autonomy risk, model drift, emergent behavior, and misuse. โœ… Enforce ๐—›๐˜‚๐—บ๐—ฎ๐—ป-๐—ถ๐—ป/๐—ข๐—ป-๐˜๐—ต๐—ฒ-๐—Ÿ๐—ผ๐—ผ๐—ฝ controls for high-impact and autonomous AI decisions. โœ… Oversee ๐—”๐—œ ๐—”๐˜‚๐—ฑ๐—ถ๐˜๐˜€, ๐—œ๐—บ๐—ฝ๐—ฎ๐—ฐ๐˜ ๐—”๐˜€๐˜€๐—ฒ๐˜€๐˜€๐—บ๐—ฒ๐—ป๐˜๐˜€ & ๐——๐—ผ๐—ฐ๐˜‚๐—บ๐—ฒ๐—ป๐˜๐—ฎ๐˜๐—ถ๐—ผ๐—ป ensuring traceability and transparency. โœ… Govern ๐—ง๐—ต๐—ถ๐—ฟ๐—ฑ-๐—ฃ๐—ฎ๐—ฟ๐˜๐˜†, ๐—™๐—ผ๐˜‚๐—ป๐—ฑ๐—ฎ๐˜๐—ถ๐—ผ๐—ป & ๐—”๐—ด๐—ฒ๐—ป๐˜ ๐—ฃ๐—น๐—ฎ๐˜๐—ณ๐—ผ๐—ฟ๐—บ ๐—ฅ๐—ถ๐˜€๐—ธ๐˜€. โœ… Act as the ๐—˜๐˜…๐—ฒ๐—ฐ๐˜‚๐˜๐—ถ๐˜ƒ๐—ฒ & ๐—•๐—ผ๐—ฎ๐—ฟ๐—ฑ ๐—”๐—ฑ๐˜ƒ๐—ถ๐˜€๐—ผ๐—ฟ on AI autonomy, regulation, and ethical risk posture. โœ… Apply ๐—ฃ๐—ฟ๐—ถ๐—ป๐—ฐ๐—ถ๐—ฝ๐—น๐—ฒ๐˜€ ๐—ผ๐—ณ ๐—ฃ๐—ฒ๐—ฟ๐˜€๐—ผ๐—ป๐—ฎ๐—น ๐——๐—ฎ๐˜๐—ฎ ๐—ฃ๐—ฟ๐—ผ๐—ฐ๐—ฒ๐˜€๐˜€๐—ถ๐—ป๐—ด: ๐—Ÿ๐—ฎ๐˜„๐—ณ๐˜‚๐—น๐—ป๐—ฒ๐˜€๐˜€, ๐—™๐—ฎ๐—ถ๐—ฟ๐—ป๐—ฒ๐˜€๐˜€ & ๐—ง๐—ฟ๐—ฎ๐—ป๐˜€๐—ฝ๐—ฎ๐—ฟ๐—ฒ๐—ป๐—ฐ๐˜†; ๐—ฃ๐˜‚๐—ฟ๐—ฝ๐—ผ๐˜€๐—ฒ ๐—Ÿ๐—ถ๐—บ๐—ถ๐˜๐—ฎ๐˜๐—ถ๐—ผ๐—ป; ๐——๐—ฎ๐˜๐—ฎ ๐— ๐—ถ๐—ป๐—ถ๐—บ๐—ถ๐˜‡๐—ฎ๐˜๐—ถ๐—ผ๐—ป; ๐—”๐—ฐ๐—ฐ๐˜‚๐—ฟ๐—ฎ๐—ฐ๐˜†; ๐—ฆ๐˜๐—ผ๐—ฟ๐—ฎ๐—ด๐—ฒ ๐—Ÿ๐—ถ๐—บ๐—ถ๐˜๐—ฎ๐˜๐—ถ๐—ผ๐—ป; ๐—œ๐—ป๐˜๐—ฒ๐—ด๐—ฟ๐—ถ๐˜๐˜† & ๐—–๐—ผ๐—ป๐—ณ๐—ถ๐—ฑ๐—ฒ๐—ป๐˜๐—ถ๐—ฎ๐—น๐—ถ๐˜๐˜†. โœ… Embed ๐—ฃ๐—ฟ๐—ถ๐˜ƒ๐—ฎ๐—ฐ๐˜† ๐—ฏ๐˜† ๐——๐—ฒ๐˜€๐—ถ๐—ด๐—ป & ๐——๐—ฒ๐—ณ๐—ฎ๐˜‚๐—น๐˜ by applying proactive prevention, privacy-as-default (opt-in), privacy embedded into design, full functionality, end-to-end security, visibility & transparency, and respect for user privacy.

