Summary
Overview
Work History
Education
Skills
Timeline
Generic

Iyyappan Gopal

Summary

CISM and ITIL V4 certified Cyber Security Architect with over 20 years of experience in enterprise security across telecom, retail, and cloud sectors. Expertise in designing and implementing comprehensive cybersecurity frameworks, risk governance, and digital transformation initiatives. Successfully led critical migrations and delivered multi-million-dollar security programs aligned with ISO 27001 and NIST standards. Currently advising Walmart Global Tech on secure architecture and risk management while driving SOC automation and security controls in global hybrid environments. Results-driven security expert specializing in Azure and AWS platforms, focusing on vulnerability remediation, secure SDLC, and threat modeling to enhance organizational security posture. Results-driven Cloud Security Manager with proven skills in vulnerability remediation, threat modeling, and secure SDLC. Adept at leading security audits and developing architecture standards to enhance organizational security posture. Results-driven Cloud Security Manager with proven ability to lead vulnerability remediation, threat modeling, and secure SDLC initiatives. Adept at balancing security controls with business objectives to drive impactful security governance.

Overview

20
20
years of professional experience

Work History

Staff Risk Expert Technical Information Security Advisor (TISA)

Walmart Global Tech
07.2024 - 06.2025
  • Partnered closely with stakeholders across MassMart, Walmart US, and international markets to evaluate and advise on secure architectural patterns, balancing security controls with business objectives.
  • Led the Security Governance team and approved SSPs to ensure security by design, as per Walmart standards.
  • Developed security architecture standards and frameworks for complex systems.
  • Collaborated with cross-functional teams to implement security protocols effectively.
  • Led security audits to ensure compliance with industry regulations and best practices.
  • Provided guidance on secure software development lifecycle methodologies.
  • Conducted security design reviews and threat modeling to assess risks, proposing enhancements aligned with NIST 800-53 frameworks.
  • Supported risk exception evaluations and contributed to continuous improvement of Walmart's security architecture governance, documentation, and escalation processes.
  • Analyzed large datasets to identify trends and insights for strategic decision-making.
  • Facilitated workshops to educate staff on AI tools and methodologies.
  • Identified needs of customers promptly and efficiently.
  • Utilized various software and tools to streamline processes and optimize performance.

Cloud Security Manager

Accenture
Chennai
03.2021 - 07.2024
  • Manage Cyber Security framework in Accenture digital marketing projects with periodic review of critical assets, risks, and vulnerabilities, discover new risks, correlate the Security Analysis, and posture of cyber security.
  • Led multiple security transitions in different projects in Cyber security in Azure and AWS platforms.
  • Hand-on experience in all resources of Azure and AWS cloud
  • Conducted comprehensive research and data analysis to support strategic planning and informed decision-making.
  • Utilized various software and tools to streamline processes and optimize performance.
  • Solution design and implementation.
  • Planning, designing, testing, implementing, and maintaining client's network security infrastructure.
  • Managing and designing the architect for Clients' projects.
  • Independently Migrated Big IP (F5 WAF) from Third party link to Azure Cloud for USA East & West region. (Start from initial setup to till website go live)
  • Migrated Sitecore platform ver 9.3 to 10.3 from IaaS to PaaS.
  • Migrated RSA to Azure MFA (1300 + accounts & 200+VM's).
  • Configure single sign on with SAML integration with F5 APM and Azure Active Directory. Troubleshoot SSO login/logout issue and URL redirection using iRule and local policy.
  • Enabled MSFT Defender for cloud for AKS containers, SQL, Endpoints (200 VMs) & other azure resources & set it up MS365 dashboard.
  • Project worth 1.2M$ and completed successfully without any outage and SI.
  • ChennaiException governance

Info Sec Manager

TCTS
Pune
02.2020 - 03.2021
  • Oversaw 24x7 firewall and DDoS protection operations across 22 bank links; implemented TRAI-mandated URL blocking (Netsweeper).
  • Implemented automation bots to optimize daily SOC operations, improving response accuracy and speed.
  • Managed security across a major telecom merger, aligning tools, risk frameworks, and compliance protocols.
  • Partnered with legal and compliance teams for regulatory adherence (TRAI, DoT, CERT-In).

