Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

K SANDEEP KUMAR

SENIOR INFORMATION SECURITY MANAGER
Visakhapatnam

Summary

A results-driven and mission-focused Senior Cybersecurity Leader with over 15 years of distinguished service in the Indian Navy, delivering strategic leadership across cybersecurity operations, risk management, digital forensics, and cyber defense. Renowned for aligning cyber strategy with business goals, building high-performance teams, and managing end-to-end enterprise security in complex, mission-critical environments.


Possesses a deep command over incident response, SOC leadership, malware analysis, threat hunting, digital forensics, vulnerability management (VAPT), and Red Teaming. Spearheaded the formulation and enforcement of security frameworks aligned with ISO 27001, NIST, CIS Controls, and MITRE ATT&CK, significantly strengthening cyber resilience across multi-domain infrastructure.


Proven expertise in leading Governance, Risk & Compliance (GRC)initiatives, developing and operationalizing information security policies, managing internal audits, and driving enterprise-wide business continuity and disaster recovery strategies. Adept at procurement leadership, vendor management, and optimizing cybersecurity investments through government-grade acquisition frameworks.


Recognized by senior command at Eastern Naval Command HQ for leading innovation, digitally transforming security operations, and improving incident detection, remediation timelines, and organizational readiness against emerging threats. A true cybersecurity strategist, deeply committed to safeguarding digital ecosystems while enabling secure digital transformation.

Overview

15
15
years of professional experience
4
4
Certifications

Work History

Senior Manager (Cyber Security)

Indian Navy
06.2023 - Current
  • Led enterprise-wide risk assessments and aligned mitigation strategies with business objectives and regulatory obligations.
  • Spearheaded the development and enforcement of cybersecurity policies and procedures in line with ISO 27001, NIST, and industry best practices.
  • Directed governance, risk, and compliance (GRC) functions to ensure alignment of security programs with organizational and regulatory requirements.
  • Oversaw the strategic planning and execution of cybersecurity and IT budgets to ensure cost-effective security investments.
  • Served as a key cybersecurity advisor to the CISO, providing insights on incident response, threat posture, and organizational resilience.
  • Led the Security Operations Center (SOC), Incident Response, VA/PT, and audit teams with strategic direction and operational oversight.
  • Leveraged findings from vulnerability assessments, penetration testing, and Red Team exercises to drive prioritized remediation and threat mitigation.
  • Orchestrated internal and third-party security audits, threat analysis, and compliance reviews to proactively reduce risk exposure.
  • Researched emerging threats, adversarial tactics, and security innovations to anticipate evolving risks and adapt defense strategies accordingly.
  • Built and mentored high-performing cybersecurity teams, promoting technical excellence and leadership development.
  • Directed vendor management and procurement strategies for security tools and managed services, ensuring alignment with technical and business needs.
  • Facilitated rapid coordination with stakeholders to accelerate security patching cycles and reduce threat exposure timelines.

Manager (Incident Response & Digital Forensics)

Indian Navy
05.2020 - 05.2023
  • Managed end-to-end Security Operations Center (SOC) activities, ensuring efficient incident detection, triage, and coordinated response to maintain enterprise-wide security integrity.
  • Collaborated with SOC analysts and IT teams to fine-tune SIEM rules, alert logic, and correlation use-cases, significantly improving threat detection accuracy and reducing false positives.
  • Authored and enforced Standard Operating Procedures (SOPs) for digital evidence acquisition and lawful seizure, ensuring adherence to legal protocols and forensic chain-of-custody standards.
  • Aligned incident investigation processes with the Cyber Kill Chain and MITRE ATT&CK frameworks, improving threat modeling and defensive posture.
  • Conducted advanced malware analysis and network breach investigations using tools such as OllyDbg, Ghidra, Volatility, Regshot, Pestudio, Cuckoo Sandbox, REMnux, FlareVM, and the Sysinternals Suite.
  • Led the setup of an in-house digital forensics lab—including vendor selection, infrastructure design, and SOP implementation—enabling internal forensic capabilities for investigations and litigation support.
  • Specialized in memory forensics to uncover Fully Undetectable (FUD) malware, extracting Indicators of Compromise (IOCs) from obfuscated payloads and volatile data.
  • Utilized industry-standard forensic tools (FTK, EnCase, Tableau, Autopsy) to conduct disk and memory forensics, ensuring comprehensive evidence analysis for internal investigations and legal cases.
  • Conducted in-depth disk forensics investigations using EnCase and Autopsy, including evidence acquisition, recovery of deleted files, registry parsing, timeline analysis, and artifact extraction; leveraged EnScript for automation and customized investigative workflows.