  • Bosch Global Software Technologies ()
    • ๐๐ซ๐จ๐ ๐ซ๐š๐ฆ ๐Œ๐š๐ง๐š๐ ๐ž๐ซ โ€“ ๐‚๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ
      Sep 2019 - Nov 2025 ยท 6 yrs 3 mos

      In this senior leadership role, I directed high-impact cybersecurity programs across global industries, ensuring strategic delivery excellence, optimized execution, and measurable outcomes for mission-critical portfolios. I combined deep domain expertise with strong client stewardship, driving long-term trust and accelerated security maturity across enterprise environments. โœ… ๐’๐ญ๐ซ๐š๐ญ๐ž๐ ๐ข๐œ ๐๐ซ๐จ๐ ๐ซ๐š๐ฆ ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Managed multi-layered cybersecurity programs end-to-end, ensuring schedule integrity, robust governance, budget alignment, and cross-functional synchronization. Strengthened executive engagement through structured reporting, roadmap definition, and transparent risk communication. โœ… ๐€๐ฎ๐ญ๐จ๐ฆ๐จ๐ญ๐ข๐ฏ๐ž ๐‚๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Applied expertise in ๐ˆ๐’๐Ž/๐’๐€๐„ ๐Ÿ๐Ÿ๐Ÿ’๐Ÿ‘๐Ÿ’, securing SDVs, HPCs, and ADAS systems. Delivered hardened architectures with ๐€๐”๐“๐Ž๐’๐€๐‘ ๐’๐ž๐œ๐Ž๐‚, ๐‚๐’๐Œ, ๐‡๐’๐Œ, ๐’๐ž๐œ๐ฎ๐ซ๐ž ๐๐จ๐จ๐ญ, and onboard firewalls. Ensured compliance with ๐”๐๐„๐‚๐„ ๐–๐.๐Ÿ๐Ÿ—, ๐’๐€๐„ ๐‰๐Ÿ‘๐ŸŽ๐Ÿ”๐Ÿ, and ๐“๐ˆ๐’๐€๐—. โœ… ๐‡๐ž๐š๐ฅ๐ญ๐ก๐œ๐š๐ซ๐ž ๐‚๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Built security frameworks aligned with ๐…๐ƒ๐€, ๐‡๐ž๐š๐ฅ๐ญ๐ก ๐‚๐š๐ง๐š๐๐š, ๐„๐” ๐Œ๐ƒ๐‘, and ๐ˆ๐„๐‚ ๐Ÿ–๐Ÿ๐ŸŽ๐ŸŽ๐Ÿ-๐Ÿ“-๐Ÿ, covering device design, lifecycle operations, and post-market surveillance. โœ… ๐Ž๐“ & ๐ˆ๐ˆ๐จ๐“ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Enhanced resilience of ๐ˆ๐‚๐’, ๐’๐‚๐€๐ƒ๐€, ๐ƒ๐‚๐’, and ๐๐‹๐‚ ecosystems using ๐๐ˆ๐’๐“ ๐’๐ ๐Ÿ–๐ŸŽ๐ŸŽ-๐Ÿ–๐Ÿ and ๐ˆ๐’๐€/๐ˆ๐„๐‚ ๐Ÿ”๐Ÿ๐Ÿ’๐Ÿ’๐Ÿ‘ and strengthened manufacturing and industrial safety postures. โœ… ๐‚๐ก๐ข๐ฉ-๐ญ๐จ-๐‚๐ฅ๐จ๐ฎ๐ ๐„๐ง๐-๐ญ๐จ-๐„๐ง๐ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Architected unified security across embedded modules, edge nodes, cloud workloads, and connected platforms, ensuring cohesive lifecycle protection and scalable resilience. โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐„๐ง๐ ๐ข๐ง๐ž๐ž๐ซ๐ข๐ง๐  & ๐€๐ฎ๐ญ๐จ๐ฆ๐š๐ญ๐ข๐จ๐ง: Performed 300+ ๐“๐ก๐ซ๐ž๐š๐ญ & ๐‘๐ข๐ฌ๐ค ๐€๐ง๐š๐ฅ๐ฒ๐ฌ๐ž๐ฌ (๐“๐š๐‘๐€), executed VA/PT, fuzzing, and CIS benchmarking.

