Experience

• 

  Bharti telecom limited

  Sept 1992 - Feb 1994

  Supervisor - testing

  • Supervising the testing of the telephones• Implementation of the ISO 9000 in the testing area• Interface between R&D and manufacturing for testability of the design changes and new designs.

• 

  Hcl hewlett packard

  Feb 1994 - Nov 1996

  Supervisor - product assesmbly / testing

  • Responsible for manual testing and automated testing of the motherboards and add-on cards• Interface between Design group and manufacturing to ensure testability and manufacturability• Supervision of the PC assembly line.

• 

  Xo infotech limited

  Nov 1996 - Sept 1998

  Engineer - qa

  • Set Organizational Quality Objectives, measurement mechanism and monitor achievements• Batch program for seamless testing of the computer mother-boards and add-on cards• Process definition for ISO 9000 and implementation• Establish, maintain, and continually improve QMS based on ISO 9000 standard

• 

  Barco electronics systems pvt ltd

  Sept 1998 - Oct 2000

  Assistant manager - quality

  • Management Representative functions• Development of process as per ISO 9000 ensuring its implementation • Managing testing of the projectors before shipment to Belgium• Interaction with the customer to resolve quality problems.

• 

  Information technology india limited, delhi

  Nov 2000 - Jun 2001

  Sr quality analyst

  • Member of metrics council to generate Quarterly Baselines reports• Defect Prevention council member at organization level• Facilitating development teams for implementing the defined processes• Assessment planning and execution for CMM Level 5

• 

  Siemens

  Jun 2001 - Aug 2008

  Sr consultant

  Process Governance and Compliance

• 

  Siemens oncology care system, usa

  Aug 2002 - Oct 2003

  Process consultant

  Process Governance and Compliance - SW Processes

• 

  Siemens power generation, germany

  Feb 2005 - Aug 2008

  Sr consultant (compliance, governance and risk - sw processes)
• 

  Aircel

  Aug 2008 - Oct 2011

  Sr manager - it governance

  Designed and Implemented IT/IS Policies and Processes based on ITIL framework from scratch using HP Suite… End to end planning and Management of Internal Audits based on Information Technology General Controls with Big 4 Organizations (KPMG, E&Y, PwC) Closure of audit findings and Risk Assessment and Management Involved from Requirements to throughout development and then UAT of all modules of HP Open-View Suite Designed and implemented Balanced Score card for TOS – Total Out-Sourcing partner (Wipro)Trainings , implementation and improvements of IT/IS Policy and Procedures Show less

• 

  Carl zeiss india

  Nov 2011 - Sept 2013

  Business Process mapping, Initiatives for Improvement of Productivity, Operational efficiency and cost optimization using Lean and Six Sigma Enhance efficiency and effectiveness of Business Processes

  • Head - Quality & Business Process Excellence

    Oct 2012 - Sept 2013

  • Business Process Expert

    Nov 2011 - Sept 2012
• 

  Hcl infosystems ltd.

  Sept 2013 - Jul 2019

  General manager and tower head - information security (uidai- msp) / ciso msp

  Managing team of 55+ covering data security using DLP, HSM, SOC-SIEM, Perimeter/Network Security, AV with EDR, DAM for Database monitoring, Firewalls, NIPS/HIPS, LB, WAF, Web gateway, e-mail gateway, IAM, GRC Tool, FMS, Data Centre Security, VMS&PT , BCP/DR and AppSec Operationalizing/managing 365X24X7 SOC  Implemented SIEM with broker, Packet Analyser Institutionalized Stringent monitoring (assets count in range of 10000+, internet, mobile apps) New correlation rules development and integration of devices/systems with SIEM Incident response and management of data of high forensic value Developed business continuity and disaster recovery plans and executing drills as per calendar Successfully invoked BCP and enabled work from Home during COVID-19 pandemic Successfully implemented and institutionalized GRC Tool 9 Modules  Carrying out regular risk assessment and ensuring identified risks are brought to acceptable level  Institutionalized action based on various Threat Intelligence (CERT-IN, OEMs and other Third Party)  Quarterly Vulnerability assessment, Bi-annual penetration testing of all internet and intranet portals, mobile application, ISO 27001 Implementation (certification and surveillance audits) End to end audit management and successfully managed multi- government agency audits Achieved CMMI Level 3 Government setup scoping Secured SDLC Practices Institutionalized stringent process in SW applications Delivery. SAST/DAST and approval from CISO Team (Governance gate process) Developing security controls in CI/CD pipelines of Container  Quarterly stringent access reconciliation  Monitoring of hardening of servers and regular Patch management  Stringent exit process covering access revocation and clearance from DLP Team CISO Dashboard for management  SLA management. Have been achieving NO Penalty in Cyber Security Show less

• 

  Hcl infotech limited

  Jul 2019 - Jan 2021

  Associate vice president and head - information security (uidai- msp) / ciso msp
• 

  Hewlett packard enterprise

  Jan 2021 - Jan 2022

  Tower head - information security msip (hpe) - uidai
• 

  Godfrey phillips india limited

  Jan 2022 - now

  Head - cyber security