Summary
Timeline
Education
Software
Work History
Accomplishments
Certification
Skills
Paper Presentation and Projects
Awards
Overview
Generic

VENKATESH S

Senior Technology Auditor
Chennai

Summary

Highly accomplished cybersecurity professional with eight years of experience encompassing vulnerability management, endpoint security architecture, incident response, and security compliance within large-scale enterprise environments. Proven ability to lead teams, implement advanced security solutions, and drive process improvements resulting in significant enhancements to organizational security posture and regulatory compliance.

Timeline

Senior Information Technology Auditor

Ford Motor Private Limited
05.2024 - Current

Certified GRC Professional, One trust

01-2024

ISO/IEC 27001:2022 ISMS LEAD AUDITOR

12-2023

Google Cloud Digital Leader

07-2023

CompTIA Security +

06-2022

Senior Security Engineer

Ford Motor Private Limited
11.2021 - 04.2024

Security Consultant

Ernst & Young LLP
06.2021 - 11.2021

Microsoft Azure AZ-900

05-2021

Diploma - Information Security and Cyber Law

University of Madras
01.2021 - 12.2021

Qualys vulnerability Management

07-2020

Qualys PCI DSS Compliance

07-2020

Nessus Professional certificate of proficiency

01-2020

CyberArk trustee v10.6

02-2019

Cyber Security Analyst

Tata Consultancy Services Ltd
01.2019 - 05.2021

ITIL v3 Foundation

08-2018

Cisco Certified Network Associate Routing & Switching

01-2018

Security Administrator

Tata Consultancy Services Ltd
06.2016 - 01.2019

Bachelor of Technology - Information Technology

Anna University
06.2012 - 07.2016

Education

Diploma - Information Security and Cyber Law

University of Madras
Chennai, India
01.2021 - 12.2021

Bachelor of Technology - Information Technology

Anna University
Chennai, India
06.2012 - 07.2016

Software

Vulnerability management

Endpoint Security

Governance Risk and Compliance

IT Audit and Risk Management

Work History

Senior Information Technology Auditor

Ford Motor Private Limited
Chennai
05.2024 - Current
  • Successfully guided the company's achievement of ISO 27001 certification in 2024, demonstrating expertise in information security best practices and regulatory compliance as a certified Lead Auditor.
  • Independently conducted comprehensive risk assessments, leveraging risk interviews and evidence documentation to identify and mitigate critical vulnerabilities within complex IT systems.
  • Collaborated effectively within a team of auditors, leading the analysis of key control areas, and contributing to the timely delivery of high-quality audit reports to clients.
  • Proactively verified the effectiveness of IT policies and procedures, utilizing GRC portals to ensure alignment with industry standards and regulatory requirements.

Senior Security Engineer

Ford Motor Private Limited
Chennai
11.2021 - 04.2024
  • Led and mentored a team of 6 endpoint security engineers, consistently achieving 100% SLA on monthly tickets without escalations, demonstrating exceptional operational efficiency and team management skills.
  • Successfully implemented a comprehensive endpoint security strategy, resulting in reduction of security incidents and improved organizational security posture through proactive threat hunting and vulnerability mitigation.
  • Drove process improvement initiatives, including streamlining ticket handling, optimizing tool license usage, and implementing a proactive approach to identifying and addressing log space utilization, resulting in improved team efficiency and reduced operational costs.
  • Leveraged technical expertise in multiple security tools to upgrade systems, resolve critical incidents, and implement automation scripts, demonstrating advanced technical skills and problem-solving abilities.

Security Consultant

Ernst & Young LLP
Bangalore
06.2021 - 11.2021
  • Led a 5-member team of security analysts in delivering a comprehensive global vulnerability management service, overseeing all aspects from assessment to reporting.
  • Consistently performed vulnerability assessments across diverse IT and OT environments, proactively identifying and mitigating critical security risks.
  • Effectively communicated complex technical information to diverse stakeholders across multiple geographical locations, ensuring alignment on security priorities and remediation efforts.
  • Significantly reduced the organization's attack surface by identifying and remediating scannable and non-scannable assets, improving overall security posture.
  • Enhanced security compliance by conducting regular CIS benchmark compliance scans (SCA) on servers and devices, resulting in improvement in compliance scores.