    • ๐‚๐ก๐ข๐ž๐Ÿ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐Ž๐Ÿ๐Ÿ๐ข๐œ๐ž๐ซ (๐‚๐’๐Ž) / ๐‚๐ˆ๐’๐Ž
      Jul 2023 - Nov 2023 ยท 5 mos

      As the Chief Security Officer, I served as the advisor to leadership on ๐œ๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ, ๐๐š๐ญ๐š ๐ฉ๐ซ๐จ๐ญ๐ž๐œ๐ญ๐ข๐จ๐ง, ๐€๐ˆ ๐ ๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž, and ๐†๐‘๐‚, driving enterprise-wide strategy and shaping the organizationโ€™s global security posture. I led the design and execution of integrated security frameworks that supported Boschโ€™s complex portfolio across automotive, manufacturing, cloud, OT, and AI-driven ecosystems. โœ… ๐„๐ง๐ญ๐ž๐ซ๐ฉ๐ซ๐ข๐ฌ๐ž ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐†๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž: Established global governance frameworks including ๐ฉ๐จ๐ฅ๐ข๐œ๐ข๐ž๐ฌ, ๐‘๐€๐’๐ˆ๐‚ structures, and ๐จ๐ฉ๐ž๐ซ๐š๐ญ๐ข๐ง๐  models aligned with ๐†๐ƒ๐๐‘, ๐‚๐ฒ๐›๐ž๐ซ ๐‘๐ž๐ฌ๐ข๐ฅ๐ข๐ž๐ง๐œ๐ž ๐€๐œ๐ญ, ๐„๐” ๐€๐ˆ ๐€๐œ๐ญ, and ๐Ž๐„๐‚๐ƒ principles, ensuring consistent security governance across global business units. โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐„๐ง๐ ๐ข๐ง๐ž๐ž๐ซ๐ข๐ง๐  ๐๐ซ๐จ๐œ๐ž๐ฌ๐ฌ (๐’๐„๐) ๐‹๐ž๐š๐๐ž๐ซ: Embedded ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐›๐ฒ ๐ƒ๐ž๐ฌ๐ข๐ ๐ง & ๐ƒ๐ž๐Ÿ๐š๐ฎ๐ฅ๐ญ into Boschโ€™s product development, cloud services, OT/IoT platforms, and manufacturing operations. Implemented structured quality gates, measurable KPIs, and mandatory lifecycle checkpoints to enforce consistent engineering rigor. โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐‘๐ž๐Ÿ๐ž๐ซ๐ž๐ง๐œ๐ž ๐€๐ซ๐œ๐ก๐ข๐ญ๐ž๐œ๐ญ๐ฎ๐ซ๐ž (๐’๐„๐-๐’๐‘๐€): Designed the enterprise-wide SRA aligned with ๐ˆ๐’๐Ž ๐Ÿ๐Ÿ•๐ŸŽ๐ŸŽ๐Ÿ, ๐’๐Ž๐‚ ๐Ÿ, ๐๐ˆ๐’๐“ ๐‚๐’๐…, and ๐๐ˆ๐’๐“ ๐Ÿ–๐ŸŽ๐ŸŽ-๐Ÿ“๐Ÿ‘, enabling unified compliance and streamlined risk management across global engineering teams. โœ… ๐€๐ˆ/๐Œ๐‹ & ๐‹๐‹๐Œ ๐†๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž: Built Boschโ€™s enterprise framework for ๐€๐ˆ ๐ซ๐ข๐ฌ๐ค management, ๐›๐ข๐š๐ฌ mitigation, ๐ฆ๐จ๐๐ž๐ฅ security, ๐๐š๐ญ๐š ๐ฅ๐ข๐ง๐ž๐š๐ ๐ž, and ๐‘๐€๐†/๐‹๐‹๐Œ fine-tuning. Ensured strong alignment with emerging global AI safety and compliance mandates. โœ… ๐ƒ๐ž๐ฏ๐’๐ž๐œ๐Ž๐ฉ๐ฌ & ๐’๐„๐ ๐„๐ง๐Ÿ๐จ๐ซ๐œ๐ž๐ฆ๐ž๐ง๐ญ: Deployed enterprise tooling across product lines: SAST, DAST, fuzzing, secure SDLC controls, and automated checks built directly into development pipelines.

