Rajeshkumar D
Cyber Security Executive
Chennai
Summary
A seasoned Cybersecurity executive with 20+ years of expertise in Security Governance, Risk management, Compliance ,and Emerging technologies. Proven ability to align security initiatives with business goals to mitigate risks and drive innovation.
Overview
22
22
years of professional experience
7
7
Certifications
Work History
DGM
HCL Tech
08.2024 - Current
- Effectively managed stakeholder expectations through regular communication and reporting, achieving project goal alignment and a 95% stakeholder satisfaction rate.
- Delivered strategic Risk & Compliance consultancy by conducting 100+ assessments annually, resolving 95% of CAPAs and exceptions, mitigating critical risks, and achieving 100% audit readiness.
- Led and mentored a team of 50+ cybersecurity professionals, driving 100% on-time project delivery and enhancing team efficiency by 25%.
- Contributed to Risk Management Boards and governance frameworks and implement policies, standards, and procedures in compliance with legal and regulatory requirements.
- Conducted comprehensive risk core analyses across IT infrastructure, identifying and prioritizing vulnerabilities, resulting in a 30% reduction in critical risks within six months.
- Directed risk-based application security reviews leveraging OWASP Top 10, driving remediation efforts and enhancing overall application resilience.
- Strengthened internal control frameworks through ISO 27001, RCSA, and NIST-based assessments - closing 95% of high-risk findings and reducing audit exceptions by 40%.
- Delivered executive-level Cybersecurity dashboards and risk heat maps, enabling informed decision-making and strategic alignment at the CxO level.
Cyber Security Executive
HCL Tech
07.2011 - 06.2024
- Successfully led a team to improve operational efficiency by 20% by leading a team to execute deliverables within project timelines.
- Cultivated strong client relationships and managed stakeholder expectations, achieving a 95% client satisfaction rate, through regular communication, requirement gathering, and timely updates.
- Optimized technology risk controls, achieving 95%+ audit compliance across internal and external assessments.
- Presented risk posture and compliance strategy to executive leadership, ensuring board alignment with security initiatives.
- Oversaw application security assessments aligned with the OWASP Top 10 framework, guiding remediation planning and ensuring adherence to secure coding standards.
- Collaborated with cross-functional teams to implement remediation plans based on risk scores, achieving a 95% closure rate of high-risk vulnerabilities within defined SLAs.
- Achieved 100% audit readiness by coordinating inspection processes, managing CAPA statuses for 95% resolution, and implementing robust compliance frameworks ISO 27001.
- Defined the future state of security, conducted thorough reviews and gap analyses between current and future states, and spearheaded initiatives to uplift measures and controls in line with the organization's visionary ISO:27001 Compliance goals.
- Designed and implemented technology controls, reducing security incident rates by 25% and enhancing system resilience.
- Successfully reduced audit findings by 40% through enhanced control implementation and RCSA initiatives.
- Managed enterprise-wide security visibility through SIEM (Splunk) and enforced access control policies via CyberArk, delivering risk posture insights to executive leadership.
- Provided risk heat maps and Cybersecurity metrics to senior leadership, enhancing governance oversight and enabling data-driven security investments.
- Conducted regular access reviews and automated provisioning/de-provisioning processes, reducing unauthorized access risks by 50% ensuring 100% compliance with regulatory standards.
Team Lead-Networks
Coronis Ajuba Solution
08.2009 - 06.2011
- Functioning as the lead for the shift, overseeing a team of six members and efficiently resolving incident tickets as per the indicated SLA.
- Oversaw vulnerability assessment and penetration testing (VA/PT) for Fortune 50/100 clients, driving actionable insights that reduced critical vulnerabilities by 30%.
- Facilitated communication with diverse business stakeholders for BCP/DR, completing BIAs, collating BIA outcomes, and aligning with supporting functions, while also overseeing and managing drills for business verticals/units, showcasing expertise in Project Management.
- Executed RCSA assessments quarterly, uncovering and addressing 40+ control gaps to enhance audit readiness.
- Applied and executed internal security and technical controls tailored to customers' business requirements, showcasing proficiency in Risk Management and IT Consulting, emphasizing NIST, ISO:27001 Compliance.
- Spearheaded the revamping of organizational risk management policies, aligning them meticulously with ISO:27001 compliance measures.
- Identified and reported IT risks (Internal/external), proactively identifying mitigating activities to manage the risk profile effectively within the context of Risk Management and Information Security.
- Demonstrated hands-on expertise in SIEM tools for security event monitoring and in managing privileged access using CyberArk tool.
Senior IT Analyst
03.2003 - 07.2009
- Directed and supervised team members in managing critical IT operations, including LAN/WAN and information security, across two data centers spanning geographically diverse locations, ensuring seamless connectivity and security compliance.
- Led the organization's efforts to achieve and maintain ISO27001 compliance by developing and implementing robust policies, standards, and procedures across IT and business units.
- Faced internal and external audit engagements, supporting remediation planning, evidencing control effectiveness, and sustaining regulatory compliance across critical portfolios.
- Ensured compliance with ISO27001 standards by integrating platform updates and addressing audit findings.
- Monitored the organization's data flow, promptly reporting any capacity planning bottlenecks to senior management, emphasizing a proactive approach to Project Management.
- Reviewed logs for suspicious or malicious activity, promptly mitigating potential risks and maintaining information security protocols.
- Planned and scheduled infrastructure changes based on audit findings, ensuring 100% compliance with HIPAA requirement.
- Managed Identity and Access through Active Directory services, Manage Engine Password Manager, and Cyber Ark (PAM) tools, enhancing access control measures.
Education
EPBM -
IIM-Calcutta
MBA - Systems
University Of Madras
B.E - EEE
University Of Madras
Skills
Delivery management
Stakeholder Management
Risk Management
Controls Management
Vulnerability Management
Security Governance
Audit & Assurance
Project Management
Compliance Management
Certification
CISSP-ISC2
Timeline
DGM
HCL Tech
08.2024 - Current
Cyber Security Executive
HCL Tech
07.2011 - 06.2024
Team Lead-Networks
Coronis Ajuba Solution
08.2009 - 06.2011
Senior IT Analyst
03.2003 - 07.2009
MBA - Systems
University Of Madras
B.E - EEE
University Of Madras
EPBM -
IIM-Calcutta