CHINMAY PARAB
Mumbai
Summary
- Versatile Information Security Manager with nearly 7+ years of experience in IT Operations, Cyber Security and Software/Systems Development and Implementation
- Gained excellence by working on SIEM, SOC, EDR, VA; working closely with System, Network and Application Teams for closure of non-compliance issues found
- Experienced in information security strategy, risk assessments, security architecture and governance, strategic outsourcing & co-sourcing, penetration testing, network audits, code reviews, threat management and so on
- Skilled to design, set-up & deliver effective Information Security Management Framework covering information & physical security for all business units, thereby resulting in reduction of incidents
- Sound understanding of latest Information Security standards, regulations & best practices; aware of process of identifying & assessing IT risks, developing response plans and setting-up & executing audit procedures / audit plans
- Proven success in Access Risk Management involving identifying/escalating policy violations, sharing indicators of credential, stale/unused access, so on
- Capability in analyzing information system needs, evaluating end-user requirements, custom designing solutions and troubleshooting for complex information systems management
- Proficient in managing & leading teams for running successful process operations & experience in developing procedures, and service standards for business excellence, and in line with the organization's strategy compliance
- Collaborative, adaptable & approachable person with strong interpersonal, analytical, and problem-solving skills; adaptive learner with the capacity to work under pressure and meet deadline
Overview
7
7
years of professional experience
1
1
Certification
Work History
Senior Manager
Kotak Securities (Institutional Equities)
03.2024 - Current
- Collaborating closely with System, Network, and Application Teams to address non compliance issues discovered.
- Ensured the correct implementation, configuration, and operation of security architecture and products; enabled a team culture of documentation, mentorship, and cross-training
- Coordinating and managing Information Security projects and initiatives within the organization, adhering to established plans and timelines.
- Providing support for internal and external audit activities as needed.
- Refined Vulnerability Scans and identified critical issues for immediate patching.
- Integrated and enforced industry leading security standards and products.
- Manage security incidents and events to protect corporate IT assets.
- Researched, recommended and implemented new technologies that was best for the environment.
- Integrated new digital technology which increased productivity of software development.
- Re-engineered IT security processes and procedures to comply with SEBI and IS027001 Security standards.
- Implemented the Privileged Access Management system to better manage changes to the environment.
Manager - Information Technology
Capriglobal Capital Limited
05.2022 - 03.2024
- Collaborating closely with System, Network, and Application Teams to address noncompliance issues discovered
- Leading a proactive effort to enhance employees' awareness and comprehension of Information Security Policy, Standards, and Procedures
- Performing assessments pertaining to network security, application security, and penetration testing
- Evaluating technical and business processes, as well as standards & procedures; providing recommendations for ongoing enhancement
- Conducting research to identify and validate information security solutions aimed at mitigating information-related risks
- Coordinating and managing Information Security projects and initiatives within the organization, adhering to established plans and timelines
- Providing support for internal audit activities as needed
- Developing processes and procedures to enable the Cyber Security Incident Response Team to triage, contain and remediate security incidents
- Executing network penetration testing projects including full exploitation of identified vulnerabilities
- Performing vulnerabilities assessments for the entire Enterprise and reporting findings to management
- Conducting internal IT audits, reviewing and negotiating security in contracts with IT suppliers leading to an improved and enhanced security environment
- Supervising business & technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
- Implementing site-specific policies, procedures & best practices covering information security, corporate security, Business Continuity Management (BCM) & safety programs
Senior Cyber Security Analyst
Accolite Digital India
07.2021 - 05.2022
- Responded to cybersecurity incidents identified through Sumo Logic, Forcepoint DLP, and Cortex XDR by conducting detailed analysis and providing evidential log files; ensured that incidents are recorded and tracked until resolution within SLAs
- Examined various reports and findings to pinpoint information security weaknesses; collaborated with relevant stakeholders to address and mitigate these risks
- Addressed Information Security Risks in order to counteract online threats effectively
- Led the deployment of the Deep Instinct Tool for End-Point Detection & Response (EDR) that included problem identification, system architecture definition, hardware/software specification and design & implementation of the EDR System
- Conducted vulnerability assessments on servers, endpoints, and network devices to identify potential vulnerabilities; provided recommendations for mitigation to enhance security
- Served as an Internal Security Consultant and offered guidance to both business & technical partners on strategies for mitigating security risks
- Client - Horizon, Stonewain (U.S.A) and OLA
Senior Cyber Security Consultant
Infosec Ventures
06.2020 - 06.2021
Security Operation Center Engineer
SOFFIT Infrastructure Services
05.2019 - 06.2020
Network Security Engineer
Net Connect Global
03.2018 - 05.2019
Education
Bachelor of Engineering - Computer Science
Mumbai University
01.2016
12th - undefined
Patkar College of Science
01.2009
10th - undefined
SPS. Suvidyalaya High School
01.2007
Skills
- Cyber Security
- Vulnerabilities Assessments
- Business Continuity Planning
- Audit and Compliance
- Data Leakage Protection (DLP)
- Stakeholder Management
- Risk Management
- SIEM & SOC
- Continuous Process Improvement
- Cloud Security
- IBM QRadar, Splunk, Seceon
- ZScaler/Netskope Proxy
- Nessus
- CrowdStrike
- MS Office Suite
- Breach Attack Surface(BAS)
- Leadership
- Problem-solving
- Interpersonal Communicator
- Team Building
- Time Management
- Decision-making
Certification
- Cisco Certified Networking Associate (CCNA), RST Forum
- Cisco Certified Networking Professional (CCNP), RST Forum
- Certified Ethical Hacker (CEH), QUIK
Languages
English
Hindi
Marathi
Personal Information
Date of Birth: 03/26/92
Timeline
Senior Manager
Kotak Securities (Institutional Equities)
03.2024 - Current
Manager - Information Technology
Capriglobal Capital Limited
05.2022 - 03.2024
Senior Cyber Security Analyst
Accolite Digital India
07.2021 - 05.2022
Senior Cyber Security Consultant
Infosec Ventures
06.2020 - 06.2021
Security Operation Center Engineer
SOFFIT Infrastructure Services
05.2019 - 06.2020
Network Security Engineer
Net Connect Global
03.2018 - 05.2019
12th - undefined
Patkar College of Science
10th - undefined
SPS. Suvidyalaya High School
Bachelor of Engineering - Computer Science
Mumbai University
Work Preference
Work Type
Full TimeWork Location
On-SiteSimilar Profiles
Aseem AgrawalAseem Agrawal
Associate Vice President at Kotak Securities (Institutional Equities)Associate Vice President at Kotak Securities (Institutional Equities)
Sagarika ChettySagarika Chetty
Equity Research Associate at Anand Rathi Institutional EquitiesEquity Research Associate at Anand Rathi Institutional Equities
Shafi AhmedShafi Ahmed
Head of Data and Technologies at ADSS - UK & AbuDhabi (Retail And Institutional Forex & Securities)Head of Data and Technologies at ADSS - UK & AbuDhabi (Retail And Institutional Forex & Securities)
Rushikesh ChavanRushikesh Chavan
Senior Manager Technology at ICICI LOMBARD GENERAL INSURANCE CO LTDSenior Manager Technology at ICICI LOMBARD GENERAL INSURANCE CO LTD
Yogesh GangurdeYogesh Gangurde
Intune / SCCM Server Engineer at 63Moons technologies LtdIntune / SCCM Server Engineer at 63Moons technologies Ltd