Sandeep P V Email and Phone Number

Led initiatives in advanced threat detection, effectively neutralizing APTs within enterprise networks through meticulous analysis, fortifying our defenses against potential breaches.Spearheaded the security governance for over 150 overseas group companies by annually conducting comprehensive surveys, significantly enhancing the organization’s security posture and mitigating risks.Achieved successful establishment and operationalization of CSIRT environments from inception, adept at building high-performing teams through strategic recruitment, talent development, and performanceoptimization.Orchestrated the development of more than 30 information security policies to drive the successful achievement of ISO 27001 certification and supervised the creation of SOPs, work instructions, and playbooks for CSIRTLed strategic VAPT initiatives across group companies, by utilizing MITRE ATT&CK framework to enhancedetection, response, and prevention capabilities operations.Reduced organizational risk exposure by 30% through the implementation of targeted security measures and VAPT programs, enhancing detection and response times by 25% across critical systems.Led cloud security assessments of Microsoft Azure environments, identifying vulnerabilities and implementing remediation strategies to enhance cloud security posture for enterprise-level clientsPlayed a pivotal role in incident response and forensics, swiftly identifying malicious entities responsible for critical server compromise attacks, ensuring minimal disruption to operations.Implemented proactive security monitoring frameworks, leveraging various tools to detect and thwart threats in real-time, providing actionable insights for informed decision-making.Facilitated cross-functional collaboration and training, spearheading awareness programs to empower employees with the knowledge to recognize and respond to cybersecurity threats effectively.

# Spearheaded the identification, tracking, and mitigation of enterprise risks, ensuring continuous risk visibility and effective resolution strategies.# Conducted comprehensive risk assessments, measuring the success and efficiency of implemented mitigation efforts to safeguard organizational assets.# Evaluated, tested, and integrated cutting-edge security tools, systems, and products to build and maintain a robust, secure infrastructure.# Established and communicated security policies, guidelines, and standards, fostering a culture of compliance and cyber awareness across the organization.# Applied advanced cybersecurity methodologies and frameworks to address complex security challenges, consistently delivering high-impact solutions.# Independently navigated complex environments while adhering to established organizational security frameworks and protocols.# Led the evaluation and monitoring of cybersecurity policies, access management systems, and protocols for hardware, software, and network infrastructure.# Aligned cybersecurity architecture, designs, and processes with organizational standards, ensuring robust protection and compliance with industry regulations.# Proactively identified security risks and vulnerabilities, implementing preventive measures to minimize exposure and reduce the likelihood of future incidents.# Designed and executed techniques for conducting cybersecurity risk assessments, audits, and compliance checks, strengthening overall security posture.# Successfully enforced security policies and measures to defend against unauthorized access, fraud, and cyber-attacks, contributing to a safer digital environment.

#Utilized advanced forensic tools such as Autopsy, FTK, RAMCapture, and MOBILedit for comprehensive incident investigations and digital forensics#Led threat hunting operations by investigating and creating cases for identified security threats, performing triage, and escalating incidents for deeper investigation and mitigation#Conducted detailed log analysis and evaluated critical security alerts to uncover potential threats, ensuring swift responses and incident resolution#Monitored and responded to security alerts, including phishing attempts, leveraging open-source tools to identify and neutralize threats#Managed the installation, configuration, and performance optimization of log connectors, ensuring efficient security operations and data collection#Mapped incidents to the Cyber Kill Chain and MITRE ATT&CK frameworks to enhance visibility into various attack phases and improve incident response strategies#Collaborated with infrastructure and application teams to ensure timely patching and remediation of identified vulnerabilities, strengthening overall security posture

# Experienced with tools such as Rapid7, Nessus, Metasploit, Burpsuites, etc.# Managed periodic internal and external VA scanning of various cyber systems.# Analyzed and reported the vulnerabilities to multiple stakeholders for remediation and prioritisation# Maintained cyber threat intelligence network to discover any reported exploits, zero-day vulnerabilities, and their applicability to the organisation.# Managed annual security testing program for the existing and new production systems.# Coordinated with team members and policymakers to ensure controls, standards, and policies are up to date

#Actively engaged in monitoring computer networks to proactively identify and address security vulnerabilities, ensuring the establishment and maintenance of a resilient security posture. Systematically documented incidents and conducted thorough damage assessments, facilitating seamless knowledge transfer to new team members and streamlining repetitive tasks to optimise incident response efficiency.#Kept abreast of current IT security trends and news, leveraging this knowledge to develop best practices for IT security. Conducted regular research to identify security enhancements and presented well-founded recommendations to management for implementation.#Proficiently employed tools such as Nmap, VMware, Massscan, Wireshark, Networkminer, Openvas, Kali, and anti-malware programs to enhance cybersecurity measures and ensure network security.#Experience with virtualisation technologies like Hyper-V, Vmware, Virtualbox, etc.# Performed in-depth vulnerability assessment testing of various cyber systems.# Conducted regular security audits from both a logical/theoretical standpoint and a technical/hands-on standpoint#Provided technical support to troubleshoot network connectivity, network printers and user access issues#Assisted in maintaining and updating security documentation, including incident reports and risk assessments, ensuring compliance with industry standards.# Participated in incident response activities, including investigating security breaches and documenting findings for further analysis.# Supported deploying and managing VPN solutions to secure remote access for employees.# Assisted in creating and maintaining network diagrams and documentation for security architecture and design.# Contributed into different information systems security audits

# Received training on different Information and communication systems onboard# Contributed to the setup, maintenance, and troubleshooting of servers and computer networks, encompassing both LANs and WANs.# Assisted in the installation and configuration of operating systems and software applications for end-users.# Conducted basic network monitoring to ensure connectivity and performance, reporting any anomalies to senior staff.# Supported user account management by creating, modifying, and deleting accounts in accordance with security policies.# Participated in cybersecurity training sessions to enhance knowledge of threat detection and mitigation strategies.# Engaged in ongoing learning to stay current with technology trends and best practices in IT and cybersecurity.