Hemanth Chebrolu
Cybersecurity Leader With 15+ Years Of Experience MSSP,SOC, Security Architecture, Cyber Security Strategy, Team Management, And Mentoring
HYDERABAD
Summary
As a seasoned cybersecurity professional with over 15 years of experience, I have demonstrated success in leading teams and offering expert consulting in areas such as security architecture, SOC, MSSP team management, and mentoring.
My areas of expertise include: creating and overseeing managed security service portfolios, managing cyber security consultants and implementing security functions like CISO organizations; designing, building and managing SOC; extensive knowledge in drafting and implementing enterprise security strategies and standards, such as NIST, ISO 27001, CIS, SANS 20 critical controls, PCI-DSS, Qatar cyber security standard, and NIA cyber security framework; and a proven track record of handling large, complex MSSP clients and communicating effectively with upper management.
Technical Certifications & trainings: Certified Ethical Hacker, Cisco Certified Network Associate, Checkpoint Certified Security Administrator, VMware Certified Professional & Microsoft certified Technology Specialist, CISSP, CISM, ISO 27001 lead auditor
Overview
14
14
years of professional experience
5
5
years of post-secondary education
Work History
Sr Manager/Sr Architect
MEEZA Information Technology
04.2022 - 11.2022
- Standardized managed security services offerings for various cyber security services, including SIEM, SOC, XDR, Firewalls, IPS, web proxies, EDR, NGAV, Vulnerability management, threat intel, pen testing, forensics services, DLP, and security auditing and consulting
- Provided direction and guidance for large cyber security transitions and transformations, including setting up and migrating SOC operations and implementing cyber security solutions
- Assisted cyber sales teams in responding to RFPs, customer presentations, and demos, and liaised with cyber security vendors and partners.
Sr Manager
ATOS LLC
11.2019 - 04.2022
- Led 24x7 security engineering teams to support MSSP operations, including SIEM, EDR, XDR, WAF, DDoS prevention systems, Next Gen AV, Vulnerability management, and penetration testing
- Supervised security consultants and auditors, and provided direction and guidance for large cyber security transition and transformation projects
- Guided infrastructure engineers and architects to support state-of-the-art data centers, and oversaw BCP, DR activities, and incident management
- Drove MSSP service improvements and internal infrastructure projects
- Led cyber security transition and transformation projects, including setting up, migrating or modernizing SOCs, and implementing various cyber security frameworks
- Communicated with customers for monthly service review meetings and escalations, and participated in management and executive meetings.
Security Architect
Tech Mahindra
08.2018 - 11.2019
- Developed and implemented cyber security strategy for KAHRAMAA (Electricity and water Ministry) as an advisor
- Led efforts to design, implement, and manage information security solutions, policies, procedures, and standards
- Designed, built, and operated a security operations centre (SOC) and led critical cyber security incidents and process and technology optimizations
- Implemented various cyber security frameworks, including ISO 27001, NIST CSF, CIS/SANS, PCI DSS, Qatar NIA, and Qatar 2022 Framework
- Redesigned CISO organization, defined teams, roles, and responsibilities, and recruited and mentored teams to meet company's cyber security objectives
- Communicated with government entities and other business units to provide direction and guidance to fulfill or exceed compliance requirements.
Principal Cyber Security Engineer
CA Technologies
01.2016 - 06.2018
- Implemented and managed enterprise security solutions such as Antivirus, EDR, WAF, IPS, Vulnerability scanners, network and endpoint DLPs, and SIEM
- Developed, updated, and enforced security policies, procedures, and standards
- Led audit response for internal and external audits and assessments
- Provided L3/L4 support for all security-related technologies and led cyber security incident response efforts
- Led and owned critical cyber security incidents and processes
- Collaborated with government entities and other business units such as HR, legal, Communications, Physical security, and Internal/External Audit teams to provide direction and guidance to fulfill organization's information security goals.
IT Infrastructure Engineer
Aveva Software Ltd
06.2014 - 01.2016
- Building and Managing NSOC and providing level 3 support for all enterprise security technologies Responsible for security incident management, conducting security, audit, reviewing and develop security policies, standard operating procedures, Vulnerability management, Risk assessment and penetration testing Participating in planning & building datacenters, office infrastructure
Technology Analyst
Infosys technologies Ltd
03.2011 - 06.2014
- Participating in planning & building multi-tenant model datacenters, build and deployment network and security components Build & lead Security Operation Center Team and act as final point of contact for security Incident, Suggesting improvements to SOC workflow & incident handling methods
- Security log analysis and incident response, conducting security audit & reviewing security policies
Network Engineer, IT Network & Security Analyst
Netroverts Software ltd India
10.2008 - 03.2011
- Responsible building and managing corporate LAN and server farm, administering network security components (Routers, switches, firewalls, antivirus, windows patching etc.)
Education
MSC Network Security -
Glasgow Caledonian University
01.2007 - 01.2008
B Tech - Computer Science Engineering
Chaitanya engineering college
01.2002 - 01.2006
Skills
Develop and lead MSSP (Managed security services) offerings
Security architecture design & reviewSecurity consulting, audits and assessmentsBuild and manage Security Operations centre (SOC)Developing Cyber security strategyExecutive communication and customer managementRFPs response and customer presentationsDesign and implement Security technologies such as SIEM, SOC, XDR, Firewalls, WAF, DDoS prevention suites, IPS, web proxies, EDR, NGAV, Vulnerability management, threat intel, pen testing, forensics services, CSIRP, DLP
Building and managing Colo Datacentres & public cloud datacentres
Incident management, BCP and DR activitiesTeam management and mentoringTimeline
Sr Manager/Sr Architect
MEEZA Information Technology
04.2022 - 11.2022
Sr Manager
ATOS LLC
11.2019 - 04.2022
Security Architect
Tech Mahindra
08.2018 - 11.2019
Principal Cyber Security Engineer
CA Technologies
01.2016 - 06.2018
IT Infrastructure Engineer
Aveva Software Ltd
06.2014 - 01.2016
Technology Analyst
Infosys technologies Ltd
03.2011 - 06.2014
Network Engineer, IT Network & Security Analyst
Netroverts Software ltd India
10.2008 - 03.2011
MSC Network Security -
Glasgow Caledonian University
01.2007 - 01.2008
B Tech - Computer Science Engineering
Chaitanya engineering college
01.2002 - 01.2006