• Lead cross-functional teams to design, build, and operate advanced and cohesive SOC technology and capability (like SIEM, Email Security, Identity Protection, End Point Protection/EPP, End Point Detection & Response/ EDR/XDR, Network Detection & Response/NDR, SOAR, Security Automation, etc) effectively.• Lead dynamic and motivated Incident Response and Forensics SMEs who conduct 24x7 monitoring in SOC to respond to sophisticated cyber threats and incidents. • Collaborate and build relationships with stakeholders (like BISOs, Legal, Privacy, M&A, Brand Protection, Communications and Technology Services) for effective, aligned and orchestrated response during incidents.• Manage contracts and service delivery from third-party security service providers, technology vendors and retainers/ partners to ensure effective functioning of SOC. • Manage SOC Analytics and report trends and KPIs to Senior Leadership in periodic cadence. • As Member of Risk Steering Committee provide inputs towards Risk Prioritisation and treatment. • Conduct Cyber Security Awareness sessions for Senior Business Leaders, simulated campaigns for wider user groups and CTF drills and exercises for the response teams to build muscle memory and keep them ahead of the curve.

• As an SME advised senior management in strategic alignment of security and governance of overall security posture.• Collaborated with stakeholders in formulation/ revision of information security policy and designing of security programs. • Ensured effective compliance of security policy and implementation of security programs by continuous audit and security awareness campaigns.• Performed continuous gap-analysis between implemented and intended security program. • Evaluated and recommended solutions for bridging the gaps in security program.• Collated requirements from stakeholders and prepared consolidated case for security budget.• Administered functioning, prioritization and resource allocation of Incident Response, Forensics and VA/PT teams for meeting organization’s requirements. • Interacted with government bodies and industry counterparts to enhance capability building in terms of training & awareness, technology and research.

• Enhanced capability building in actionable threat intelligence for formulating proactive defense. • Approved release of security advisories for proactive mitigation of risks arising from potential threats. • Led Vulnerability Assessment and Penetration Testing teams in planning and conduct of external Audits.• Analyzed and communicated major audit findings and overall security posture to senior management. • Led Incident Response teams in identification, containment and recovery of security incidents.• Led Cyber Forensics teams in carrying out investigations, collection & preservation of evidence, analysis, validation and reporting in accordance with regulatory and compliance requirements. • Collaborated with stakeholders and vendors in identification and customization of security products/ technology to meet the requirements of the security program.• Managed security operations/campaigns and communicated requirement of security resources/ budget to senior management.• Provided assistance to regional CIRTs in risk mitigation and capability building.

• Managed regional security functions and communicated with CIRT to support overall organizational security requirements.• Collaborated with regional stakeholders in carrying out effective Risk Assessment of ICT assets under the area of operation.• Owned security program implementation and ensured effective compliance of information security policy. • Participated in implementation of risk mitigation solutions/ controls, performed control analysis and communicated effectiveness of controls to CIRT.• Ensured integrity and efficiency of incident reporting function.• Ensured efficient functioning of internal audit programs.• Conducted information security training/ workshops to ensure a reasonable degree of awareness.