Associate Information Security Manager

Indian Navy
08.2018 - 04.2020
  • Led the integration and deployment of secure systems and services, ensuring minimal disruption to ongoing business operations.
  • Participated in cross-functional IT project teams to embed security requirements during system design and implementation phases.
  • Recommended infrastructure enhancements by analyzing system performance and aligning upgrades with security requirements and best practices.
  • Coordinated internal and external security audits, managed compliance requirements, and followed through on remediation plans to address identified gaps.
  • Executed comprehensive vulnerability assessments and penetration tests across networks, infrastructure, and applications using tools such as Nmap, Nessus, OpenVAS, Burp Suite, OWASP ZAP, Nikto, Metasploit, and Kali Linux.
  • Performed Red Team exercises to simulate real-world attacker tactics and assess the organization’s detection and response capabilities.
  • Streamlined vulnerability management processes by implementing data filtering techniques and prioritization strategies to focus on high-impact risks.
  • Produced detailed technical reports and executive-level summaries with strategic, actionable security recommendations.
  • Delivered security awareness and technology adoption training to internal users and IT support staff, fostering a security-first culture across the organization.
  • Presented concise findings and metrics to stakeholders, directly contributing to improved cybersecurity posture and incident readiness.

Information Security Analyst

Indian Navy
04.2015 - 07.2018
  • Led and Conducted internal audits, IT risk assessments, and security posture evaluations to identify vulnerabilities and non-compliance areas.
  • Performed hands-on penetration testing using tools like Nessus, Nmap, and BurpSuite, providing actionable insights to enhance defense mechanisms.
  • Manage and configure security monitoring tools and technologies such as SIEM, IDS/IPS, and firewalls.
  • Analyzed security logs, event data, and network traffic to detect anomalies, assess threats, and support incident investigation processes.
  • Investigated cybersecurity incidents, escalating critical findings and supporting response coordination with IT, legal, and compliance teams.
  • Utilized EDR and network-based detection tools to identify, contain, and remediate threats in real-time.
  • Contributed to threat intelligence collection and reporting to improve situational awareness and future incident preparedness.
  • Executed patch management and system hardening initiatives to maintain compliance with internal and regulatory standards.
  • Administered user access controls, conducted periodic audits, and ensured role-based access provisioning across multiple systems and applications.
  • Managed privileged access reviews and monitored user activity logs to prevent unauthorized access and insider threats.

Information Security and Technology Assistant

Indian Navy
01.2012 - 03.2015
  • Delivered efficient end-user support for hardware, software, and network connectivity across departments, ensuring minimal downtime and high user satisfaction.
  • Installation and configuration of IT infrastructure, including desktops, laptops, printers, and peripheral devices, meeting operational readiness.
  • Managed IT asset lifecycle, implementing structured check-in/check-out processes and maintaining accurate inventory to improve traceability and reduce losses.
  • Executed user account provisioning, access control, and workstation configurations in compliance with IT security and onboarding protocols.
  • Developed and maintained standard operating procedures (SOPs) for IT support, enhancing consistency and reducing resolution times.
  • Led the deployment of new hardware and software, ensuring seamless integration with minimal disruption to business operations.

Trainee

Indian Navy
08.2010 - 12.2011

Education

Bachelor of Science - Computer Science

Govt High School For Boys
Rajahmundry
04.2001 -

Skills

    Governance, Risk and Compliance

    Incidence Response and Digital Forensics

    SOC Management

    VAPT & Red Teaming

    Auditing

    Risk management

    Malware Analysis

    Vendor management

Certification

Certified Information Systems Security Professional (CISSP)

Timeline

Senior Manager (Cyber Security)

Indian Navy
06.2023 - Current

Manager (Incident Response & Digital Forensics)

Indian Navy
05.2020 - 05.2023

Associate Information Security Manager

Indian Navy
08.2018 - 04.2020

Information Security Analyst

Indian Navy
04.2015 - 07.2018

Information Security and Technology Assistant

Indian Navy
01.2012 - 03.2015

Trainee

Indian Navy
08.2010 - 12.2011

Bachelor of Science - Computer Science

Govt High School For Boys
04.2001 -

Similar Profiles

CREATE PROFILE
K SANDEEP KUMARSENIOR INFORMATION SECURITY MANAGER