Info Sec Manager

Vodafone Idea ltd
Mumbai
03.2010 - 02.2020
  • Designed and supported hybrid architectures (cloud + on-prem), enabling secure workload mobility, identity federation, and seamless integration between legacy systems and cloud-native services.
  • Led cybersecurity and infrastructure hardening initiatives, implementing network segmentation, secure IAM models, vulnerability remediation, and baseline hardening aligned with CIS/industry benchmarks.
  • Planned and validated resilience, high availability, and disaster recovery (DR) strategies, defining RTO/RPO targets, conducting failover testing, and ensuring business continuity for critical applications.
  • Conducted architecture reviews and periodic capability assessments, identifying technical gaps, security risks, and scalability constraints, and recommending roadmap improvements aligned with business and risk objectives.
  • Provisioned and sized infrastructure for AI and analytics workloads, considering compute, storage, networking, and security requirements to support high-performance data processing and model execution.
  • Applied strong problem-solving skills in complex production environments, troubleshooting cross-domain issues involving cloud, on-prem infrastructure, security controls, and application dependencies under time-critical conditions.
  • Reduced security exposure by 70% through infrastructure hardening and continuous vulnerability remediation
  • Improved system availability to 99.9%+ by implementing resilient architecture and DR testing
  • Supported AI/analytics workloads processing 70 TB/day of data through optimized infrastructure sizing
  • Developed security policies and implemented MBSS controls for telecom infrastructure.
  • Led cybersecurity efforts during Vodafone-Idea merger.
  • Oversaw ISO 27001/22301 certification efforts covering 127 sites, 23 circles, and data centers to maintain compliance and operational security.

Network Engineer

IBM infoservice
Chennai
01.2005 - 02.2010
  • Designed and implemented network architecture for efficient data flow.
  • Monitored network performance and identified potential issues proactively.
  • Configured and maintained routers, switches, and firewalls for secure connectivity.

Education

MBA - System Administrator

Madras University
Chennai

Skills

  • Cloud Platforms & DevSecOps
  • Security
  • Azure security
  • AWS security
  • Firewall policies
  • Encryption
  • Container (AKS) security
  • Azure Monitor
  • Azure Sentinel
  • Defender for Cloud
  • Netsweeper
  • Splunk
  • Qualys
  • Checkmark
  • Apiiro
  • Azure DevOps CI/CD
  • Microsoft Defender
  • Checkmarx
  • F5
  • Cisco ASA
  • Threat modelling
  • Secure SDLC
  • Vulnerability remediation

Timeline

Staff Risk Expert Technical Information Security Advisor (TISA)

Walmart Global Tech
07.2024 - 06.2025

Cloud Security Manager

Accenture
03.2021 - 07.2024

Info Sec Manager

TCTS
02.2020 - 03.2021

Info Sec Manager

Vodafone Idea ltd
03.2010 - 02.2020

Network Engineer

IBM infoservice
01.2005 - 02.2010

MBA - System Administrator

Madras University

Similar Profiles

  • Vijendra KalburgiVijendra Kalburgi

    Head of Information Security Architecture/Lead Architect at Quantum Wealth Tech LimitedHead of Information Security Architecture/Lead Architect at Quantum Wealth Tech Limited

  • Iyyappan GopalIyyappan Gopal

    Staff Risk Expert at Walmart Global Tech IndiaStaff Risk Expert at Walmart Global Tech India

  • Celestin NtemngwaCelestin Ntemngwa

    Senior Information Security Risk Analyst at Service Corporation International, SCISenior Information Security Risk Analyst at Service Corporation International, SCI

