Sunil Kumar

Experience

• 

  M Intergraph Systems Pvt. Ltd.

  May 2002 - Feb 2004

  CSE

  • Primarily deputed at client MMTC and managing their heterogeneous systems and servers. • Responsible for Vulnerability management for desktops, servers and networking equipment. • Responsible for Managing and Administering of Windows 2000 Domain, DHCP, DNS, Backup servers.

• 

  Project of IBM – Bharti/Airtel

  Feb 2004 - Jan 2006

  Network Administrator

  • Process owner of the management team i.e. SLA’s, Asset Management, Problem Management, Recovery Management and Change Management. • Implementation of IBM global security policies, processes and procedures and serve as a focal point for regional security planning and execution. • Conduct Risk Assessments and Compliance Audits as per IBM standards & Security policies. • Responsible for security incident management and reporting to the senior management. • Responsible for Business Continuity Planning /Disaster Recovery Planning (BCP/DRP). • Creating a formal process of seeking client feedback on a monthly /quarterly basis (internal / External) and dashboard that reflects quality of service delivery. • Managing a heterogeneous network environment having different Domains and Sites configured. • Administration and Troubleshooting of all WAN connectivity across Haryana circle E1 Links, ISDN PRI & BRI, VPN connectivity and monitoring the bandwidth. • Responsible for providing Internet access to users for different domains using Linux Squid proxy server, ISA server. • Antivirus Server Administration, Server OS Hardening (Windows & Linux), Administrating DNS, DHCP server. Show less

• 

  Accenture

  Jan 2006 - Nov 2009

  Information Security Sr. Analyst

  • Serving as the primary focal point for all IT security requirements and audits for Accenture in Delhi NCR including Software Development centre and BPO centre. • Understand the business processes in Operations to identify information security risks and implement effective mitigating control measures to manage such risks. • Provide assistance to the Security Policy and Security Architecture and Standard Operating Procedures (SOP) for security related operations. • Responsible for planning & execution of Vulnerability Assessment and plan corrective actions, Third Party Risk Assessment and prepare and review risk mitigation strategies. • Responsible for regional security incident management and reporting to the concern team. • Provide consulting support regarding Physical, Administrative, and Technical Security controls and processes that safeguard the Confidentiality, Availability and Integrity of the Infrastructure. • Verify that all systems & networking devices have been configured as per Accenture Baseline Standards and as per Client Security Standards. • Evaluation of new security tools, products proactively to overcome with emerging IT Security threats as well as to automate the Security compliance activities. • Monitoring BCP plan documented & available for Accenture IT facilities & projects. • Ensuring that all Accenture Delhi-NCR locations sustain certification (ISO20000 /IS027001 /BS25999). Show less

• 

  OHI Group co.

  Dec 2009 - Nov 2011

  AM - IT Security

  • Defining company’s IT Security Policies, Architecture and Procedures for IT related operations. • Establish, review and enforcement of various information security processes to maintain Confidentiality, Integrity & Availability (CIA). • Conduct risk assessments based on ISO27001 standards and as per industry’s best practices. • Perform self-assessments to assess the effectiveness of IT Security controls and prepare audit plans. • Established Data Classification process in the organization and launched data classification execution across the organization as a new IT Security initiative. • Responsible for Vulnerability Assessment, performing PT and plan corrective actions. • Actively involved in Business Continuity Planning /Disaster Recovery Planning (BCP/DRP). • Supervision of preventive and corrective maintenance activities performed. • Obtain needful compliance to the system audit observation. • Review the IT Infrastructure architecture i.e. Network architecture, computing architecture. • Participating in the meeting with Senior Management once a month and ensuring healthy relationship. Show less

• 

  Accenture

  Mar 2012 - Mar 2022

  Key Deliverables• Deliver information security services across multiple industries (finance, healthcare, travel, hospitality) and geographies.• People Manager: Lead a team of Security Team Leads, Sr. Security Analysts, and Associates to drive security excellence.• Client Engagement: Participate in client visits, RFP reviews, and due diligence for new deals.• Revenue Growth: Led upsell initiatives in Southeast Asia, adding $2M through strategic client delivery.• SOC Transformation: Successfully transitioned and streamlined SOC processes for multiple projects.• Security Product Evaluation: Conduct independent reviews of encryption, secure messaging, endpoint & network security, intrusion detection, and data privacy tools.• Compliance & Security Leadership: Oversee Managed Security Services (MSS), including DLP, Anti-Virus, VA/PT, IDS, and URL filtering.• Infrastructure Security Operations: Manage security tools and daily operations per agreed SLAs.• Risk & Compliance Management: Identify and assess compliance risks, third-party risks, and business impact while tracking security issues.• Audit & Governance: Plan and conduct security audits, reporting findings and recommendations to key stakeholders.• Policy Development: Define and implement security policies, standards, and procedures in collaboration with the Business & Security Committee.• Cross-Functional Collaboration: Act as a liaison between Physical Security, IT, Risk Management, HR, and Compliance to align security strategies.• Security Metrics & Reporting: Monitor and publish weekly/monthly dashboards for senior leadership on security posture.• Business Continuity & Disaster Recovery: Establish contingency planning, IT disaster recovery, and business continuity programs with internal and external teams. Show less

  • Security Delivery Manager

    Dec 2019 - Mar 2022

  • MSS Security Lead @ client location Malaysia

    Nov 2017 - Dec 2019

  • Associate Manager

    Dec 2014 - Nov 2017

  • Team Lead Information Security

    Mar 2012 - Nov 2014
• 

  Tata Communications

  Mar 2022 - now

  Roles & Responsibilities• Oversee security service delivery, ensuring operational excellence and compliance with industry standards.• Review RFPs, SOWs, SLAs, and KPIs, collaborating with teams to define optimal security solutions.Deliver weekly, monthly, and quarterly reports to clients and leadership, ensuring security solutions remain effective and compliant.• Act as a liaison between client teams, MSS teams, and internal stakeholders to address security concerns promptly.• Manage forecasting, budgeting, profit margins, and cost saving initiatives to ensure financial efficiency.• Innovation & Process Improvement: Drive automation, analytics, and cost reduction initiatives while continuously enhancing security processes.• Handle hiring, performance appraisals, promotions, and team development to build high performing cybersecurity teams.• Provide strategic direction, checkpoints, and feedback to align security operations with business priorities.• Lead security and risk related projects, ensuring seamless implementation and transition to support teams.• Design and oversee security testing procedures for systems, networks, and applications while managing risk remediation.• Develop and implement incident detection, response, and post event analysis processes to improve security posture.• Security Consultation & Compliance: Provide audit support, escalation management, and security advisory services to client leadership and stakeholders.• Security Operations & Threat Management:• Manage client expectations, SLAs, and performance metrics.• Identify threats, attack vectors, and vulnerabilities while implementing mitigation strategies.• Oversee AV, IDS/IPS, firewalls, and security product policies, updating them periodically based on client needs.• Ensure business continuity, risk management, and information security compliance.• Lead vulnerability assessments, penetration testing, and incident response processes. Show less

  • Deputy General Manager (DGM) - Customer Security Operations

    Aug 2024 - now

  • Sr. Manager - Customer Security Operations

    Mar 2022 - Jul 2024