Summary
Overview
Work History
Education
Skills
Certification
Software
Timeline
Hi, I’m

NITHYANANDAN CK

Manager Information Security
Bengaluru
NITHYANANDAN CK

Summary

Dynamic Information Security Manager with 8 years of expertise in cybersecurity strategy, risk management, regulatory compliance, and incident response, specialising in cloud security, TPRM, and audit success.

Overview

10
years of professional experience
8
years of post-secondary education
3
Certifications

Work History

Saviynt Pvt Ltd
Bengaluru

Information Security Engineer
05.2021 - Current

Job overview

  • Represented company's technical security interests to partners to provide bi-directional flow of technical information and best practices in information security.
  • Good knowledge on Saviynt IGA and CPAM.
  • Performed and reviewed technical security assessments of infrastructure and application to identify points of vulnerability and non-compliance with established information security standards and recommend mitigation strategies.
  • Performed risk and vulnerability assessments and provided results and recommendations to senior management.
  • Developed, implemented and documented security programs and policies and monitored compliance across departments.
  • Created policies and procedures for emerging security technologies and proposals.
  • Accomplishments Successful closure of “SOC1 Type2, SOC2 Type2, Fed Ramp, IRAP” audits for Saviynt.
  • Implemented Sophos central monitoring with AWS S3 for log monitoring and retention.
  • Implements security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns and advances College business objectives.
  • Evaluates risks and develops security standards, procedures, and controls to manage risks. Improves companies security positioning through process improvement, policy, automation, and continuous evolution of capabilities.
  • Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts.
  • Defines and documents business process responsibilities and ownership of controls in GRC tool. Schedules regular assessments and testing of effectiveness and efficiency of controls and creates GRC reports.
  • Updates security controls and provides support to all stakeholders on security controls covering internal assessments, regulations, protecting Personally Identifying Information (PII) data, and Payment Card Industry Data Security Standards (PCI DSS).
  • Performs and investigates internal and external information security risk and exceptions assessments. Assess incidents, vulnerability management, scans, patching status, secure baselines, penetration test result, phishing, and social engineering tests and attacks.
  • Documents and reports control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities.
  • Ensuring that organization’s data and infrastructure are protected by enabling appropriate security controls.
  • Routinely conduct penetration testing .
  • Taking active role in change management process.
  • Daily administrative tasks, reporting, and communication with relevant departments in organization.
  • Planning, implementing, managing, monitoring, and upgrading security measures for protection of organization’s data, systems, and networks

Ubona Technologies Pvt Ltd

Sr. System Engineer, Cloud and Security Operations
08.2018 - 05.2021

Job overview

  • Responsible for managing audit and compliance infrastructure security and Cloud security.
  • Successful closure of “PCI DSS/UPI/ISO 27001 ISMS” and UPI for Ubona and Ultracash. Data storage localization & Infosec Audit for multiple BFSI clients.
  • Collaboration with security architects in developing cloud security frameworks for Enterprise.
  • Designed and implemented complete Data center infrastructure setup
  • Designed, integrated and maintained consolidated network services (switches to wireless networks and network security servers)
  • 2X reduction in AWS cost and Data center cost by reducing resource utilization and downgrading rack
  • Hands on expertise:
  • EXPERIENCE ON AWS CLOUD – For Ubona & Ultracash, Managed entire IaaS for Ubona and Ultracash on AWS cloud
  • Multiple AWS cloud security services Reviewing project requirements and provide solutions based on AWS best practices.
  • Implementation and Deployment of resources on Amazon AWS
  • Establishing site-to-site vpn connection on AWS
  • Setting up vpc on AWS and launching instances AWS IAM, EC2, S3, SNS, SES, VPC, RDS, CloudWatch, CloudTrails, Guardduty, Trusted advisor, Security hub.
  • SECURITY - Cloud security setup and infrastructure perimeter setup
  • Physical and Cloud security Application of Data Loss Prevention principles in daily cloud security Creation of infosec evidence and closing it on time for starting service with clients
  • Leading large scale enterprise wide programs to deploy and manage various cloud security appliances and agents Examine current cloud security practices and identify key risks, then execute programs to address them Cloud usage strategy, monitoring, alerting, reporting, and blocking OS hardening based CIS benchmark
  • Expert knowledge on VAPT and mitigation.
  • Performed root cause analysis to provide resolutions for production issues.

DATA CENTER MANAGEMENT

Job overview

  • PRI & SIP Configuration for call center and dialer setup
  • Troubleshoot, resolve and recommend improvement for systems network and security problems at advanced level across multiple/converged technology solutions services and platforms
  • Troubleshooting & resolution of existing network failures Remotely managing client Hosting servers and application infrastructure platforms
  • Installing, securing, hardening, custom-configuring, and maintaining various Linux hosts
  • Directly interacting and providing support to external clients
  • Leading communications on outages and resolving client related issues
  • Close coordination with Programmer/Analysts to deliver timely and cost-effective solutions
  • Integration of new technologies into existing data center Analyzing & resolving production server issues
  • Server performance management - Monitoring, resolve faults, perform tuning, backup and recovery procedures, space utilization and installation of patches and upgrades
  • Standardizing, automating, and detailed documentation of both new and existing systems Setting up ELB based requirements, backup and archival process MYSQL Data base configuration and monitoring
  • Provide detailed cost estimation for project implementation for telecom client
  • Managing DNS and SSL offloading
  • OS AND MONITORING TOOLS Amazon Linux AMI, Centos, Windows, MYSQL Nagios, Zabbix, CloudWatch.

