Akshay Kumar P
Kottakkal, Kerala,
Summary
Results-driven Cybersecurity Specialist with 5+ years of experience, leading a 24-member security team, securing 400+ client infrastructures, and driving 95% PCI DSS compliance. Expertise in VAPT, vulnerability management, configuration audits, cloud and container security across RAPAC, SAARC, AFRICA, and GCC markets. Passionate about strengthening enterprise security, reducing false positives, and suggesting insightful actions. Adept at project tracking, de-escalation, and cross-functional collaboration, ensuring seamless security governance and risk mitigation. Constantly evolving with the latest cybersecurity threats, trends, and innovations.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Cybersecurity Specialist - Regional Team Lead
SISA Information Security Pvt. Ltd.
04.2022 - Current
- Led a team of 24 security professionals in vulnerability management and penetration testing, driving efficient execution of security initiatives within the NetSec team.
- Managed a portfolio of 400+ clients across diverse industries, ensuring timely project delivery, security compliance, and seamless multi-region engagement.
- Developed and enforced security policies, SOPs, and custom frameworks aligned with PCI DSS, ISO 27001, NIST, and NVD standards, enhancing organizational compliance.
- Collaborated with cross-functional teams to integrate security best practices into enterprise environments, strengthening overall security posture.
- Delivered security training, awareness programs and boot camps for team members and leadership, focusing on emerging technologies, frameworks, and compliance guidelines.
- Oversaw cybersecurity projects for key GCC clients (Sharjah Islamic Bank, Geidea, Mswipe UAE), executing VAPT, segmentation penetration testing, and vulnerability management, while optimizing workflows to cut process call times by 14% and enhance client satisfaction.
- Conducted security assessments, including security audits, penetration testing, vulnerability assessments, and phishing campaigns, to identify and mitigate threats across client and internal networks.
- Defined assessment scopes and remediation roadmaps, collaborating with QSAs and PMO teams to ensure compliance with industry standards.
- Performed hands-on security assessment and testing (network, wireless, cloud, and container security), achieving 95% PCI DSS compliance and reducing false positives by 11%.
- Stayed updated on emerging cybersecurity trends, incorporating threat intelligence and incident response to mitigate evolving risks.
System Security Engineer
Precision Infomatic (M) Private Limited
08.2021 - 03.2022
- Incident Response and Resolution by swiftly identifying, analyzing, and mitigating user incidents to minimize the problems.
- Threat Prevention and Monitoring by proactively monitoring events, ensuring timely detection and resolution of the issues.
- Endpoint and Data Security by implementing and managing DLP solutions such as Trend Micro AV, and Forcepoint to protect sensitive data.
- Vendor and Compliance Coordination by collaborating with vendors and IT teams to ensure security and seamless issue resolution.
- Network and System Hardening by conducting patch management, service pack updates, and security configurations to fortify infrastructure.
- VPN and Access Security by configuring and securing VPNs, enforcing MFA and troubleshooting BitLocker encryption to ensure safe remote access.
- Threat Mitigation and Malware Defense by managing AntiMalware tools, DLP agents, and AD components to reduce the attack surface.
Technical Consultant
EYS IT Solutions
04.2020 - 07.2021
- Monitoring and maintaining Windows Server 2012 R2 to ensure optimal performance and reliability.
- Managing Active Directory user accounts, access controls.
- Administering BitLocker services for secure data encryption and access management.
- Overseeing daily IT operations, ensuring system availability and efficiency.
- Troubleshooting and resolving issues related to proxies, DLP agents, and endpoint security tools.
- Managing patch deployment and troubleshooting MECM endpoint agents for system updates.
- Tracking system activities and maintaining daily compliance checklists for operational integrity.
- Implementing and managing WDS, WSUS, GPO, and MECM agents for streamlined server operations.
- Installing and maintaining network hardware, including D-Link, Baton repeaters, and modems.
- Assisting in configuring and managing SonicWall firewalls to support secure network operations.
Cyber Security Analyst Intern
RedTeam Hacker Academy Pvt. Ltd
02.2020 - 03.2020
- Delivered cybersecurity training sessions and workshops for CPT batches, enhancing industry knowledge and awareness.
- Conducted security, quality, and functional testing for web applications to identify vulnerabilities and ensure compliance.
- Applied expertise in application security testing, with a strong understanding of OWASP Top 10 threats and mitigation strategies.
- Analyzed and assessed common network services and security products to strengthen overall system protection.
- Engaged in continuous research and development to stay updated on emerging cybersecurity threats and industry trends.
- Performed additional job-related duties as required, contributing to security initiatives and process improvements.
Education
M.Sc. in Cyber Forensics And Information Security -
Madras University
03-2027
Bachelor of Computer Application -
Grace Valley College
05.2019
Skills
Technical: VAPT & Vulnerability Management, Container Security (Docker, Kubernetes), Risk Assessment, Cloud Security Configuration Assessment, ASV Guidelines
Leadership: Team Leadership, Project Management, Cross-Functional Collaboration, Client Relationship
Tools: Burp Suite, Metasploit, Nessus, Nexpose, Nmap, Qualys, Tenable, Trivy, Prowler, ScoutSuite, Python, Kali linux, Windows, O365
Interpersonal: Communication, Critical Thinking & Problem Solving, Decision Making, Strategic Planning, Teamwork, Rapid Learning Ability
Certification
- CEH, CICSA
Acknowledgments
- Recognized by NCIIPC RVDP for identifying and reporting vulnerabilities (directory listing, sensitive information disclosure, XSS) in government systems, enhancing national cybersecurity resilience.
- Acknowledged by Inflectra for detecting sensitive information exposure risks in their web application, strengthening application security.
- Participated in Defcon Trivandrum Chapter 2019, engaging with global cybersecurity experts to share knowledge on vulnerability assessment and exploit mitigation.
Awards
- Tech Spot Award | Marvelous Multi-Tasking | Tech Wizard (SISA) | Best Activities Closure (Precision Infomatic)
Timeline
Cybersecurity Specialist - Regional Team Lead
SISA Information Security Pvt. Ltd.
04.2022 - Current
System Security Engineer
Precision Infomatic (M) Private Limited
08.2021 - 03.2022
Technical Consultant
EYS IT Solutions
04.2020 - 07.2021
Cyber Security Analyst Intern
RedTeam Hacker Academy Pvt. Ltd
02.2020 - 03.2020
- CEH, CICSA
M.Sc. in Cyber Forensics And Information Security -
Madras University
Bachelor of Computer Application -
Grace Valley College
Similar Profiles
Chithrakala KChithrakala K
Country Account Manager at SISA Information Security Pvt. Ltd.Country Account Manager at SISA Information Security Pvt. Ltd.
Sachin RanadhiveSachin Ranadhive
Associate Consultant at SISA Information Security PVT. LTD.Associate Consultant at SISA Information Security PVT. LTD.
Kishore MKishore M
Senior Associate Consultant (Specialist) at SISA Information Security Pvt. LtdSenior Associate Consultant (Specialist) at SISA Information Security Pvt. Ltd