Abhishek Chandraprakash Singh

• I initially joined ZERON as a Cyber Security Associate, where my primary responsibilities included supporting senior engineers in configuring and testing our core cybersecurity platforms, especially CRPM and VRM. I worked closely with the engineering team to write automation scripts, test features, develop custom log decoders, and prepare internal documentation used across deployments.
• I was actively involved in several client-facing tasks, including small-scale deployments, data simulation for dashboards, integration testing in staging environments, and performing system validations before go-live. I also provided backend support during pre-sales demos, where I assisted with environment setup and dummy data configuration.
• I quickly gained hands-on experience with tools like EDR, PAM, VPN, and firewall rules during integration pilots. My focus on understanding the deployment flow, along with consistent delivery of assigned tasks and strong communication with cross-functional teams, helped me stand out.
• As a result of my consistent performance, I was trusted with larger responsibilities — including independently managing integration tasks, training internal juniors, and client coordination for certain stages of deployment.
• Within a few months, I was officially promoted to Senior Security Analyst, where I transitioned into leading full production deployments. I began handling the entire project cycle — from client requirement analysis, system design, actual deployment, testing, and training, all the way to final documentation and audit support.
• Led mission-critical deployments of ZERON’s proprietary cybersecurity platforms — Cyber Risk Posture Management (CRPM), Governance, Risk & Compliance (GRC), and Vendor Risk Management (VRM) — across diverse financial institutions and regulatory bodies.
• Successfully executed highly sensitive deployments in fully offline, air-gapped environments, customized per client’s infrastructure architecture, firewall segmentation, and compliance policies.
• Designed end-to-end deployment architecture from scratch:
  Backend: Hardened PostgreSQL databases, API security, token/session management
  Frontend: React UI deployment via Nginx reverse proxy with layered access controls and SSL integration
  Middleware: Integrated Valkey for session handling, caching, and resilience; LDAP/AD for user authentication
• Integrated Zeron’s stack with 10+ enterprise security tools per client, including:
  Endpoint Detection & Response (EDR) – for real-time detection
  Privileged Access Management (PAM) – for secure access control
  VPN – for network segmentation and secure communications
  Next-gen Firewalls & WAFs – (Fortinet, Cisco ASA, Cloudflare)
  SIEM Platforms – (Splunk, ELK Stack) for advanced log correlation and alerting
• Conducted pre- and post-deployment audits, designed technical SOPs, ISMS-aligned documentation, and contributed to ISO 27001:2022 and SOC2 audit preparations.
• Delivered tailored workshops and training programs to client SOC teams, InfoSec departments, and auditors.
• Supported optimization and tuning: firewall rule sets, WAF logic, patch orchestration pipelines, incident response simulation workflows.

1. National Stock Exchange (NSE)

• Led the deployment of Zeron’s CRPM platform inside NSE’s fully air-gapped critical infrastructure zone.
• Integrated 7+ security tools, including SIEM (Splunk), PAM vaults, EDR, Fortinet WAF, and VPN tunnels.
• Automated control posture scoring, SEBI CCI compliance alignment, and implemented log flow parsing and decoder tuning.
• Delivered analyst-level dashboards enabling incident traceability and audit logging.

2. Multi Commodity Exchange (MCX)

• Designed and implemented Zeron’s GRC solution tailored to MCX’s compliance-heavy infrastructure.
• Integrated with 10+ tools, including internal ticketing systems, SIEM alerts, firewall control interfaces, and asset management platforms.
• Built governance dashboards, custom controls mapping matrix, and exception handling workflows.
• Facilitated continuous compliance validation and generated evidence-ready audit packs.

3. CDSL (Central Depository Services Limited)

• Architected and deployed both CRPM and VRM in a multi-network, segmented environment.
• Integrated with 10+ security tools: SIEM, PAM, EDR, WAF, AD, LDAP, ticketing tools, and compliance tracking solutions.
• Developed layered access dashboards, vendor risk lifecycle modules, and alert thresholds for third-party risk exposure.

4. CVL (CDSL Ventures Ltd)

• Extended CRPM integration with LDAP-based authentication, and enforced RBAC across backend services.
• Enabled VPN-secured monitoring, built tailored dashboards for InfoSec team.

5. HDFC Securities

• Executed a CRPM deployment in a segregated DMZ network.
• Worked closely with client firewall teams to integrate Fortinet stack, configure SSL terminations, and activate endpoint posture validation.

6. Dhan

• Delivered full-stack CRPM deployment: backend, frontend, infrastructure mapping.
• Integrated with Cisco network switches, log pipelines, and developed custom parser and decoder rules.
• Implemented alert-to-remediation workflows and audit reporting pipelines.

7. Bureau of Immigration, Philippines

• Delivered remote training, solution demo, and basic configuration guidance to international client.
• Supported localized product configuration and deployment documentation.

8. Finneva, Profectus Capital, Affin Bank

• Conducted Red Team assessments, black-box and grey-box VAPT, source code audit of critical applications.
• Simulated breach paths, designed lateral movement maps, and compiled CVSS-scored remediation reports.

Note: In addition to the above, I have worked on numerous other deployments and cybersecurity engagements involving regulatory institutions, large private banks, stock brokerages, and cloud-native enterprises. Many of these projects remain confidential due to NDAs and regulatory restrictions, but they have collectively contributed to my deep hands-on knowledge of compliance-driven security architecture, secure deployment methodologies, and enterprise security integration frameworks.

• Designed and deployed advanced log decoder to enhance system analysis and data interpretation capabilities.
• Conducted comprehensive Red Team Security Assessment for Profectus Capital, identifying critical vulnerabilities.
• Executed extensive Vulnerability Assessment and Penetration Testing (VAPT) for Affin Bank, strengthening security posture.
• Facilitated impactful client meetings, driving engagement and generating new business opportunities.
• Crafted compelling marketing content to boost brand visibility and communication effectiveness.
• Developed automated script for generating dummy data, streamlining backend processes and improving data visualization.
• Collaborated with backend team to ensure accurate integration of dummy data per client specifications.
• Delivered product demonstrations and training to clients, enhancing understanding and satisfaction with Zeron product.

• Served as a pivotal member of the cyber security team at Veracity Info Parks Pvt. Ltd., where I conducted rigorous security assessments with a focus on Web Security, Cloud Security, and OS hardening.
• Exercised meticulous attention to detail and technical expertise to document findings meticulously, ensuring full compliance with CERT-IN standards and regulatory requirements.

• Distinguished myself as a Sales Executive at Kotak Mahindra Bank, showcasing unparalleled expertise in promoting Equated Monthly Installments (EMI) on credit cards and facilitating effortless transactions for personal loans.
• Exemplified exceptional sales acumen and client relationship management skills, consistently exceeding targets and delivering exceptional results.

• Demonstrated exceptional proficiency as a Virtual Relationship Manager at Yes Bank, where I meticulously managed a portfolio of esteemed merchants.
• Provided unparalleled service and support for their Point of Sale (POS) machines, ensuring seamless operations and fostering long-lasting relationships.