- Led cross-functional teams of 50+ professionals (SOC, NOC, Purple Team, CIRT) overseeing the Naval network of the Southern Naval Command.- Managed 20,000+ assets and 60,000 users on the Naval Communication network.- Directed the migration to a single forest, single domain architecture from a multi-domain setup.- Implemented Public Key Infrastructure (PKI) for Multi-Factor Authentication (MFA) using Embridge.- Proficient with technologies including Microsoft Active Directory 2016, Kaspersky Security Centre 14, Microsoft Exchange 2016, Checkpoint 5600, Trellix FireEye FX & NX, VCenter 7.0 (ESXi 7.0.2), Veeam, WAF (ModSecurity), Nessus Tenable.SC, HP ArcSight SIEM, Data Resolve (DLP), Seclore IRM, SharePoint 2013, Jitsi VC Solution, SCCM 1902.- Commissioned the Naval Communication Network (350 Cr) project.- Coordinated Purple Team VAPT operations utilizing tools such as Metasploit, Burpsuite, Nessus Tenable.SC, and ZAP.- Conducted product security testing during acquisition and deployment processes.- Established and maintained a comprehensive enterprise risk management program encompassing technical, business, and human risk analysis.- Familiar with standards and frameworks including NIST 800-53, ISO 27001:2022, ISO 31000:2018, and CIS.- Tested IT and business response plans through tabletop and Red Team exercises to ensure preparedness for various scenarios.- Enhanced risk reduction through technology, vulnerability management, and improvements to the Governance, Risk, and Compliance (GRC) process.- Developed a cybersecurity strategy and roadmap for the organization.

- Commissioned the nation's first Information Fusion Centre, a data center designed for intelligence sharing with friendly nations under a bilateral agreement.- Led and managed teams of IT security professionals, ensuring efficient and effective operations.- Implemented a zero trust model with Data Loss Prevention (DLP) to prevent access to conflict of interest information by diplomats/attachés, allowing only authorized representatives from various nations to access intellectual property on a need-to-know basis.- Adopted the NIST Risk Management Framework to maintain risks within the organization's established appetite.- Implemented a layered defense strategy, including geo-blocking network traffic, IPSec, Network Intrusion Prevention Systems (NIPS), Next-Generation Firewalls, and Web Application Firewalls (WAF) such as ModSecurity.

- Enforced physical controls to prevent data emanations across various classified networks.- Implemented end-to-end encryption for SCADA (ICS) systems onboard.- Led internal audit team for compliance checks on VSAT and terrestrial networks.- Provided information security awareness training to organizational personnel.- Implemented and oversaw technological upgrades, improvements, and major changes to the information security environment.- Developed an IT Contingency Plan for the recovery of communications and IT operations during overseas deployments.- The ship was selected as a primary candidate for demonstration of Security Best practices due to its compliance to extant Infosec policies.- Participated in anti-piracy operations in international waters in the Gulf of Aden.- Developed a Machine Learning (ML) model to identify spoofing vessels in order to assist in anti-piracy operations.

- Directed operations at a Federated Data Centre and supervised Security Operations Center (SOC) activities.- Enhanced internal controls to align with NIST 800-53 standards.- Led Vulnerability Assessment and Penetration Testing (VAPT) of the NC3I Network, documenting IT security attacks, threats, risks, and controls.- Conducted regular internal cybersecurity audits based on industry frameworks and standards, including NIST, ISO, and CIS Level 2 (Microsoft Compliance).- Facilitated secure information exchange through APIs with foreign agencies such as VATMS and ONGC.- Promulgated and disseminated organizational security policies and procedures.- Conducted periodic testing of Incident Response Plans and Disaster Recovery Plans (DRP) to ensure effective response times and procedures.- Enhanced risk reduction through technology, vulnerability management, and Governance, Risk, and Compliance (GRC) process improvements.- Procured cybersecurity solutions (HP SIEM, CISCO ISE) to enhance SOC team efficiency.- Established a Threat Management Team to proactively identify and mitigate cybersecurity threats.- Achieved defined security goals, timelines, and key deliverables for the organization.- Installed and commissioned a VSAT (Viasat) Hub at the Data Centre (Gurgaon) as part of Business Continuity Planning (BCP).

- Led a strategic 450 Cr project (Information Management & Analysis Centre and National Command Control Communication & Intelligence Network) designed to detect and prevent incidents similar to the 26/11 Mumbai attack.- Successfully collaborated with industry leaders including M/s BEL, M/s Raytheon, BSNL, and CISCO.- Oversaw the construction of 52 federated data centers nationwide and a Disaster Recovery Site at Vizag to enhance coastal security.- Coordinated cross-functional teams, ensuring seamless integration of advanced technologies.- Managed project timelines and budgets, maintaining strict adherence to deadlines and financial constraints.- Utilized effective communication and leadership to align diverse stakeholders towards achieving project objectives.- Contributed to the enhancement of the nation's coastal surveillance and security infrastructure.Technologies worked on:CISCO Nexus 7000 , CISCO 5585 ASA Firewall, IBM Lotus Notes, Raytheon Solypsis CSDSS, Symantec Endpoint Security, CA Spectrum, IAM, ITSM, NetQoS, Service Desk, HP Data Protector, Oracle 12c, CISCO CUCM, Viasat NMS, CISCO NAC, Windows Active Directory 2012 R2, RHEL, BCP / DRP Concepts.

Successfully completed a rigorous leadership program at the prestigious Indian Naval Academy (INA). This intensive training program honed my strategic thinking, decision-making under pressure, and effective team leadership skills. The curriculum integrated demanding physical training, academic instruction, and practical exercises, including simulations of real-life naval scenarios, significantly enhancing my ability to lead with integrity and competence in challenging environments. Additionally, the training encompassed cybersecurity topics such as penetration testing, vulnerability identification, and exposure to various cybersecurity standards and frameworks.

• Software Associate & Automation Engineer• Experience in UNIX Shell Scripting, IBM JCL, Oracle• HIPAA Certified• PHI Processing – Ahold Delhaize USAs a Software Associate and certified HIPAA professional, I have engineered innovative solutions to automate the processing of Protected Health Information (PHI) and Personally Identifiable Information (PII) for clients across the United States. My professional experience includes successful collaborations with prestigious clients such as Ahold and Walmart, where I refined my expertise in Unix shell scripting and Mainframe JCL automation. Notably, my substantial contributions to streamlining operations were recognized shortly after I joined the firm, leading to my acknowledgement as the top performer on my project. These efforts significantly reduced human errors in reporting PHI information to the US Health Regulatory Department.