Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic
MANIVANNAN R

MANIVANNAN R

IT Security & Compliance
Chennai

Summary

Technology Driven Information Security Professional with chronicled success of 10+ years across Information Technology Security, Vulnerability Management, Windows & Linux Administration, Data Center Administration, System Hardening, GRC, Endpoint Security, Identity & Access Management and Cloud Administration. Proven expertise in strengthening security posture, DAST and SAST testing leading enterprise audits, implementing ISO 27001 & PCI controls & driving remediation across multi-platform infrastructures. Notable success in VAPT Audit Management, analyzing security risks, collaborating with cross-functional teams & ensuring compliance with global standards. Currently transitioning into advanced Risk Management, Governance, Compliance & ISMS leadership roles to support secure, resilient & compliant enterprise operations. Showcased excellence in initiating & steering projects and attained a decrease in security incidents by implementing proactive monitoring & effective incident response strategies. Possess a thorough understanding of cutting-edge security technologies & tools such as NMAP, Nexpose, BurpSuit, OWASPZAP, Wireshark, Tenable & various firewall solutions, to ensure the organization stays ahead in security advancements. Successfully led a security initiative that resulted in a 100% increase in compliance with industry regulations within the first year, demonstrating a commitment to enhancing the organization's security framework. People Manager skilled in recruiting, leading, training, governing, monitoring & motivating multi-cultural teams entailing 11+ members in delivering business value with high morale & low attrition.

Overview

13
13
years of professional experience
7
7
Certifications
3
3
Languages

Work History

Lead-Cybersecurity (CISO Team)

RoyalSundaram General Insurance
11.2025 - Current
  • Advanced VAPT Execution: Conducted comprehensive VAPT assessments by defining the scope, timeline, and test methodology according to organizational and regulatory requirements. Led internal and external penetration testing initiatives, reviewing results, and driving remediation actions to strengthen the organizational security posture.
  • Collaborated with various stakeholders to address IT security gaps identified during the IT security audit and to align with the objectives of the organization effectively.
  • Information Security Audit: Initiate, coordinate various audit programs to achieve organizational goals and regulatory requirements of RBI, CSITE, and IRDAI Cybersecurity Audit.
  • Phishing Simulation Awareness: Conduct periodic phishing attack and awareness training.
  • Perform the vendor onboarding vetting process for the organization.


Manager (System Security)

Federal Bank
04.2024 - 11.2025
  • Advanced VAPT Execution: Conducted comprehensive VAPT assessments using HCL AppScan, Burp Suite, and Tenable, proactively identifying vulnerabilities and improving overall system resilience. Led internal and external penetration testing initiatives, reviewing results, and driving remediation actions to strengthen the organizational security posture.
  • Vulnerability Management and Remediation Planning: Owned end-to-end vulnerability management, prioritizing risks, developing remediation plans, and ensuring timely closure of security gaps.
  • Audit Planning and Compliance Monitoring: Conduct Internal ISMS and PCI DSS audit. Developed audit project plans and monitored ongoing compliance with PCI DSS and ISO 27001 standards, ensuring continuous certification readiness.
  • Security Policy Implementation and SLA Adherence: Review and develop IS policy security standards as part of core responsibilities to uphold security governance.
  • Vendor Collaboration & POC Leadership: Collaborated with external vendors on security initiatives, and led end-to-end proof-of-concept (POC) evaluations to assess and implement cutting-edge security solutions.
  • Participation in Governance and Business Commitments: Engaged in committee and board meetings to understand business processes, assess upcoming requirements, and align security planning with organizational priorities.

Senior Security Analyst

FIS Global
06.2020 - 03.2024
  • Vulnerability Assessment and Analysis: Analyzed vulnerabilities identified through Nexpose and Qualys scanners, ensuring accurate prioritization and timely remediation across systems and applications. Investigated and validated false-positive vulnerabilities, collecting evidence and coordinating with internal teams and vendors to secure successful false-positive approvals.
  • Cross-Team Remediation Coordination: Scheduled and coordinated remediation activities with cross-functional teams, driving closure of high-risk vulnerabilities, and improving overall security posture.
  • SLA Compliance & Security Policy Enforcement: Maintained strict SLA compliance, implementing FIS-standard security policies as a core responsibility to strengthen organizational security governance.
  • PCI Security Compliance: Ensured adherence to PCI security standards, supporting continuous certification readiness, and maintaining a compliant IT security environment.
  • Scripting for Automation: Developed and enhanced PowerShell and Bash scripts to automate vulnerability mitigation tasks, improving speed, accuracy, and overall efficiency.
  • Security Testing Tools Expertise: Utilized tools such as Nexpose, Nessus, nmap, Wireshark, curl, and OpenSSL to test, validate, and reproduce reported port-level and network vulnerabilities.

Information Security Engineer (for FIS Global)

Spandlea
05.2020 - 09.2021
  • Windows Infrastructure Administration: Managed and administered Windows infrastructure environments, ensuring stability, security, and continuous adherence to organizational standards.
  • Cross-Platform Vulnerability Management: Led end-to-end identification and remediation of Windows, UNIX, and Linux vulnerabilities—leveraging Nessus insights to strengthen security posture, minimize threat exposure, and ensure compliance across multi-OS environments.
  • PCI Compliance & Security Policy Adherence: Maintained a fully compliant work environment in accordance with PCI standards and company security policies, supporting continuous certification readiness, and robust governance.