  • ๐’๐ž๐ง๐ข๐จ๐ซ ๐“๐ž๐œ๐ก๐ง๐ข๐œ๐š๐ฅ ๐‚๐จ๐ง๐ฌ๐ฎ๐ฅ๐ญ๐š๐ง๐ญ โ€“ ๐‚๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ at Bosch
    Nov 2023 - Dec 2024 ยท 1 yr 2 mos

    As a ๐’๐ž๐ง๐ข๐จ๐ซ ๐“๐ž๐œ๐ก๐ง๐ข๐œ๐š๐ฅ ๐‚๐จ๐ง๐ฌ๐ฎ๐ฅ๐ญ๐š๐ง๐ญ, I led global cybersecurity programs that elevated enterprise ๐ซ๐ž๐ฌ๐ข๐ฅ๐ข๐ž๐ง๐œ๐ž, strengthened ๐ ๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž, and aligned ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐„๐ง๐ ๐ข๐ง๐ž๐ž๐ซ๐ข๐ง๐  with business transformation. โœ… ๐’๐ญ๐ซ๐š๐ญ๐ž๐ ๐ข๐œ ๐€๐๐ฏ๐ข๐ฌ๐จ๐ซ๐ฒ & ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Directed global security teams delivering enterprise-wide improvements in ๐œ๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐ฉ๐จ๐ฌ๐ญ๐ฎ๐ซ๐ž, ๐ซ๐ข๐ฌ๐ค ๐ฆ๐š๐ง๐š๐ ๐ž๐ฆ๐ž๐ง๐ญ, and ๐จ๐ฉ๐ž๐ซ๐š๐ญ๐ข๐จ๐ง๐š๐ฅ ๐ž๐ฑ๐œ๐ž๐ฅ๐ฅ๐ž๐ง๐œ๐ž. โœ… ๐๐š๐ง๐ค๐ข๐ง๐  & ๐…๐ข๐ง๐ญ๐ž๐œ๐ก ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Implemented frameworks aligned with ๐‘๐๐ˆ, ๐‚๐„๐‘๐“-๐ˆ๐ง, ๐’๐„๐๐ˆ, and ๐๐‚๐ˆ-๐ƒ๐’๐’. Built mature ๐’๐Ž๐‚, ๐•๐ฎ๐ฅ๐ง๐ž๐ซ๐š๐›๐ข๐ฅ๐ข๐ญ๐ฒ ๐Œ๐š๐ง๐š๐ ๐ž๐ฆ๐ž๐ง๐ญ, and ๐“๐ก๐ซ๐ž๐š๐ญ ๐ˆ๐ง๐ญ๐ž๐ฅ๐ฅ๐ข๐ ๐ž๐ง๐œ๐ž capabilities โœ… ๐†๐ƒ๐๐‘ & ๐†๐ฅ๐จ๐›๐š๐ฅ ๐๐ซ๐ข๐ฏ๐š๐œ๐ฒ: Executed ๐†๐ƒ๐๐‘ programs including ๐‘๐จ๐๐€, gap assessments, policy engineering, and compliance with Articles governing ๐๐š๐ญ๐š ๐ซ๐ข๐ ๐ก๐ญ๐ฌ, ๐ฅ๐š๐ฐ๐Ÿ๐ฎ๐ฅ ๐ฉ๐ซ๐จ๐œ๐ž๐ฌ๐ฌ๐ข๐ง๐ , and ๐œ๐ซ๐จ๐ฌ๐ฌ-๐›๐จ๐ซ๐๐ž๐ซ ๐ญ๐ซ๐š๐ง๐ฌ๐Ÿ๐ž๐ซ๐ฌ. โœ… ๐๐ซ๐ข๐ฏ๐š๐œ๐ฒ-๐„๐ง๐ก๐š๐ง๐œ๐ข๐ง๐  ๐“๐ž๐œ๐ก๐ง๐จ๐ฅ๐จ๐ ๐ข๐ž๐ฌ: Deployed ๐ƒ๐ข๐Ÿ๐Ÿ๐ž๐ซ๐ž๐ง๐ญ๐ข๐š๐ฅ ๐๐ซ๐ข๐ฏ๐š๐œ๐ฒ, ๐‡๐จ๐ฆ๐จ๐ฆ๐จ๐ซ๐ฉ๐ก๐ข๐œ ๐„๐ง๐œ๐ซ๐ฒ๐ฉ๐ญ๐ข๐จ๐ง, and ๐…๐ž๐๐ž๐ซ๐š๐ญ๐ž๐ ๐‹๐ž๐š๐ซ๐ง๐ข๐ง๐ , enabling secure and privacy-preserving analytics. โœ… ๐ˆ๐ง๐œ๐ข๐๐ž๐ง๐ญ ๐‘๐ž๐ฌ๐ฉ๐จ๐ง๐ฌ๐ž & ๐…๐จ๐ซ๐ž๐ง๐ฌ๐ข๐œ๐ฌ: Built ๐ˆ๐‘ ๐ฉ๐ฅ๐š๐ฒ๐›๐จ๐จ๐ค๐ฌ, forensics readiness programs, and crisis workflows that cut containment time by 50%, minimizing business and operational impact. โœ… ๐‘๐ข๐ฌ๐ค ๐Œ๐ข๐ญ๐ข๐ ๐š๐ญ๐ข๐จ๐ง: Achieved 40% vulnerability reduction through advanced ๐ญ๐ก๐ซ๐ž๐š๐ญ ๐ฆ๐จ๐๐ž๐ฅ๐ข๐ง๐ , ๐•๐Œ cycles, and enterprise-wide ๐ฉ๐ž๐ง๐ž๐ญ๐ซ๐š๐ญ๐ข๐จ๐ง ๐ญ๐ž๐ฌ๐ญ๐ข๐ง๐ . โœ… ๐™๐ž๐ซ๐จ-๐“๐ซ๐ฎ๐ฌ๐ญ ๐ˆ๐€๐Œ: Engineered robust ๐ˆ๐€๐Œ ๐ ๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž, Zero-Trust-aligned access controls, and identity protections for hybrid and multi-cloud environments. โœ… ๐†๐‘๐‚ ๐†๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž: Strengthened enterprise ๐ ๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž, ๐ซ๐ข๐ฌ๐ค, and ๐œ๐จ๐ฆ๐ฉ๐ฅ๐ข๐š๐ง๐œ๐ž

