Summary
Overview
Work History
Education
Skills
Websites
Locations
Core Expertise
Languages
Timeline
Generic
Sourabh Abrol

Sourabh Abrol

Gurugram

Summary

Information Security & Cloud Leader with 12+ years of experience securing enterprise environments across Azure, AWS, Kubernetes, and hybrid infrastructure. I specialize in designing Zero Trust architectures and preparing organizations for rigorous compliance standards, including FedRAMP (Moderate to High) and TISAX. Currently leading security initiatives, I have a proven track record of delivering SOC audits with zero exceptions and driving the readiness phase for complex certifications. As an AI Security Advisory Board member, I define corporate security postures for enterprise AI adoption and lead Red Teaming initiatives to secure in-house LLMs and prevent data leakage.

Overview

13
13
years of professional experience
2013
2013
years of post-secondary education

Work History

Manager - Information Security & Cloud Infrastructure

Apex Analytix Pvt Ltd
10.2022 - Current
  • Direct enterprise cloud security architecture and infrastructure protection initiatives, serving as the Level-4 escalation authority for critical security incidents.
  • Appointed to the AI Security Advisory Board, defining the corporate security posture for enterprise AI adoption. Formed and directed an internal Red Team to conduct adversarial testing on the in-house AI chatbot, successfully mitigating data leakage risks and ensuring LLM security compliance.
  • Architected enterprise-wide secrets management by implementing Keeper Security for on-premise infrastructure and Azure Key Vault for Azure AKS workloads. Enforced strict code compliance in Kubernetes pipelines to ensure zero hardcoded values or credentials.
  • Spearheaded FedRAMP (Moderate to High) certification initiatives by conducting deep-dive gap analyses of the current cloud environment to determine the compliance posture and map required remediation controls.
  • Directed Governance, Risk, and Compliance (GRC) programs, orchestrating the roadmap for TISAX Level 2 (AL2) assessments and delivering SOC audits with zero exceptions.
  • Designed Azure Zero Trust architectures, implementing secure landing zones and strictly enforcing the Principle of Least Privilege (PoLP) via Microsoft Entra ID and custom RBAC roles.
  • Expanded multi-cloud security posture by managing AWS Route 53 for secure DNS routing and configuring AWS CloudTrail integration with S3 buckets to ensure immutable, centralized audit logging for compliance tracking.
  • Engineered and enforced granular Conditional Access Policies via Entra ID, implementing geo-location restrictions, securing Bring Your Own Device (BYOD) endpoints, and applying strict session controls (e.g., blocking downloads and copy/paste functions on unmanaged devices).
  • Architected and deployed Azure Front Door integrated with Web Application Firewall (WAF) and Azure DDoS Protection, safeguarding enterprise web applications against Layer 7 exploits (OWASP Top 10) and volumetric attacks.
  • Deployed and managed SIEM and threat detection capabilities using Azure Sentinel for automated incident response, fully integrated with Microsoft Defender for Cloud and Microsoft Purview.
  • Engineered robust DevSecOps pipelines by integrating SAST (SonarQube) and DAST (Tenable.io), while leading enterprise-wide vulnerability scanning and remediation using Tenable.
  • Executed comprehensive Third-Party Risk Assessments (TPRA) to evaluate vendor security postures, enforce data protection standards, and mitigate supply chain vulnerabilities.
  • Engineered advanced security observability logging pipelines using OpenTelemetry and Seq to optimize log processing for threat detection.

VMware & VDI Specialist (Infrastructure Security Focus)

ALLPS Digital Pvt Ltd
11.2021 - 10.2022
  • Led the secure migration of 2000+ users from Citrix to VMware Horizon across EU locations, prioritizing data integrity and minimal downtime.
  • Designed a highly available and secure VDI architecture, integrating robust disaster recovery and network security configurations.
  • Enforced strict access controls and secured user profiles using Dynamic Environment Manager (DEM) during the enterprise-wide transition.
  • Conducted risk assessments and developed mitigation strategies prior to large-scale infrastructure changes.

Enterprise Solution Specialist II

IQOR India Pvt Ltd
02.2017 - 11.2021
  • Secured and managed a massive-scale enterprise environment of 40,000+ Virtual Machines utilizing VMware Horizon.
  • Engineered secure VDI deployment models (Instant Clone, Linked Clone), ensuring isolated and hardened desktop environments for end-users.
  • Utilized VROPS Manager for continuous monitoring, anomaly detection, and capacity planning to maintain a secure and optimized infrastructure.
  • Maintained strict version control and security patching during Horizon and ESXi server upgrades.

Senior Operations Analyst

IBM India Pvt LTD
06.2015 - 02.2017
  • Managed and secured 1000+ Virtual Machines, maintaining hardened VDI master images and secure client application deployments.
  • Implemented VMware User Environment Manager (UEM) to enforce secure user profile policies across the environment.