Cloud Administrator

Vidcex Solutions
03.2020 - 05.2020
  • Wintel Infrastructure Administration: Managed and optimized Wintel environments, ensuring availability, performance, and secure operations across enterprise infrastructure. Troubleshoot Windows Server 2016 file servers, ensuring secure data access, optimized performance, and efficient storage utilization.
  • Microsoft 365 Administration: Administered Office 365 and Microsoft 365 platforms, enhancing user productivity, license utilization, and cloud-based collaboration efficiency.

IT Executive

AGS Health
10.2018 - 02.2020
  • Enterprise Identity & Access Governance: Led end-to-end management of Active Directory user lifecycle, access controls, and DNS administration, ensuring secure, accurate, and compliant identity operations across the organization.
  • File Server Stability and Data Availability Management: Led the maintenance, performance, and security of enterprise file servers, ensuring uninterrupted data availability, and efficient storage utilization for all business units. Backup restoration of data using the ArcServe Backup solution.
  • Wintel Infrastructure Administration & Optimization: Spearheaded end-to-end management of Windows Server (2008/2012), AD, GPOs, and DNS, ensuring highly stable, secure, and compliant enterprise infrastructure operations.
  • Microsoft 365 & Office 365 Service Governance: Oversaw full lifecycle administration of Microsoft 365 and Office 365—spanning provisioning, license control, security hardening, and incident resolution—to sustain uninterrupted collaboration and productivity across the organization.

IT Executive

Sulekha.com New Media Pvt. Ltd.
09.2017 - 10.2018
  • Wintel Infrastructure Administration & Optimization: Led end-to-end administration of Windows Server (2008/2012) environments, including Active Directory, Group Policies, and DNS management, ensuring stable and secure enterprise operations.
  • Internet Leased Line (ILL) & Vendor Coordination Excellence: Oversaw ILL operations, coordinated with ISPs and technical vendors, and ensured rapid resolution of service issues through strong stakeholder management and escalation leadership.
  • Firewall & Network Security Administration: Directed SonicWall firewall configuration, policy updates, VPN management, and threat monitoring to strengthen perimeter security and reduce operational risks.
  • Server Event Log Analysis and Proactive Issue Remediation: Monitored server events, performed RCA, and executed preventive measures to reduce recurring system issues and enhance platform reliability.
  • System Hardening & Patch Compliance: Implemented system updates, patch cycles, & configuration hardening to improve compliance, security posture, & extend system lifecycle.

Senior IT Support Engineer

4th Dimension Technology
07.2015 - 11.2017
  • Active Directory & Identity Lifecycle Administration: Managed end-to-end AD user lifecycle activities—including provisioning, access modifications, and deactivation—ensuring secure and compliant identity management.
  • DNS Record Management and Infrastructure Accuracy: Led static DNS record creation and updates, maintaining accurate name-resolution configurations for high network reliability.
  • Client Hardware & Software Deployment Excellence: Managed installation, configuration, and ongoing maintenance of client hardware and software assets, ensuring optimized system performance, and minimal downtime.
  • Enterprise Security & Patch Management: Ensured timely antivirus updates, spearheaded WSUS patching cycles, and strengthened the endpoint security posture across the environment.

Network Engineer

BotCode India Pvt. Ltd.
11.2012 - 01.2014

Education

MBA - Systems

Anna University
Chennai, India
01.2022

B.E - Electronics And Communications Engineering

Anna University
01.2011

Skills

IT Infrastructure Management

Certification

ISC2 – CC – Certified in Cybersecurity

Timeline

Lead-Cybersecurity (CISO Team)

RoyalSundaram General Insurance
11.2025 - Current

Manager (System Security)

Federal Bank
04.2024 - 11.2025

Senior Security Analyst

FIS Global
06.2020 - 03.2024

Information Security Engineer (for FIS Global)

Spandlea
05.2020 - 09.2021

Cloud Administrator

Vidcex Solutions
03.2020 - 05.2020

IT Executive

AGS Health
10.2018 - 02.2020

IT Executive

Sulekha.com New Media Pvt. Ltd.
09.2017 - 10.2018

Senior IT Support Engineer

4th Dimension Technology
07.2015 - 11.2017

Network Engineer

BotCode India Pvt. Ltd.
11.2012 - 01.2014

MBA - Systems

Anna University

B.E - Electronics And Communications Engineering

Anna University

Similar Profiles

  • Dr Bhavani Dr Bhavani null

    LEAD - ACCIDENT,HEALTH & EB CLAIMS at ROYALSUNDARAM GENERAL INSURANCE COMPANY LIMITEDLEAD - ACCIDENT,HEALTH & EB CLAIMS at ROYALSUNDARAM GENERAL INSURANCE COMPANY LIMITED

  • Sanjay KumbharSanjay Kumbhar

    Sales Manager at Indusind General Insurance (Reliance General)Sales Manager at Indusind General Insurance (Reliance General)

  • Amborish BoseAmborish Bose

    Deputy Manager at HDFC ERGO GENERAL INSURANCE FORMALY APOLLO MUNICH HEALTH INSURANCEDeputy Manager at HDFC ERGO GENERAL INSURANCE FORMALY APOLLO MUNICH HEALTH INSURANCE

  • FAHIMULLA MAHMOODFAHIMULLA MAHMOOD

    Salim Construction (HSE) at INSPECTORSalim Construction (HSE) at INSPECTOR

  • Indrajith SoupramanianeIndrajith Soupramaniane

    Senior Devops Manager at Qbrik Information TechnologySenior Devops Manager at Qbrik Information Technology

CREATE PROFILE
MANIVANNAN RIT Security & Compliance