  • Bawinile NhlabatsiBawinile Nhlabatsi

    <ul><li>Assist in preparing Subs Annual Budgets and reviewing Subs financial reports.</li><li>Provide support and training to partners to ensure adequate support for the program component.</li><li>Conduct partner technical supportive supervision on request basis from Grants & Compliance teams.</li><li>Coordinate grantee proposal review process and ensure compliance with solicitations and donor regulations.</li><li>Coordinate pre-award evaluations and assessments of potential grantees as needed.</li><li>Analyze, verify and review grantees proposal budgets to ensure donor compliance and reasonableness.</li><li>Coordinate the assessment of grantee risk and implement appropriate systems and agreements to minimize risk.</li><li>Ensure timely and appropriate close-out of sub-grants and coordinate the close-out of EGPAF prime grants.</li><li>Provide support and training to partners finance staff to build financial and accounting capacity to ensure adequate support for the program component.</li><li>Monitor partners’ spending patterns as part of the overall project budget to actual analytics.</li><li>Follow up on Grantee monthly invoices & supporting documents</li><li>Serve as an expert on applicable policies, procedures, rules, and regulations and assist staff with their interpretation and understanding of these.</li><li>Stays abreast of donor policies, procedures, rules and regulations and host country legal requirements and informs local and regional management of significant changes.</li><li>Perform internal departmental/grants reviews ensuring compliance with Foundation and donor requirements. Identify potential areas of compliance vulnerability and risk; assists with the development of corrective action plans for the resolution of problematic issues; and provides general guidance on how to avoid or deal with similar issues in the future</li><li>Conduct on-site financial compliance reviews which include: cash counts; review of accounts receivables including employee receivables; documentation of segregation of duties and internal control structure; document storage and retention</li><li>Document findings, propose improvements or change as relevant, disseminate findings and ensure follow up implementation of recommendations as well as resolution</li><li>Conduct random surprise checks and vendor verification reviews to ensure proper procurement procedures are being practiced and report on findings</li><li>Develops an effective Compliance & Ethics training program, including appropriate introductory training for new employees as well as ongoing training for all employees and managers</li><li>Assists with improving the awareness and understanding of compliance to assist employees with the establishment of a “culture of compliance”</li></ul> at Elizabeth Glaser Pediatric Aids Foundation<ul><li>Assist in preparing Subs Annual Budgets and reviewing Subs financial reports.</li><li>Provide support and training to partners to ensure adequate support for the program component.</li><li>Conduct partner technical supportive supervision on request basis from Grants & Compliance teams.</li><li>Coordinate grantee proposal review process and ensure compliance with solicitations and donor regulations.</li><li>Coordinate pre-award evaluations and assessments of potential grantees as needed.</li><li>Analyze, verify and review grantees proposal budgets to ensure donor compliance and reasonableness.</li><li>Coordinate the assessment of grantee risk and implement appropriate systems and agreements to minimize risk.</li><li>Ensure timely and appropriate close-out of sub-grants and coordinate the close-out of EGPAF prime grants.</li><li>Provide support and training to partners finance staff to build financial and accounting capacity to ensure adequate support for the program component.</li><li>Monitor partners’ spending patterns as part of the overall project budget to actual analytics.</li><li>Follow up on Grantee monthly invoices & supporting documents</li><li>Serve as an expert on applicable policies, procedures, rules, and regulations and assist staff with their interpretation and understanding of these.</li><li>Stays abreast of donor policies, procedures, rules and regulations and host country legal requirements and informs local and regional management of significant changes.</li><li>Perform internal departmental/grants reviews ensuring compliance with Foundation and donor requirements. Identify potential areas of compliance vulnerability and risk; assists with the development of corrective action plans for the resolution of problematic issues; and provides general guidance on how to avoid or deal with similar issues in the future</li><li>Conduct on-site financial compliance reviews which include: cash counts; review of accounts receivables including employee receivables; documentation of segregation of duties and internal control structure; document storage and retention</li><li>Document findings, propose improvements or change as relevant, disseminate findings and ensure follow up implementation of recommendations as well as resolution</li><li>Conduct random surprise checks and vendor verification reviews to ensure proper procurement procedures are being practiced and report on findings</li><li>Develops an effective Compliance & Ethics training program, including appropriate introductory training for new employees as well as ongoing training for all employees and managers</li><li>Assists with improving the awareness and understanding of compliance to assist employees with the establishment of a “culture of compliance”</li></ul> at Elizabeth Glaser Pediatric Aids Foundation

CREATE PROFILE
Iyyappan Gopal