Operations Analyst

IBM India Pvt Ltd
08.2014 - 06.2015
  • Administered Windows Server environments, enforcing security baselines through Active Directory and strict Group Policy Objects (GPOs).
  • Deployed and troubleshot Symantec endpoint protection across enterprise servers to defend against malware and intrusions.

Associate Analyst

Global Logic Inc
03.2013 - 08.2014
  • Handled sensitive security operations including BitLocker recovery key requests, data loss prevention, and endpoint provisioning.
  • Managed 300+ workstations, utilizing MS SCCM for secure software distribution and patch management.

Education

Bachelor of Science - Electronics & Communications Engineering

Chandigarh Group of Colleges
Mohali

Skills

  • AI Security Advisory
  • Red Teaming
  • Data Leak Prevention (DLP)
  • FedRAMP Gap Analysis
  • TISAX Self-Assessment
  • SOC 2
  • SOC 1
  • NIST 800-53
  • Azure secure landing zones
  • AWS Route 53 DNS management
  • Identity-centric perimeters
  • Azure Key Vault
  • Keeper Security
  • Azure AKS security
  • Kubernetes hardening
  • Runtime protection
  • Enforcing Principle of Least Privilege (PoLP)
  • Entra ID
  • Geo-fencing
  • BYOD controls
  • Role-Based Access Control (RBAC)
  • Azure Front Door
  • Web Application Firewall (WAF)
  • Azure DDoS Protection
  • Azure Sentinel
  • AWS CloudTrail integration
  • Automated incident response
  • SAST (SonarQube) integration
  • DAST (Tenableio) integration
  • Secure CI/CD
  • Eliminating hardcoded credentials

Websites

Locations

  • Gurugram, Haryana, India
  • Jammu, Jammu and Kashmir, India

Core Expertise

  • AI & LLM Security: AI Security Advisory, Red Teaming, Data Leak Prevention (DLP) for in-house Chatbots.
  • Compliance Readiness: FedRAMP Gap Analysis (Moderate & High), TISAX Self-Assessment & AL2 Planning, SOC 2, SOC 1, NIST 800-53.
  • Multi-Cloud Security & Zero Trust: Azure secure landing zones, AWS Route 53 DNS management, and identity-centric perimeters.
  • Secrets Management & Containers: Azure Key Vault, Keeper Security, Azure AKS security, Kubernetes hardening, and runtime protection.
  • Identity & Access Management (IAM): Enforcing Principle of Least Privilege (PoLP), Entra ID (Geo-fencing, BYOD controls), and Role-Based Access Control (RBAC).
  • Network & App Security: Azure Front Door, Web Application Firewall (WAF), and Azure DDoS Protection.
  • SIEM & Threat Detection: Azure Sentinel, AWS CloudTrail integration with S3, and automated incident response.
  • DevSecOps: SAST (SonarQube) integration, DAST (Tenable.io) integration, Secure CI/CD, eliminating hardcoded credentials.

Languages

English
Proficient
C2
Hindi
Proficient
C2

Timeline

Manager - Information Security & Cloud Infrastructure

Apex Analytix Pvt Ltd
10.2022 - Current

VMware & VDI Specialist (Infrastructure Security Focus)

ALLPS Digital Pvt Ltd
11.2021 - 10.2022

Enterprise Solution Specialist II

IQOR India Pvt Ltd
02.2017 - 11.2021

Senior Operations Analyst

IBM India Pvt LTD
06.2015 - 02.2017

Operations Analyst

IBM India Pvt Ltd
08.2014 - 06.2015

Associate Analyst

Global Logic Inc
03.2013 - 08.2014

Bachelor of Science - Electronics & Communications Engineering

Chandigarh Group of Colleges

Similar Profiles

  • Swagatam GhoshSwagatam Ghosh

    Lead Enterprise Solution Architect | Global Infrastructure & Cloud Strategy at Accenture Solutions Pvt. Ltd.Lead Enterprise Solution Architect | Global Infrastructure & Cloud Strategy at Accenture Solutions Pvt. Ltd.

  • ASHOK KUMAR J DASHOK KUMAR J D

    Associate Director - Information Security at Crisil LimitedAssociate Director - Information Security at Crisil Limited

  • Vaibhav RastogiVaibhav Rastogi

    Sr. Manager – Public / Private Cloud and IT Infrastructure at Tata Communications LimitedSr. Manager – Public / Private Cloud and IT Infrastructure at Tata Communications Limited

  • Prashant Kumar ShuklaPrashant Kumar Shukla

    Manager Consulting- Cloud Architect at CGI Inc.Manager Consulting- Cloud Architect at CGI Inc.

CREATE PROFILE
Sourabh Abrol