FIREWALL MANAGEMENT

Job overview

  • Cisco ASA/Fortinet firewall configuration and monitoring Building complete network infrastructure, including switches and routers Implementing network security based on requirement Trouble shoot network related issues in production Excellent knowledge on basic networking, routing and Network load balancing.

HARMAN CONNECTED SERVICE

Cloud support Engineer
04.2018 - 08.2018

Job overview

  • Used metrics to monitor application and infrastructure performance.
  • Azure network support
  • Broke down and evaluated user problems, using test scripts, personal expertise and probing questions.
  • Solve client issues via email and call.
  • Followed up with clients to verify optimal customer satisfaction following support engagement and problem resolution.
  • Performed network security design and integration duties.
  • Improved overall user experience through support, training, troubleshooting, improvements and communication of system changes.

PRODEVANS

Solution architect
03.2017 - 04.2018

Job overview

  • Defined cloud architecture for both hybrid and non-hybrid cloud solutions.
  • Identified and remediated single points of failure and security risks.
  • Displayed sound understanding of standard networking protocols, virtual networks and load balancing.
  • Provided 2nd and 3rd level technical support and troubleshooting to internal and external clients.
  • Built and maintained network infrastructure consisting of Windows, Linux and virtual products.

FLIPKART

System Engineer
01.2015 - 01.2017

Job overview

  • Maintained inventory of installed desktop hardware and software components to keep records accurate and updated.
  • Configured hardware, devices and software to set up work stations for employees.
  • Removed malware, ransomware and other threats from laptops and desktop systems.
  • Monitored system performance to maintain system integrity.
  • Documented and updated known fixes in knowledge base for future reference.
  • Monitored systems in operation and quickly troubleshot errors.

HAL
Bengaluru

Trainee Engineer
01.2009 - 01.2010

Job overview

  • Participated in installation of vehicle instrumentation and subsequent de-instrumentation.
  • Recorded and interpreted data on parts, components and machinery during field tests.

Ubona
Bangalore

Information Security Manager
02.2023 - Current

Job overview

  • Self-motivated, with a strong sense of personal responsibility.
  • Proven ability to learn quickly and adapt to new situations.
  • Excellent communication skills, both verbal and written.
  • Skilled at working independently and collaboratively in a team environment.
  • Worked well in a team setting, providing support and guidance.
  • Passionate about learning and committed to continual improvement.
  • Managed time efficiently in order to complete all tasks within deadlines.
  • Strengthened communication skills through regular interactions with others.
  • Resolved problems, improved operations and provided exceptional service.
  • Proved successful working within tight deadlines and a fast-paced environment.

Education

VTU
Bengaluru

Bachelor of Engineering from Electronics & Communication
08.2010 - 01.2015

University Overview

Hindustan Electronics Academy
Bengaluru, KA

Diploma from Electronics and communication
02.2005 - 01.2009

University Overview

Skills

    Security regulations compliance

Patching

Penetration testing

Cloud implementation

Audit Compliance

  • Security infrastructure architecture
  • Security vulnerability assessment
  • Security awareness
  • Data security

Linux

Network security oversight

Certification

Red hat Certified System Administrator – RHCSA (EX200)

Software

  • Qualys Vulnerability Mnagement
  • TrendMicro Deep Security
  • Knowbe4 Awareness training
  • Nagios for infra monitoring
  • Sophos Centrelized monitoring
  • Mcafee Endpoint security
  • Sonatype SCA
  • Veracode SAST
  • SIEM

Timeline

Information Security Manager
Ubona
02.2023 - Current
Information Security Engineer
Saviynt Pvt Ltd
05.2021 - Current
Sr. System Engineer, Cloud and Security Operations
Ubona Technologies Pvt Ltd
08.2018 - 05.2021
Cloud support Engineer
HARMAN CONNECTED SERVICE
04.2018 - 08.2018
Solution architect
PRODEVANS
03.2017 - 04.2018
System Engineer
FLIPKART
01.2015 - 01.2017
VTU
Bachelor of Engineering from Electronics & Communication
08.2010 - 01.2015
Trainee Engineer
HAL
01.2009 - 01.2010
Hindustan Electronics Academy
Diploma from Electronics and communication
02.2005 - 01.2009
DATA CENTER MANAGEMENT
FIREWALL MANAGEMENT

Similar Profiles

CREATE PROFILE
NITHYANANDAN CKManager Information Security