Siddhesh Mane
Mumbai
Summary
Security Consultant with 3 years and 3 months of experience in Security Operations Center (SOC), IT General Controls (ITGC), Risk Assessment, and Incident Management. Proficient in monitoring security events, conducting risk analyses, and mitigating threats. Currently pursuing ISO 27001 Lead Auditor and CISA certifications. Seeking opportunities in SOC, Information Security, ITGRC, and Third-Party Risk Management (TPRM).
Overview
4
4
years of professional experience
1
1
Certification
Work History
Senior Information Security Engineer
Nanagia Andersen LLP
01.2023 - Current
- Experienced in Technology Risk Assurance, IT Audit, and Risk Assessment with strong knowledge of ISO 27001, NIST, SOC 2, and regulatory frameworks relevant to the BFSI sector (RBI, SEBI, IRDAI).
- Conducted IT General Controls (ITGC) testing, including User Access Management, Change Management, and System Operations to support compliance and mitigate risks.
- Performed end-to-end IT system audits and technology risk assessments across infrastructure and application environments.
- Conducted ISO 27001 audits and assisted in SOC 2 audit engagements, supporting clients in meeting compliance requirements and closing control gaps.
- Reviewed Incident Management processes, Business Controls, and Backup & Restoration procedures to enhance operational resilience and data integrity.
- Monitored internal control systems to ensure appropriate access provisioning and enforcement of security clearances.
- Developed and implemented information security policies, and assessed organization-wide training programs to ensure policy adherence.
- Led and facilitated information security and business continuity awareness sessions across the organization
- Led security compliance due diligence and audits for third-party vendors and products, enhancing third-party risk management and compliance posture.
Junior SOC Analyst
Atos
01.2022 - 01.2023
- Monitor, analyse, and respond to security events originating from a variety of SIEM (Security Information and Event Management) data sources.
- Conduct in-depth analysis and investigations of cyber events from different types of log sources such as email, firewall, endpoint, IPS/IDS, and various network devices within an enterprise SIEM and SOAR environment.
- Maintain accurate documentation of security incidents, actions taken, and lessons learned for future reference.
- Utilize Vulnerability Analysis tools such as NMAP and Nessus to perform security testing.
- Streamlined proactive monitoring and investigation of security incidents.
- Perform static malware analysis using open-source tools in an isolated sandbox environment.
- Triage security alerts from a variety of sources including network devices, servers, endpoints, and threat intelligence services.
Education
Bachelor of Engineering - Electronics Engineering
Vidyalankar Institute of Technology
01.2020
Diploma - Electronics & Tele-communication
VIDYALANKAR POLYTECHNIC
01.2017
Skills
- Security Information and Event Management tools(Q Radar, ArcSight, LogRhythm)
- Incident detection, analysis and response
- IT General Controls (ITGC)
- ISO 27001 Auditing & Implementation
- SOC 2 Audit Support
- Risk Assessment & Risk Management
- IT System Audit
- Control Gap Analysis & Remediation
- Business Continuity & Disaster Recovery (BC/DR)
- Data Backup & Restoration Review
- Identity and Access Management (IAM)
- Change Management Review
- Information Security Policy Development
- Vendor Risk Management
Certification
- Cisco Certified Network Associate
- Certified Ethical Hacker (CEHv12)
- CompTIA Security +
- AWS Associate Solution Architect
- Advance Certification in CyberSecurity from IIT Guwahati
LANGUAGES
English
Hindi
Marathi
Accomplishments
Round of Applause Award – BrowserStack
Description: Recognized by the leadership team for consistent positivity, outstanding support, and impactful daily contributions to team success.
Timeline
Senior Information Security Engineer
Nanagia Andersen LLP
01.2023 - Current
Junior SOC Analyst
Atos
01.2022 - 01.2023
Diploma - Electronics & Tele-communication
VIDYALANKAR POLYTECHNIC
Bachelor of Engineering - Electronics Engineering
Vidyalankar Institute of Technology
Similar Profiles
Jasmine KaurJasmine Kaur
Consultant at Nangia Andersen LLPConsultant at Nangia Andersen LLP
Nishank Nishank null
SENIOR ASSOCIATE - MARKETING COMMUNICATION at Nangia Andersen LLPSENIOR ASSOCIATE - MARKETING COMMUNICATION at Nangia Andersen LLP
Arjun PunchappadyArjun Punchappady
Manager - Government & Public Sector at Nangia Andersen LLPManager - Government & Public Sector at Nangia Andersen LLP
RANJEET KUMARRANJEET KUMAR
General Manager – Strategy & Growth at McDONALD’S INDIA (HRPL)General Manager – Strategy & Growth at McDONALD’S INDIA (HRPL)
Karuna GokarnKaruna Gokarn
In-Charge Principal at St. Xavier’s College, Mumbai (Empowered Autonomous Institute)In-Charge Principal at St. Xavier’s College, Mumbai (Empowered Autonomous Institute)