Melvin Sandron
Cybersecurity and Cloud Security Consultant
Chennai
Summary
Highly motivated and results-oriented cybersecurity consultant with 20 years of experience safeguarding organizational assets and data. Certified Information Systems Security Professional (CISSP) with expertise in conducting security assessments, identifying vulnerabilities, and implementing robust security controls. Adept at collaborating with diverse teams and translating complex technical concepts into actionable insights for stakeholders.
Certified Cloud Security Professional (CCSP) with a strong understanding of cloud security principles, best practices, and compliance requirements. Proven ability to design, implement, and manage comprehensive cloud security solutions, ensuring optimal protection of data and resources.
Overview
7
7
years of professional experience
10
10
Certifications
Work History
Senior Corporate Trainer/Security Consultant
RPS Consulting Pvt Ltd
09.2019 - Current
- Delivering training and consultancy on Cyber Security and Information Security concepts, Cloud Security and tools to overseas/corporate clients as well as internal staff
- Having ample experience in Penetration Testing, Ethical Hacking ETC., cloud security.
Corporate Trainer and Consultant
Koenig Solutions Ltd.
04.2017 - 08.2019
- Delivering training and consultancy on Cyber Security and Information Security concepts and Cloud Security and tools to overseas/corporate clients as well as internal staff
- Having ample experience in Penetration Testing, Ethical Hacking ETC., cloud security.
Education
Bachelor of Arts - English
University of Madras
Skills
Security Assessments and Penetration Testing: Vulnerability scanning, Penetration testing, Risk assessments, Threat modeling
Security Tools and Technologies: SIEM, IDS/IPS, Firewalls, Encryption, Malware analysis
Security Architecture and Design: Secure system design, Network security, Cloud security, Identity and access management (IAM)
Compliance and Regulations: HIPAA, PCI DSS, GDPR, SOC 2
Incident Response and Management: Incident detection, investigation, containment, eradication, and recovery practices
Cloud Security: AWS, Azure, Cloud IAM, Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP)
Security Assessments and Penetration Testing: Cloud-specific vulnerability assessments, Cloud penetration testing, Risk assessments, Threat modeling
Security Architecture and Design: Secure cloud architecture principles, Cloud infrastructure security, Identity and access management (IAM) in the cloud
Compliance and Regulations: Cloud-specific compliance frameworks (eg, AWS SOC 2, Azure GDPR compliance), HIPAA, PCI DSS
Communication and Collaboration: Excellent written and verbal communication skills, ability to work effectively with diverse teams
Certification
CISSP - ISSAP
Pentest Experience
Conducted black-box, white-box, and grey-box penetration testing engagements for web and mobile applications. Identified and exploited critical vulnerabilities, including SQL injection, cross-site scripting (XSS), and insecure direct object references (IDOR). Analyzed test results, documented vulnerabilities, and provided detailed remediation recommendations. Collaborated with developers to fix vulnerabilities and improve security posture. Stayed up-to-date on the latest security threats and vulnerabilities.
Projects
Delivering Security Seminars and Consultancy All in house and on site Training's and Seminars to different government and non-government organizations around the globe. Awarded as Best Instructor for EC-Council Year 2020. Member of ISAC.(Indian Sharing and analysis Center)
Additional Information
- Conducted cloud-specific security assessments to identify vulnerabilities and recommend remediation strategies, leveraging CCSP knowledge.
Designed and implemented robust cloud security controls aligned with CCSP best practices and compliance requirements (e.g., data encryption, IAM configuration).
Provided expert guidance on securing cloud workloads and platforms (e.g., containers, serverless functions), demonstrating CCSP expertise.
Collaborated with internal teams (e.g., cloud architects, developers, operations) to integrate security considerations into cloud deployments. Developed and delivered cloud security awareness training sessions to educate employees on cloud-specific threats and best practices.
Monitored and maintained cloud security posture, proactively addressing potential security issues and staying updated on emerging threats.
[Quantifiable achievements specific to the role, e.g., "Reduced cloud security incidents by 30% through improved cloud workload protection - Conducted comprehensive security assessments to identify vulnerabilities and recommend mitigation strategies, aligning with CISSP Common Body of Knowledge (CBK) domains.
Designed and implemented robust security controls to protect against advanced threats, adhering to industry best practices and compliance regulations.
Provided expert guidance on cloud security posture, leveraging CISSP knowledge to secure cloud environments (e.g., AWS, Azure, GCP).
Collaborated with internal teams (e.g., IT, development, operations) to integrate security considerations throughout the development lifecycle.
Developed and delivered security awareness training sessions to educate employees on cyber threats and best practices.
Maintained a deep understanding of the evolving cyber threat landscape, staying current through industry resources and continuous learning.
[Quantifiable achievements specific to the role, e.g., "Identified and patched critical vulnerabilities that prevented a potential data breach."]
[Additional responsibilities and accomplishments, if applicable]
Timeline
Senior Corporate Trainer/Security Consultant
RPS Consulting Pvt Ltd
09.2019 - Current
Corporate Trainer and Consultant
Koenig Solutions Ltd.
04.2017 - 08.2019
Bachelor of Arts - English
University of Madras