Open To Work
Dipesh Shandilya
Delhi
Summary
Cybersecurity professional with 3 years of experience in cloud security, ITGC, and risk-based security assessments.Hands-on in Azure security reviews, SOC 2 / ISO 27001 control testing and remediation advisory across enterprise and government environments.
Overview
3
3
years of professional experience
4
4
Certifications
Work History
Senior Analyst Cyber Security
Deloitte Touche Tohmatsu India
Delhi
12.2024 - Current
- Perform internal ITGC testing across logical access and cloud risk assessments for large-scale government and enterprise environments, covering IAM, change management, incident response, backup & disaster recovery.
- Assess Microsoft Azure environments (Entra ID, RBAC, NSGs, Key Vault, Sentinel, logging) for security design, control effectiveness and compliance with SOC 2 and ISO/IEC 27001 requirements.
- Evaluate security control design and operating effectiveness, identify systemic risks, and partner with engineering teams on remediation.
- Produce executive-ready cybersecurity assessment reports, metrics and dashboards highlighting risk trends, control gaps and remediation status.
- Support secure cloud adoption by reviewing new architectures, identity federation models and privileged access designs.
Associate Engineer
Accenture
Gurugram
02.2021 - 08.2022
- Supported security engineering and assurance initiatives across Azure AD, IAM, MFA, conditional access, SIEM monitoring and incident response.
- Performed ITGC and automated control testing, including logical access, change management, backup, vulnerability management and incident handling.
- Tracked security risks, audit issues and remediation activities using ServiceNow GRC and collaborated with stakeholders to improve control maturity.
- Assisted in developing security standards and control documentation aligned with ISO/IEC 27001 and enterprise security frameworks.
Education
M.tech - Cyber Security & Forensics
University of Petroleum And Energy Studies
Dehradun, IndiaB.tech - Computer Science Engineering
University of Petroleum And Energy Studies
Dehradun, IndiaSkills
Security Domains:
Cloud Security, Cybersecurity Audits, Risk Assessment, Security Engineering,
IAM, Incident Response, Vulnerability Management
Cloud Platforms:
Microsoft Azure (Entra ID, RBAC, NSG, Key Vault, Sentinel), Cloud Governance
Assurance & Frameworks:
SOC 2, ISO/IEC 27001, NIST, ITGC, Internal Audit, Control Testing
Tools & Automation:
ServiceNow GRC, SIEM, IDS/IPS, Firewall Reviews, Python, PowerShell, SQL
Projects
Security Research & Engineering Projects:
• Implemented secure data embedding techniques using AES encryption and
signal processing algorithms, focusing on data integrity and protection.
• Designed backend systems with role-based access controls and secure
database interactions using Java and PostgreSQL.
Certification
• Certified ISO/IEC 27001:2022 Lead Implementor - TUV SUD
Work Preference
Job Search Status
Open to workWork Type
Full TimeLocation Preference
RemoteOn-SiteHybridSalary Range
₹0/yr - ₹1400000/yrTimeline
Senior Analyst Cyber Security
Deloitte Touche Tohmatsu India
12.2024 - Current
Associate Engineer
Accenture
02.2021 - 08.2022
M.tech - Cyber Security & Forensics
University of Petroleum And Energy Studies
B.tech - Computer Science Engineering
University of Petroleum And Energy Studies