Microsoft 365 Security (MDE, MDI, MDO, MCAS))
Sandipan Chaudhuri
Incident Response Manager, Unilever
Ahmedabad
Summary
- Military veteran and Information Security professional with over 12 years of experience in Cyber Security with a focus on application security, threat detection and incident response.
- I bring extensive experience in developing and implementing robust security strategies to safeguard digital assets and infrastructure. With a strong background in cybersecurity, I excel in leading cross-functional teams to design, deploy, and maintain cutting-edge security solutions that mitigate risks and ensure compliance with industry standards and regulations.
- My expertise lies in conducting comprehensive risk assessments, identifying vulnerabilities, and orchestrating proactive measures to fortify defenses against emerging threats. I am adept at crafting tailored security architectures and frameworks, leveraging advanced technologies such as encryption, multi-factor authentication, and intrusion detection systems.
- My leadership extends to fostering a culture of security awareness and continuous improvement, empowering teams through mentorship, training, and knowledge sharing initiatives. I collaborate closely with stakeholders to align security initiatives with business objectives, drive innovation, and deliver measurable results.
- In utilizing the Microsoft Defender suite, I have orchestrated the deployment and optimization of advanced threat protection capabilities, including endpoint detection and response (EDR), threat intelligence, and behavioral analytics. Leveraging these tools, I have effectively detected and mitigated sophisticated cyber threats, bolstering the resilience of organizational systems and data
- Skilled in utilizing SIEM tools, packet captures, and endpoint logs for intrusion event investigation.
- Familiar with cloud computing and associated security threats. Experienced in scripting languages, including Python, Powershell, and KQL.
- Excellent analytical, problem-solving, and communication skills.
- Proven ability to work effectively in high-pressure situations and collaborate in a team environment.
Overview
11
11
years of professional experience
5
5
years of post-secondary education
6
6
Certifications
3
3
Languages
Work History
Incident Response Manager
Unilever
Bangalore, India
09.2022 - Current
- Lead Global Cyber Security Incident Response for Unilever.
- Utilized SIEM solutions to monitor and correlate security events, reducing response time by 10 %.
- Leading efforts to detect, analyze, and respond to security incidents and intrusions across Unilever's network, endpoints, and cloud services.
- Conducted in-depth investigations by analyzing packet captures, file artifacts, and endpoint logs to identify indicators of compromise and determine root causes.
- Collaborated with cross-functional teams to track, discover, and mitigate security incidents, achieving incident closure 5 % faster.
- Providing performance and management reporting.
- Develop and supervise work schedules to ensure proper staffing levels are maintained.
- Establish performance goals and priorities.
- Actively participate in Proof of Concept exercises for acquisition of new SOC tools and technologies.
- Actively participate in hiring of new team members.
- Prepare Incident Reports for high severity incidents for Cyber Security Leadership team.
- Perform supervisory, managerial and governance responsibilities.
- Developed security metrics and technical analysis to give insight into performance and trends.
- Created policies and procedures for emerging security technologies and proposals.
Cyber Emergency Response Team
Indian Army
New Delhi, India
08.2018 - 09.2022
- Lead teams involved in vulnerability assessment and penetration testing of all Indian Army Web applications hosted over Internet as well as on Indian Army air gapped private network in order to secure digital footprint of Indian Army.
- Developed Security Assessment Plan, Rules of Engagement, Daily Briefs and Reports during VA/ PT.
- Performed risk and vulnerability assessments of Indian Army Android applications and provided results and recommendations to senior management.
- Lead teams for end-to-end Incident Response function and engagement. Implemented security baselines for frontline fighting units and succeeded with Zero Major cyber incidents throughout year 2021-22.
- Validated and verified system security requirements definitions and analyzed system security designs of Operational Information Systems for Artillery fire plan coordination and Army Air Defense fire control and reporting which enabled secure deployment of these systems.
- Performed and reviewed technical security assessments of War gaming simulators developed by War gaming Development Center of Indian Army to identify points of vulnerability and non-compliance with established information security standards and recommend mitigation strategies.
- Conducted security audits to identify vulnerabilities of IT assets held at various Indian Army Directorates and Command Headquarters. As part of audit teams reviewed violations of computer security procedures and developed mitigation plans.
