Darpan Grover

AI Driven Cybersecuirty Innovation

• Leveraged Artificial Intelligence (AI), Machine Learning (ML), and Large Language Models (LLMs) to automate incident triage, SOC workflows, and threat intelligence analysis, reducing MTTD/MTTR.
• Implemented AI-powered threat detection, including anomaly detection, behavioral analytics, insider threat monitoring, and predictive risk analytics within SOC operations.
• Deployed AI-augmented endpoint security, enabling real-time malware detection, phishing prevention, identity-based attack detection, and EDR/XDR capabilities.
• Implemented automated risk scoring and AI-driven vulnerability prioritization, improving vulnerability management, patch management, and risk remediation.
• Applied Natural Language Processing (NLP) for data classification, data discovery, DLP enforcement, and privacy compliance with GDPR and CCPA.
• Enabled adaptive and contextual access control using AI-driven IAM, incorporating device posture, user behavior, geolocation, and risk signals.
• Applied AI and ML in cloud security posture management (CSPM) to detect misconfigurations, policy violations, and suspicious activity across multi-cloud environments.
• Automated third-party and vendor risk management using AI-based risk analysis, compliance validation, and security posture scoring.

Enterprise cybersecurity Leadership and Strategy

• Defined and executed enterprise cybersecurity strategy, aligning information security, risk management, business objectives, and regulatory compliance.
• Advised executive leadership, board members, and stakeholders on cyber risk, threat landscape, security investments, and risk appetite.
• Established cyber resilience, incident response, business continuity, and disaster recovery programs.
• Built executive dashboards, security metrics, KPIs, KRIs, and risk reporting for real-time security posture visibility.
• Delivered Managed Security Services (MSSP), including 24/7 SOC monitoring, threat detection, and incident management.

Cloud security, endpoint protection and secirity operations

• Implemented Microsoft Defender for Cloud Apps (CASB), strengthening cloud access security, shadow IT discovery, and data exfiltration prevention.
• Deployed Microsoft Intune, enforcing endpoint security, mobile device management (MDM), BYOD security, and data protection.
• Implemented Microsoft Defender for Endpoint, Defender for Identity, and Defender for Office 365, enhancing XDR, email security, and identity threat detection.
• Led SOC operations, including SIEM optimization, log management, threat intelligence, incident response, and security event monitoring.
• Secured cloud platforms across AWS, Azure, and Google Cloud Platform (GCP), using cloud security best practices.

Network, Infrastructure and Application security

• Implemented Zscaler Internet Access (ZIA), enabling Zero Trust Network Access (ZTNA), DNS filtering, SSL inspection, sandboxing, and secure web gateway (SWG).
• Led application security initiatives including SAST, DAST, secure SDLC, and CI/CD security integration.
• Managed container security, Kubernetes security, and container vulnerability scanning.
• Conducted penetration testing, red team exercises, security audits, and risk assessments.
• Designed secure network, cloud, and application architectures.

Governance, Risk and Complaince ( GRC )

• Led SOC 1, SOC 2, and ISO 27001 ISMS audits, ensuring regulatory compliance and client assurance.
• Established Third-Party Risk Management (TPRM) programs, including vendor risk assessments, SSAQs, and supply chain security.
• Developed cybersecurity governance frameworks aligned with ISO 27001, NIST CSF, NIST 800-53, and GDPR.
• Conducted cybersecurity maturity assessments, and delivered security transformation roadmaps.

Data Protection and Privacy

• Ensured data privacy and GDPR compliance, implementing breach response, incident notification, and privacy governance.
• Managed cross-border data transfers using Standard Contractual Clauses (SCCs) and Binding Corporate Rules (BCRs).
• Strengthened data security through encryption, tokenization, DLP, and data-in-use protection.

Identity and Access Management

• Implemented IAM strategy, including SSO, MFA, RBAC, Just-In-Time (JIT) access, and identity governance.
• Integrated Privileged Access Management (PAM) reduces insider threats, credential abuse, and privilege escalation.
• Automated password rotation for privileged accounts, service accounts, and API credentials.

Zero Trust Architecture

• Implemented Zero Trust Architecture (ZTA) using least-privilege access, continuous authentication, SSL inspection, browser isolation, QoS, and context-aware security policies.

Continuous Improvement and Advisory

• Integrated application security testing tools into development pipelines.
• Implemented enterprise DLP solutions to prevent unauthorized data exfiltration.
• Conducted vendor risk management, supplier security assessments, and third-party assurance.
• Monitored and analyzed security events, leading incident response and root-cause analysis.
• Maintained expertise in emerging threats, AI security, cloud security trends, and cybersecurity best practices.