  • Bosch ()
    • ๐‡๐ž๐š๐ ๐จ๐Ÿ ๐†๐ฅ๐จ๐›๐š๐ฅ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐Ž๐ฉ๐ž๐ซ๐š๐ญ๐ข๐จ๐ง๐ฌ ๐‚๐ž๐ง๐ญ๐ž๐ซ (๐’๐Ž๐‚)
      Jan 2023 - Jul 2023 ยท 7 mos

      As the ๐‡๐ž๐š๐ ๐จ๐Ÿ ๐†๐ฅ๐จ๐›๐š๐ฅ ๐’๐Ž๐‚, I led Boschโ€™s worldwide cyber defence operations, driving transformation across ๐ฆ๐š๐ง๐ฎ๐Ÿ๐š๐œ๐ญ๐ฎ๐ซ๐ข๐ง๐ , ๐š๐ฎ๐ญ๐จ๐ฆ๐จ๐ญ๐ข๐ฏ๐ž, ๐œ๐ฅ๐จ๐ฎ๐, ๐Ž๐“/๐ˆ๐Ž๐“, and ๐ž๐ง๐ญ๐ž๐ซ๐ฉ๐ซ๐ข๐ฌ๐ž IT environments. I delivered an intelligence-driven security model that elevated global SOC maturity, strengthened ๐ญ๐ก๐ซ๐ž๐š๐ญ ๐๐ž๐ญ๐ž๐œ๐ญ๐ข๐จ๐ง, and enabled ๐ซ๐š๐ฉ๐ข๐ ๐ซ๐ž๐ฌ๐ฉ๐จ๐ง๐ฌ๐ž. My leadership integrated ๐€๐ˆ/๐Œ๐‹, ๐‹๐‹๐Œ, and ๐œ๐ฅ๐จ๐ฎ๐-๐ง๐š๐ญ๐ข๐ฏ๐ž capabilities to build a future-ready global defence ecosystem. โœ… ๐†๐ฅ๐จ๐›๐š๐ฅ ๐Ÿ๐Ÿ’ร—๐Ÿ• ๐‚๐ฒ๐›๐ž๐ซ๐ƒ๐ž๐Ÿ๐ž๐ง๐ฌ๐ž: Directed internationally distributed SOCs โœ… ๐’๐Ž๐‚ ๐Œ๐จ๐๐ž๐ซ๐ง๐ข๐ณ๐š๐ญ๐ข๐จ๐ง: Delivered next-gen ๐’๐ˆ๐„๐Œ, ๐’๐Ž๐€๐‘, and ๐”๐„๐๐€, achieving ๐Ÿ‘๐ŸŽ% efficiency uplift and ๐Ÿ’๐ŸŽ% enhanced threat detection. โœ… ๐€๐๐“ ๐ƒ๐ž๐Ÿ๐ž๐ง๐ฌ๐ž ๐‚๐š๐ฉ๐š๐›๐ข๐ฅ๐ข๐ญ๐ข๐ž๐ฌ: Built advanced defence mechanisms against ๐ซ๐š๐ง๐ฌ๐จ๐ฆ๐ฐ๐š๐ซ๐ž, ๐ณ๐ž๐ซ๐จ-๐๐š๐ฒ exploits, ๐ฌ๐ฎ๐ฉ๐ฉ๐ฅ๐ฒ-๐œ๐ก๐š๐ข๐ง attacks, and ๐ง๐š๐ญ๐ข๐จ๐ง-๐ฌ๐ญ๐š๐ญ๐ž ๐€๐๐“๐ฌ. โœ… ๐ˆ๐ง๐œ๐ข๐๐ž๐ง๐ญ ๐‚๐จ๐ฆ๐ฆ๐š๐ง๐ ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Executed high-severity IR operations delivering ๐Ÿ“๐ŸŽ% faster containment โœ… ๐‚๐ก๐ข๐ฉ-๐ญ๐จ-๐‚๐ฅ๐จ๐ฎ๐ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Unified defence across ๐ž๐ฆ๐›๐ž๐๐๐ž๐ controllers, ๐š๐ฎ๐ญ๐จ๐ฆ๐จ๐ญ๐ข๐ฏ๐ž ๐„๐‚๐”๐ฌ, ๐Ž๐“/๐ˆ๐‚๐’, and ๐ฆ๐ฎ๐ฅ๐ญ๐ข-๐œ๐ฅ๐จ๐ฎ๐ architectures. โœ… ๐€๐ˆ/๐Œ๐‹-๐ƒ๐ซ๐ข๐ฏ๐ž๐ง ๐’๐„๐‚๐Ž๐๐’: Deployed ๐€๐๐, ๐‚๐๐, ๐‘๐๐, ๐“๐ซ๐š๐ง๐ฌ๐Ÿ๐จ๐ซ๐ฆ๐ž๐ซ๐ฌ, and ๐‹๐‹๐Œ-๐ž๐ง๐ก๐š๐ง๐œ๐ž๐ SOC using ๐‘๐€๐† pipelines for automated threat correlation. โœ… ๐“๐ก๐ซ๐ž๐š๐ญ ๐ˆ๐ง๐ญ๐ž๐ฅ๐ฅ๐ข๐ ๐ž๐ง๐œ๐ž ๐๐ซ๐จ๐ ๐ซ๐š๐ฆ: Established enterprise TI aligned with ๐Œ๐ˆ๐“๐‘๐„ ATT&CK, enabling proactive detection and global intelligence sharing. โœ… ๐๐‚๐/๐ƒ๐‘ ๐Œ๐š๐ฌ๐ญ๐ž๐ซ๐ฒ: Developed and executed ๐œ๐ฒ๐›๐ž๐ซ ๐ซ๐ž๐ฌ๐ข๐ฅ๐ข๐ž๐ง๐œ๐ž, ๐ƒ๐‘ frameworks, adversarial simulations, and multi-region cyber drills. โœ… ๐ˆ๐ง๐œ๐ข๐๐ž๐ง๐ญ ๐‘๐ž๐ฌ๐ฉ๐จ๐ง๐ฌ๐ž & ๐…๐จ๐ซ๐ž๐ง๐ฌ๐ข๐œ๐ฌ: Built ๐ˆ๐‘ ๐ฉ๐ฅ๐š๐ฒ๐›๐จ๐จ๐ค๐ฌ, forensics readiness programs, and crisis workflows