- Accomplished formulation, implementation, review and maintenance of various IT and Cyber Security policies and standards for Indian Army such as Army Cyber Security Policy, Indian Army Data Governance Policy and Policy for Whitelisting of Software in Indian Army.
- Counseled senior-level management on current privacy and security trends and recommendations to mitigate risk.
- Coordinating with third party vendors to ensure Service Level Agreements (SLAs).
- Aided regional security functions and coordinated with CERT, India for organizational security requirements.
- Developed and conducted security awareness & training program.
Instructor Faculty of Radar and Electronics
Army Air Defense College
Gopalpur Orissa, India
05.2016 - 08.2018
- Trained students on various topics related to Army air Defense Radars and Surface to Air Guided Weapon systems.
- Learned new skills and applied to daily tasks to improve operational efficiency and productivity.
- Developed team communications and information for meetings.
- Undertook projects to improve existing and procure new training aids for students.
- Remained current with training and sought new training opportunities to further personal growth.
Millitary Service
Indian Army
Classified
09.2012 - 03.2016
- Oversaw teams planning, implementing and realigning field and base operational strategies.
- Managed team of employees, overseeing hiring, training, and professional growth of employees.
- Resolved conflicts and negotiated mutually beneficial agreements between parties.
- Carried out day-to-day duties accurately and efficiently.
- Integrated intelligence activities into other military operations, plans and programs.
- Handled administrative requirements, maintained records and submitted operational reports.
- Conducted and oversaw interrogations, briefings and debriefings.
Education
Diploma - Defense Management
Devi Ahilya Vishwavidyalaya
Indore 01.2018 - 03.2018
Master of Science - Military Technologies
Berhampur University
Orissa 11.2016 - 11.2017
Post Graduate Diploma - Defense Management And Strategic Studies
University of Madras
Chennai 12.2011 - 09.2012
Bachelor of Technology - Information Technology
West Bengal University of Technology
Kolkata 11.2008 - 11.2011
Skills
Incident Response Management
Creation of Cyber Incident Summaries for Leadership
Stakeholder Management
SIEM use case development and fine tuning
Leveraging MITRE ATT&CK® and incident correlation
Microsoft 365 Security
Problem-Solving
Analytical and Critical Thinking
Written Communication
Decision-Making
Planning and Coordination
Certification
(ISC)2 Certified Information Systems Security Professional (CISSP)
Accomplishments
- Won the Capture The Flag event at SANS Secure India 2018 Bangalore Event.
- Part of the Indian Army team that won the Capture the flag event at c0c0n 2019 International Cybersecurity and Policing Conference.
- Awarded Best Student and Best Project during Advanced Cyber Security Course Serial 06 at Military College of Telecommunication Engineering in 2016.
- Reported multiple vulnerabilities in the Sandes Android App developed by National Informatics Centre.
- Reported vulnerability in eOffice developed by National Informatics Centre to CERT India.
- Played a pivotal role in successfully passing the various skill evaluation tests and completing the procedure of getting the Application Testing lab of Indian Army empanelled with the National CERT.
Software
IBM QRadar SOAR
Cofense
Vectra NDR
Crowdstrike Falcon
Cofense
Abnormal Email Security
Qualys
Microsoft Sentinel
IIBM QRadar SOAR
Acunetix Web Application Security
Burp Suite
Fortify WebInspect
Metasploit
Interests
Cooking
Computer Gaming
Travelling
Additional Information
Married
Father of twin daughters
Timeline
Microsoft Certified Azure Fundamentals
05-2023
Incident Response Manager
Unilever
09.2022 - Current
OneTrust Certified GRC Professional
06-2022
Cyber Emergency Response Team
Indian Army
08.2018 - 09.2022
Diploma - Defense Management
Devi Ahilya Vishwavidyalaya
01.2018 - 03.2018
Master of Science - Military Technologies
Berhampur University
11.2016 - 11.2017
Instructor Faculty of Radar and Electronics
Army Air Defense College
05.2016 - 08.2018
Millitary Service
Indian Army
09.2012 - 03.2016
Post Graduate Diploma - Defense Management And Strategic Studies
University of Madras
12.2011 - 09.2012
Bachelor of Technology - Information Technology
West Bengal University of Technology
11.2008 - 11.2011