Cyber Security Analyst

Tata Consultancy Services Ltd
Chennai
01.2019 - 05.2021
  • Spearheaded end-to-end vulnerability management workflows, leading prioritization and remediation of identified vulnerabilities across diverse enterprise systems.
  • Effectively collaborated with internal stakeholders and senior leadership, providing strategic recommendations to enhance organization's overall security posture and compliance.
  • Successfully managed third-party audits, proactively addressing non-conformances and ensuring timely resolution with system owners, demonstrating a commitment to regulatory compliance.
  • Leveraged expertise in security assessment, risk-based threat analysis, and vulnerability management tools (Tenable Nessus, HP Fortify Web Inspect) to identify and mitigate critical security risks, consistently meeting all committed deadlines.

Security Administrator

Tata Consultancy Services Ltd
Chennai
06.2016 - 01.2019
  • Managed and maintained complex suite of endpoint security technologies (Symantec SEP, DCS, DLP; Trend Micro APT), ensuring optimal performance and security posture.
  • Proactively identified and reported vulnerabilities through comprehensive assessments, collaborating with operational teams to ensure timely remediation and minimize security risks.
  • Optimized Symantec Endpoint Protection Manager (SEPM) performance, resulting in a 30% reduction in CPU/IO utilization incidents through custom scan policy creation, demonstrating efficiency and problem-solving abilities.
  • Successfully administered critical security solutions, including CyberArk PAM and Forcepoint Web Proxy, ensuring secure access control and data protection across the enterprise.
  • Supported vulnerability management operations and internal audits, contributing to a robust security program and providing valuable insights into security monitoring, event analysis, and countermeasure proposals as part of the SOC L2 team.

Accomplishments

  • As a Department Placement Ambassador, I ensured efficient communication of placement opportunities to students and maintained meticulous records of placed students. Organized student data according to eligibility criteria to facilitate optimal matching with potential employers.
  • Successfully organized the Adukalam-2015 inter-departmental sports meet as a Department Student Representative.
  • Contributed to the successful organization of the IEEE International Conference on Technological Innovations in ICT for Agricultural and Rural Development (TIAR 2015) as a member of the organizing committee (June 2015).
  • Secured 2nd place in the "Wizard of Web" and "Webonova" events at the Kranti-2014 technical symposium, Meenakshi Sundararajan Engineering College (February 2014).

Certification

Certified GRC Professional, One trust

Skills

Vulnerability Management

Paper Presentation and Projects

  • Presented a paper titled “Prevention of Monkey trespassing in Agricultural Field using application specific flooding approach in Wireless Sensor Network” at IEEE INTERNATIONAL CONFERENCE- TIAR 2015, organized by the Department of Information Technology, Easwari Engineering College.
  • Published my project as a paper titled “ECA Based Device Automation System using IOT” in IJSRST Volume 2, issue 1, under the theme Science and Technology.
  • Final year Project - Embodied conversational agent (ECA) based Android application is used to receive speech input from the user. Simple object access protocol (SOAP) is used to transfer the information from client to server. The remote server processes the commands received and translates them into actions of switching appliances ON or OFF. A novel embedded system has been designed and implemented. A small-scale prototype is developed and tested.
  • As a professional cyber security engineer I work on various projects related to Implementing Antivirus solutions, Managing the Vulnerability Program for companies in government and Automobile sector.
  • I recently worked on a project to Implement ISO 27001 standards for my organization and received Third party certification successfully.


Awards

  • Best Volunteer Award for my contribution to Animal welfare pillar in Ford CSR Chennai, 2023.
  • Won the 1st place in event "THE BEGINNING - HOTSPOT" Conducted as part of Cyber Security Awareness Month, 2022.
  • Most valuable team player award in Security Services Team, Asia Pacific Region, 2022.
  • Special Initiative Award, For my contribution towards successful Go Live of new Application.
  • On the Spot Award, For proactive monitoring and actions taken during Ransomware Outbreak.
  • Secured 1st position in Security Awareness Quiz, Organized by TCS ISO Team.
  • Secured 1st place in Info Security Meet, Organized by TCS ISO Audit Group.

Overview

9
9
years of professional experience
5
5
years of post-secondary education
11
11
Certificates
VENKATESH SSenior Technology Auditor