    • ๐„๐ง๐ ๐ข๐ง๐ž๐ž๐ซ๐ข๐ง๐  ๐Œ๐š๐ง๐š๐ ๐ž๐ซ โ€“ ๐€๐ฎ๐ญ๐จ๐ฆ๐จ๐ญ๐ข๐ฏ๐ž ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ & ๐Ž๐“
      Jan 2022 - Jan 2023 ยท 1 yr 1 mo

      Led high-impact cybersecurity programs protecting next-generation ๐’๐จ๐Ÿ๐ญ๐ฐ๐š๐ซ๐ž-๐ƒ๐ž๐Ÿ๐ข๐ง๐ž๐ ๐•๐ž๐ก๐ข๐œ๐ฅ๐ž๐ฌ (๐’๐ƒ๐•๐ฌ), ๐‡๐๐‚๐ฌ, ๐€๐ƒ๐€๐’, and critical ๐Ž๐“/๐ˆ๐‚๐’ infrastructures. My leadership elevated Boschโ€™s engineering maturity, operational trust, and product security for global OEMs. โœ… ๐€๐ฎ๐ญ๐จ๐ฆ๐จ๐ญ๐ข๐ฏ๐ž ๐‚๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Led ISO/SAE 21434, securing SDVs, HPCs, ADAS and connected platforms for global manufacturers. โœ… ๐‚๐ก๐ข๐ฉ-๐ญ๐จ-๐‚๐ฅ๐จ๐ฎ๐ ๐€๐ซ๐œ๐ก๐ข๐ญ๐ž๐œ๐ญ๐ฎ๐ซ๐ž: Designed end-to-end Security Engineering Processes (SEP) โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ-๐›๐ฒ-๐ƒ๐ž๐ฌ๐ข๐ ๐ง: Embedded secure SDLC, hardened CI/CD pipelines, and enforced secure coding, fuzzing, VA/PT โœ… ๐’๐ฒ๐ฌ๐ญ๐ž๐ฆ-๐จ๐ง-๐‚๐ก๐ข๐ฉ (๐’๐จ๐‚) ๐Œ๐š๐ฌ๐ญ๐ž๐ซ๐ฒ: Engineered secure compute subsystems using ARM CSS, Cortex-A/R/M, and TEE โœ… ๐‡๐š๐ซ๐๐ฐ๐š๐ซ๐ž ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ & ๐’๐š๐Ÿ๐ž๐ญ๐ฒ: Implemented HSM, Secure Boot, key lifecycle management, tamper detection, ECC, safety islands, TrustZone and crypto acceleration โœ… ๐€๐”๐“๐Ž๐’๐€๐‘ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Integrated SecOC, CSM, HSM APIs, firewall controls, MCAL/HAL/BSW/RTE/ASW protections for hardened ECU environments โœ… ๐‚๐ซ๐ข๐ญ๐ข๐œ๐š๐ฅ ๐’๐ฒ๐ฌ๐ญ๐ž๐ฆ ๐๐ซ๐จ๐ญ๐ž๐œ๐ญ๐ข๐จ๐ง: Delivered secure diagnostics (OBD, UDS โ€“ ISO 14229-1), secured JTAG/Debug, encrypted filesystems, and replay-attack protection (RPBM) โœ… ๐Ž๐“ / ๐ˆ๐‚๐’ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Secured ICS, SCADA, DCS, PLC using NIST SP 800-82 and ISA/IEC 62443. Strengthened OT visibility with Dragos and Claroty โœ… ๐‘๐ข๐ฌ๐ค & ๐“๐ก๐ซ๐ž๐š๐ญ ๐€๐ฌ๐ฌ๐ž๐ฌ๐ฌ๐ฆ๐ž๐ง๐ญ: Delivered using STRIDE, PASTA, LINDDUN, CVSS modelling tools. โœ… ๐‘๐ž๐ ๐ฎ๐ฅ๐š๐ญ๐จ๐ซ๐ฒ ๐Œ๐š๐ฌ๐ญ๐ž๐ซ๐ฒ: Ensured compliance with UNECE WP.29 R-155/156, SAE J3061, ISO 27001, TISAX, ISO 27403, ASPICE, ISO 26262 and ISO 21448 (SOTIF) โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ž ๐‚๐จ๐ฆ๐ฆ๐ฎ๐ง๐ข๐œ๐š๐ญ๐ข๐จ๐ง๐ฌ: Architected protected communication over CAN, FlexRay, LIN, Ethernet, SPI, UART, JTAG, MQTT, SSL/TLS, Wi-Fi, LTE/5G, GNSS and telematics