• Key contributor to the Global Security Leadership Team, driving enterprise cybersecurity strategy, security governance, risk management, and strategic security objectives.
• Ensured application security and infrastructure security solutions complied with enterprise security standards, secure architecture, and policy requirements.
• Led Identity and Access Management (IAM) governance, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and identity lifecycle management.
• Directed endpoint security operations, including Endpoint Privilege Management, Zscaler Secure Web Gateway (Proxy), Endpoint Detection and Response (EDR), and endpoint hardening.
• Implemented data security and data protection controls, including Data Loss Prevention (DLP), Digital Rights Management (DRM), Cloud Access Security Broker (CASB), data classification, and data discovery to protect sensitive and regulated data.
• Conducted threat modeling, secure design reviews, and privacy-by-design assessments during application development and SDLC.
• Performed cloud security assessments, vulnerability management, security hardening, and risk remediation across AWS, Azure, and GCP environments.
• Defined and tracked security metrics, Key Performance Indicators (KPIs), Key Risk Indicators (KRIs), and executive security dashboards to measure risk posture and compliance status.
• Led delivery of enterprise security initiatives and information security programs, aligned with business objectives, risk appetite, and regulatory compliance.
• Drove security automation, tool consolidation, and cost optimization, improving operational efficiency and security maturity.
• Managed and developed a globally distributed security engineering team, covering resource planning, talent development, performance management, and retention.

• Contributed to the Global Security Leadership Team, actively shaping enterprise cybersecurity strategy, strategic initiatives, security governance, and organizational objectives.
• Delivered enterprise risk assessments and information security risk reports to the CISO and regional leadership, enabling risk-based decision-making.
• Ensured application security and infrastructure security solutions complied with security standards, policies, and regulatory compliance requirements.
• Oversaw implementation, continuous monitoring, and lifecycle management of security controls across systems, applications, and infrastructure.
• Managed execution of critical information security programs, including Multi-Factor Authentication (MFA), Single Sign-On (SSO), Privileged Access Management (PAM), Secure Build standards, and Cloud Security standards.
• Partnered with the Global Security Team to identify security gaps, perform risk remediation, and reduce security incidents and business impact.
• Built strong relationships with executive leadership, business stakeholders, and cross-functional teams to align security roadmaps, technology initiatives, and business objectives.
• Assessed security and compliance risks during Sales Governance and client RFP responses, supporting customer assurance and deal enablement.
• Collaborated with global and regional teams on incident response, breach prevention, and security incident management.
• Designed and delivered security awareness and training programs across APAC, improving security culture, user awareness, and policy adherence.
• Conducted third-party risk assessments, supplier security reviews, and vendor assurance for new and existing suppliers across APAC.

• Developed and established Information & Network Security policies, along with new standards, processes, and procedures to strengthen security frameworks.
• Designed and updated procedures for MBSS, Security AT, Vulnerability Management, and Penetration Testing, ensuring alignment with business objectives and regulatory mandates.
• Led Governance, Risk, & Compliance (GRC) activities across the hub to ensure adherence to security frameworks and regulatory requirements.
• Identified and mitigated vulnerabilities in the telecom environment by conducting Vulnerability Assessments and Security Testing for over 10,000 devices, implementing controls based on business strategy.
• Identified emerging threats, classified and assessed critical information assets, and worked to mitigate associated risks.
• Ensured the successful implementation and maintenance of ISO 27001 and ISO 22301 certifications for Bharti Airtel India.
• Conducted internal audits to assess compliance with regulator mandates (UASL, UL, DoT guidelines) and tracked corrective actions for non-compliance.
• Led the planning and execution of internal audits to evaluate the effectiveness of Bharti Airtel's policies, standards, and procedures, ensuring corrective actions were implemented for identified issues.
• Managed Lawful Interception Architecture, overseeing the rollout of Lawful Interception infrastructure and resolving issues across all technologies (2G, 3G, LTE).
• Initiated and managed Information & Network Security Awareness programs to promote security best practices across the organization.
• Managed SIEM operations and coordinated incident response activities for all information security incidents across the hub, ensuring corrective actions and learnings were implemented.

• Managed end-to-end operations for provisioning Internet and VPN connectivity services to B2C customers.
• Utilized both wired and wireless media for service delivery, focusing on last-mile connectivity over radio (wireless).
• Configured and provisioned Internet and VPN services, ensuring seamless integration between wireless and wired infrastructures.
• Troubleshot connectivity issues and optimized service performance to ensure reliable and high-quality customer experience.
• Performed Backup & Patch Upgradation for B2B customer nodes, including Core and Access Nodes for POP (Point of Presence).
• Ensured timely activation of services while meeting customer satisfaction goals and adhering to SLAs.
• Led the integration of Base Stations with ISP bandwidth, ensuring efficient data transmission and connectivity.

• Led and managed the comprehensive operations for the provisioning of Internet and VPN connectivity services to B2B customers, ensuring seamless delivery across diverse environments.
• Expertly utilized both wired and wireless media to deliver services, with a strategic emphasis on optimizing last-mile connectivity via radio (wireless).
• Orchestrated the configuration and provisioning of Internet and VPN services, ensuring flawless integration between wired and wireless infrastructures to deliver cohesive and reliable connectivity.
• Diagnosed and resolved connectivity challenges, optimizing system performance to ensure a consistently high-quality customer experience and minimal downtime.
• Collaborated effectively with cross-functional teams to streamline and refine operational workflows, significantly enhancing overall service delivery efficiency.
• Ensured the timely and successful activation of services, consistently meeting customer satisfaction targets while adhering to SLAs and business objectives.
• Spearheaded the integration of Base Stations with ISP bandwidth, ensuring robust, efficient data transmission and seamless connectivity across platforms.
• Led the execution of Backup and Patch Upgradation initiatives for B2B customer nodes, including Core and Access Nodes for POP (Point of Presence), reinforcing system security and stability.