UDAYAN SARKAR

• Cloud Security & Compliance by Design: Orchestrated AWS cloud migration initiatives with security embedded at the architecture stage, aligning with PCI-DSS and ISO 27001 frameworks. This proactive design reduced rework cycles by 30%, and accelerated compliance audits.
• Identity & Access Management: Established a centralized identity plane using Entra ID, federated with AWS IAM roles. Enhanced visibility by deploying cloud-native SIEM integrations, consolidated via Rapid7, and implemented Cloud Security Posture Management (CSPM) for continuous monitoring.
• Lead and manage the 24/7 SOC Operations team globally, and be responsible for providing security, monitoring, threat detection, and incident response, which leads to a 30% reduction in security incidents and improved overall cyber resilience.
• Technology Transformation with Security Oversight: Provided strategic oversight for enterprise-wide technology transformation roadmaps, ensuring business-aligned security investments. Championed cloud adoption advocacy, securing leadership approval for hybrid and multi-cloud migrations.
• Application Modernization & Container Security: Drove modernization programs using Kubernetes, Docker, Terraform, and PaaS models, embedding container security best practices, and automated compliance checks.
• AI-Augmented Cybersecurity Governance: Introduced AI-driven risk analytics and predictive insights to strengthen governance for cloud, SaaS, and IaaS deployments, ensuring risk-informed decision-making for internal business units.
• Information Security Leadership: Defined and governed organizational structures for InfoSec, IT, and Data Management teams, aligning cybersecurity responsibilities with business strategy.
• Security Management & Compliance Frameworks: Designed and led the implementation of enterprise-wide security frameworks, ensuring regulatory alignment (ISO, SOC 2, PCI-DSS), while mitigating business risks.
• IT & Cybersecurity Governance: Consolidated IT governance processes with AI-based project monitoring tools, reducing project costs through improved budget control, automated dashboards, and proactive risk insights.
• Service and Incident Management: Conducted monthly cybersecurity service reviews and resilience forums with leadership. Streamlined incident, change, and problem management processes, leveraging automation for improved response times.
• Talent & Team Development: Managed a 15-member cybersecurity and IT team, building core competencies through AI-assisted training, performance reviews, and recruitment of top talent to ensure organizational resilience.
• Highlights:
• A big win was achieving audit readiness for SOC 2 and ISO 27001 within 90 days, due to early security design embedding.
• Implemented PCI DSS standards, SOC requirements, and vendor SLAs, while strengthening Incident Response playbooks for ransomware readiness.
• Generated 20% cost savings on an annual IT budget of USD 11M through optimized governance, and security-driven project efficiency.
• Introduced Robotic Process Automation (RPA) and AI-assisted workflows for cost optimization, and built an internal Security Operations Center (SOC) for advanced threat defense.
• Improved productivity and reduced remediation turnaround by creating standardized validation, escalation, and AI-driven issue-tracking processes.
• Self-motivated, with a strong sense of personal responsibility.

• Worked on designing and planning of a private cloud with VMware, as well as IT infrastructure, for 15 business units in the group.
• Gained exposure to working on global infrastructure across the USA, India, the UK, Ukraine, and New Zealand.
• Designed and managed projects and operations for data center virtualization (VMware, Hyper-V), cloud initiatives (Azure, AWS), Office 365 productivity platform, and spam protection.
• Managed NOC/SOC for IT and cybersecurity operations; ensured completion of risk assessment, vulnerability assessment, and closure of findings of critical applications and devices.
• Supervised hybrid cloud setup with AWS and Azure, supporting business units and projects for various requirements on the cloud.
• Implemented and ensured HIPAA-compliant security controls and frameworks during cloud infrastructure setup and data handling practices, specifically designed to protect Electronic Medical Records (EMR) and Electronic Health Records (EHR), ensuring data privacy and regulatory compliance for U.S.-based healthcare operations.
• Spearheaded the design and implementation of data centers in Dallas, Boston, and New York; applied technical expertise in Microsoft infrastructures and database/security application servers in high-availability/fault-tolerance configurations built using VMware, Hyper-V, and SAN; engaged in the shifting of Datacenter DR with zero downtime.
• Accomplished multiple tasks within established timeframes.
• Managed and motivated employees to be productive and engaged in work.

• Managed Exchange Servers with DAG, Cisco Ironport Spam Protection.
• Managed a team of 8 members and engaged in maintaining the Incidents, Requests, Changes by BMC Remedy Ticketing
  tool.
• Followed the ITIL standards including documentation, problem management, incident management, and so on.
• Implemented cutting-edge technologies that enabled more efficient data analysis capabilities for client engagements.
• Streamlined internal project management processes by adopting agile methodologies resulting in increased productivity.
• Mentored junior consultants to improve their skills and enhance overall team performance levels within the organization.

Eli Research India Private Ltd, Haryana as Technical Support Lead – Wintel.

• Worked well in a team setting, providing support and guidance.
• Skilled at working independently and collaboratively in a team environment.
• Worked flexible hours across night, weekend, and holiday shifts.
• Resolved problems, improved operations, and provided exceptional service.
• Used strong analytical and problem-solving skills to develop effective solutions for challenging situations.
• Participated in team projects, demonstrating an ability to work collaboratively and effectively.