    • ๐„๐ง๐ ๐ข๐ง๐ž๐ž๐ซ๐ข๐ง๐  ๐Œ๐š๐ง๐š๐ ๐ž๐ซ โ€“ ๐‚๐ฅ๐จ๐ฎ๐ ๐š๐ง๐ ๐„๐ง๐ญ๐ž๐ซ๐ฉ๐ซ๐ข๐ฌ๐ž ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ
      Apr 2020 - Jan 2022 ยท 1 yr 10 mos

      Led enterprise-wide transformation across ๐œ๐ฅ๐จ๐ฎ๐, ๐ž๐ง๐ญ๐ž๐ซ๐ฉ๐ซ๐ข๐ฌ๐ž ๐ˆ๐“, ๐ก๐ฒ๐›๐ซ๐ข๐ ๐ž๐ง๐ฏ๐ข๐ซ๐จ๐ง๐ฆ๐ž๐ง๐ญ๐ฌ, and ๐ž๐๐ ๐ž ๐ž๐œ๐จ๐ฌ๐ฒ๐ฌ๐ญ๐ž๐ฆ๐ฌ. I architected resilient security foundations, embedded ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ-๐›๐ฒ-๐ƒ๐ž๐ฌ๐ข๐ ๐ง, modernized DevSecOps capabilities, strengthened Zero-Trust controls, and established globally aligned compliance frameworks. โœ… ๐„๐ง๐ญ๐ž๐ซ๐ฉ๐ซ๐ข๐ฌ๐ž ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Led security initiatives across ๐ฆ๐ฎ๐ฅ๐ญ๐ข-๐œ๐ฅ๐จ๐ฎ๐, ๐ก๐ฒ๐›๐ซ๐ข๐, and ๐ž๐ง๐ญ๐ž๐ซ๐ฉ๐ซ๐ข๐ฌ๐ž environments. โœ… ๐‚๐ก๐ข๐ฉ-๐ญ๐จ-๐‚๐ฅ๐จ๐ฎ๐ ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Implemented end-to-end ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐„๐ง๐ ๐ข๐ง๐ž๐ž๐ซ๐ข๐ง๐  ๐๐ซ๐จ๐œ๐ž๐ฌ๐ฌ๐ž๐ฌ (๐’๐„๐) across hardware, application, identity, network, and cloud layers. โœ… ๐ƒ๐ž๐ฏ๐’๐ž๐œ๐Ž๐ฉ๐ฌ ๐“๐ซ๐š๐ง๐ฌ๐Ÿ๐จ๐ซ๐ฆ๐š๐ญ๐ข๐จ๐ง: Integrated ๐’๐€๐’๐“, ๐ƒ๐€๐’๐“, ๐’๐‚๐€, ๐ˆ๐š๐‚ ๐’๐œ๐š๐ง๐ง๐ข๐ง๐ , container security, and automated quality gates into ๐ƒ๐จ๐œ๐ค๐ž๐ซ, ๐Š๐ฎ๐›๐ž๐ซ๐ง๐ž๐ญ๐ž๐ฌ, and ๐†๐ข๐ญ๐‡๐ฎ๐› ๐€๐œ๐ญ๐ข๐จ๐ง๐ฌ pipelines. โœ… ๐‚๐ฅ๐จ๐ฎ๐ ๐†๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž & ๐‚๐จ๐ฆ๐ฉ๐ฅ๐ข๐š๐ง๐œ๐ž: Strengthened governance aligned with ๐ˆ๐’๐Ž ๐Ÿ๐Ÿ•๐ŸŽ๐ŸŽ๐Ÿ/๐Ÿ๐Ÿ•๐ŸŽ๐Ÿ๐Ÿ•, ๐’๐Ž๐‚ ๐Ÿ, ๐๐ˆ๐’๐“ ๐‚๐’๐…, ๐‚๐’๐€ ๐‚๐‚๐Œ, and cloud benchmarks for ๐€๐–๐’, ๐€๐ณ๐ฎ๐ซ๐ž, ๐†๐‚๐. โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐€๐ซ๐œ๐ก๐ข๐ญ๐ž๐œ๐ญ๐ฎ๐ซ๐ž ๐„๐ฑ๐œ๐ž๐ฅ๐ฅ๐ž๐ง๐œ๐ž: Designed secure enterprise architectures with ๐Ž๐–๐€๐’๐, ๐๐ˆ๐’๐“, ๐’๐€๐๐’, ๐ˆ๐’๐€๐‚๐€ frameworks. โœ… ๐€๐๐ฏ๐š๐ง๐œ๐ž๐ ๐๐ž๐ญ๐ฐ๐จ๐ซ๐ค ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ: Expert in ๐€๐‚๐‹๐ฌ, ๐ซ๐จ๐ฎ๐ญ๐ข๐ง๐ , ๐’๐’๐‹/๐“๐‹๐’, ๐“๐‚๐/๐”๐ƒ๐, ๐•๐๐๐ฌ, ๐‚๐ก๐ž๐œ๐ค๐๐จ๐ข๐ง๐ญ & ๐…๐ข๐ซ๐ž๐ฐ๐š๐ฅ๐ฅ๐ฌ. โœ… ๐“๐ก๐ซ๐ž๐š๐ญ ๐Œ๐จ๐๐ž๐ฅ๐ข๐ง๐  ๐Œ๐š๐ฌ๐ญ๐ž๐ซ๐ฒ: Established enterprise threat-modelling using ๐’๐“๐‘๐ˆ๐ƒ๐„, ๐๐€๐’๐“๐€, ๐‹๐ˆ๐๐ƒ๐ƒ๐”๐, ๐‚๐•๐’๐’, ๐Ž๐‚๐“๐€๐•๐„, ๐•๐€๐’๐“, and ๐ก๐“๐Œ๐Œ frameworks. โœ… ๐•๐ฎ๐ฅ๐ง๐ž๐ซ๐š๐›๐ข๐ฅ๐ข๐ญ๐ฒ & ๐๐ž๐ง๐ž๐ญ๐ซ๐š๐ญ๐ข๐จ๐ง ๐“๐ž๐ฌ๐ญ๐ข๐ง๐ : Led VA/PT, CIS benchmark & purple teaming โœ… ๐“๐จ๐จ๐ฅ ๐Œ๐š๐ฌ๐ญ๐ž๐ซ๐ฒ: Deep expertise with ๐๐ž๐ฌ๐ฌ๐ฎ๐ฌ, ๐๐ฆ๐š๐ฉ, ๐๐ฎ๐ซ๐ฉ ๐’๐ฎ๐ข๐ญ๐ž, ๐™๐€๐, and cloud-native scanning suites

