GYANENDRA KUMAR

• As a Public-Private partnership between Fortune 500 Company, Corporation Limited (HPCL, state-owned enterprise), and Mittal Energy Investments Pte. Ltd Singapore (an L.N Mittal group Company). HMEL is the single largest investment in Punjab with 11.2 MMTPA refinery, one of the largest petrochemical complexes in the country, 165 MW captive power plant, and 1017 Km long crude pipeline (Mundra Gujrat to Bathinda Punjab) with 840,000 KL crude oil terminal at Mundra, Gujrat.

Key Responsibilities:

• Lead OT and IT Cybersecurity function at HMEL. OT landscape covers Refinery, Petrochemical complex, and Pipelines.
• Closely working with Promoters for Digital Transformation and cybersecurity strategy of the group.
• Representing Cybersecurity function to Board audit Committees.
• Leading 24X7 SOC operations
• Leading IT policy formulation, implementation of best practices for the organization
• Leading cyber security project management and responsible for selecting proactive cyber defense systems for the organization
• Governance of IT and Cyber Security contract performance
• Single point of contact for Intelligence bureau, NCIIPC, CERT- In and other regulatory and statutory bodies and auditors
• Single point of contact for risks associated with cyber-physical systems and responsible for Preparation of Enterprise risk dashboard, planning projects, and reporting the risk to HMEL Board
• Coordinator for cybersecurity in various forums e.g FIPI, internal OIL and Gas Meet (HPCL, BPCL, IOCL, GAIL), Baker Hughes, etc
• Team management at varied geographical locations and partners
• Stakeholder management for Cyber, IT governance, and Digital Transformation initiatives with CIO
• Synchronizing Cyber Security Governance with stakeholders (HPCL and Arceller-Mittal group)
• Member of digital transformation strategic group and Leading IIOT practices in HMEL along with IIOT Cybersecurity
• Achievements:
• Established OT cybersecurity practices for HMEL in 2015
• Implemented IT best practices in OT
• Aligned HMEL IT and OT information security Governance to ISO/IEC 27001:2013 and OT security controls to international standards e.g
• IEC 62443, NIST, etc
• HMEL OT (Refinery, Pipeline, and COT) is certified against ISO/IEC 27001:2013, ISO 20000 being first oil refinery in India in 2016
• IT service and cybersecurity management is aligned to ISO 22301:2019 for business continuity and resilience
• Played a pivotal role in establishing HMEL Digital Strategy
• Identified use cases along with operations by getting operations trained around new technologies like advanced analytics, IIOT, RPA, etc
• Established 24X7 SOC operations for HMEL OT and IT
• Developed cloud security strategy for HMEL
• Developed Anti Drone and cyber-physical safety strategy for HMEL in collaboration with the Physical Security team.

• Was formed in the year, , under the umbrella of a multinational US-based LAW giant (Phelan Hallinan and Schmiege LLP)
• CNS started LPO services in India and one of the leaders in the USA for providing back office and software development services to banking institutions and credit institutions
• Responsibilities & Achievements:
• Taken care of entire IT infrastructure IT security Management
• Implemented security policies and procedures
• Enabled data protection policies procedures and implemented technical controls e.g
• DLP
• Implemented Secure web gateway, Intrusion prevention systems, Multifactor authentication for PH &S
• ISP and IT vendor management
• Client coordination (USA, UK) in case of IT outages from local and client end
• Designed, and supervised the entire IT infrastructure implementation for the organization during transition
• Responsible for statutory compliances related to IT department (IT act 2000, SOX, EULA for software,
• Data retention policies as per various acts/ laws)
• Managed a team of system and network administrators, IT help desk engineers
• Conducting information security trainings for the new joiners and existing employees
• Designed, led, implemented, and got accredited the Information Security Management System (per ISO 27001:2005) as CISO of the organization
• Designed, lead, implemented, and certified the Quality Management System (following ISO 9001:2008) covering software development
• Implemented Multi-factor authentication (Aladin and Gmalto) on client locations.

• Reporting to: Group CISO Team Size: 94
• Progression: -
• Governance 70%
• Technical 30%, Enterprises Limited (AEL) is the flagship company of the Adani Group, one of India’s largest business organisations
• Company has successfully built unicorns like Adani Transmission, Adani Power, Adani Ports & SEZ, Adani Green Energy and Adani Total Gas and now eying next-generation of its strategic business investments are centered on the fields of airport management, roads, data center and water infrastructure
• Key Responsibilities:
• Leading OT cyber security and cyber governance (ISO 20000:2018, ISO 27001:2013 and ISO 22301) for the group
• Achievements:
• Played key role in establishing in house cyber security function
• Ensured secure transition from service partner to in house team
• Lead Secure digital transformation strategy with Industrial Transformation team
• Established OT/IT interconnectivity architectures for Green Energy, Gas distribution, Transmission, airports, ports and Petrochemical businesses
• Established cyber security and cyber governance function in key projects e.g
• Gas distribution control center and Transmission NOC
• Formulated OT security policy for the group
• Designed policies and procedures in line with ISO 20000, ISO 27001, and ISO 22301 standards.

• Reporting to: CIO Team Size: 124
• Progression: 1
• Governance 70%
• Technical 30

• CIO/ Director (USA) Team Size: 11
• Governance 40%
• Technical 60

• Team Size: 6
• Governance 20%
• Technical 80%
• Led team for setting up Lenovo home series and server support in India
• Handling a team of 12+ agents for Lenovo Technical Support
• Streamlining the different sub-processes like voice, SMS, e-mail support, part authorization
• Focus on customer satisfaction (C_Sat)
• Have been able to pull the C_Sat percentage from 20-30% to above 80%
• Focus on the process quality and getting all the support departments calibrated on the same
• Following up with the clients to get feedback & complaints
• Performing Quality Audits for the maintenance of quality standards for the support provided to the clients
• Department SPOC for setting up ISO 27001:2005, ISO 9001:2008, and ISO 14001 standards.

• Reporting to: Process Manager Team Size: NA Technical 100%
• Handling technical support calls and providing support for the queries for HP desktops and servers
• Generating the request for engineer visit in case of part replacement required
• GYANENDRA KUMAR