  • ๐ƒ๐ข๐ซ๐ž๐œ๐ญ๐จ๐ซ (๐ˆ๐ง๐Ÿ๐จ๐ซ๐ฆ๐š๐ญ๐ข๐จ๐ง ๐“๐ž๐œ๐ก๐ง๐จ๐ฅ๐จ๐ ๐ฒ & ๐’๐ฒ๐ฌ๐ญ๐ž๐ฆ๐ฌ) at Government of India
    Jun 2017 - Jul 2019 ยท 2 yrs 2 mos

    As ๐ƒ๐ข๐ซ๐ž๐œ๐ญ๐จ๐ซ ๐จ๐Ÿ ๐ˆ๐“ & ๐’๐ฒ๐ฌ๐ญ๐ž๐ฆ๐ฌ, I led digital transformation and cybersecurity programs, strengthening national security posture, operational superiority, and strategic resilience across complex distributed environments. โœ… ๐„๐ง๐ญ๐ž๐ซ๐ฉ๐ซ๐ข๐ฌ๐ž-๐–๐ข๐๐ž ๐‚๐ฒ๐›๐ž๐ซ ๐’๐ญ๐ซ๐š๐ญ๐ž๐ ๐ฒ: Directed the Navyโ€™s end-to-end ๐ˆ๐“ & ๐œ๐ฒ๐›๐ž๐ซ๐ฌ๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐ฌ๐ญ๐ซ๐š๐ญ๐ž๐ ๐ฒ, building secure digital ecosystems for fleet operations, intelligence workflows, and mission systems. โœ… ๐†๐ฅ๐จ๐›๐š๐ฅ ๐Ÿ๐Ÿ’ร—๐Ÿ• ๐’๐Ž๐‚ ๐‚๐จ๐ฆ๐ฆ๐š๐ง๐: Led the Navyโ€™s ๐†๐ฅ๐จ๐›๐š๐ฅ ๐Ÿ๐Ÿ’ร—๐Ÿ• ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐Ž๐ฉ๐ž๐ซ๐š๐ญ๐ข๐จ๐ง๐ฌ ๐‚๐ž๐ง๐ญ๐ž๐ซ, strengthening real-time detection, monitoring, and incident response across defence networks. โœ… ๐Œ๐ข๐ฅ๐ข๐ญ๐š๐ซ๐ฒ-๐†๐ซ๐š๐๐ž ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐‚๐จ๐ง๐ญ๐ซ๐จ๐ฅ๐ฌ: Deployed advanced ๐ˆ๐ƒ๐’/๐ˆ๐๐’, secure segmentation, anti-malware frameworks, and vulnerability scanning, significantly enhancing cyber readiness. โœ… ๐“๐ก๐ซ๐ž๐š๐ญ ๐ˆ๐ง๐ญ๐ž๐ฅ๐ฅ๐ข๐ ๐ž๐ง๐œ๐ž ๐…๐ฎ๐ง๐œ๐ญ๐ข๐จ๐ง: Established the ๐“๐ก๐ซ๐ž๐š๐ญ ๐ˆ๐ง๐ญ๐ž๐ฅ๐ฅ๐ข๐ ๐ž๐ง๐œ๐ž capability, enabling predictive defence against evolving threat vectors. โœ… ๐’๐ž๐œ๐ฎ๐ซ๐ข๐ญ๐ฒ ๐†๐จ๐ฏ๐ž๐ซ๐ง๐š๐ง๐œ๐ž: Developed and enforced ๐ฉ๐จ๐ฅ๐ข๐œ๐ข๐ž๐ฌ, ๐ฌ๐ญ๐š๐ง๐๐š๐ซ๐๐ฌ & ๐’๐Ž๐๐ฌ, aligned with national cybersecurity directives. โœ… ๐ˆ๐ง๐œ๐ข๐๐ž๐ง๐ญ ๐‚๐จ๐ฆ๐ฆ๐š๐ง๐: Led high-severity cyber investigations, building Navy-wide ๐ˆ๐‘ ๐ฉ๐ฅ๐š๐ฒ๐›๐จ๐จ๐ค๐ฌ, escalation frameworks, and breach-handling procedures. โœ… ๐๐Ž๐‚/๐’๐Ž๐‚ ๐Œ๐จ๐๐ž๐ซ๐ง๐ข๐ณ๐š๐ญ๐ข๐จ๐ง: Upgraded infrastructure with next-gen monitoring tools, ๐š๐ง๐ญ๐ข-๐ฆ๐š๐ฅ๐ฐ๐š๐ซ๐ž, and vulnerability management systems. โœ… ๐ˆ๐’๐Ž ๐Ÿ๐Ÿ•๐ŸŽ๐ŸŽ๐Ÿ ๐‹๐ž๐š๐๐ž๐ซ๐ฌ๐ก๐ข๐ฉ: Spearheaded Navy-wide ๐ˆ๐’๐Ž ๐Ÿ๐Ÿ•๐ŸŽ๐ŸŽ๐Ÿ ๐ˆ๐’๐Œ๐’ training, audits, and certification, elevating governance maturity.