Vipul Mani Tripathi
Mumbai
Summary
Cybersecurity and GRC professional with over 7 years of experience in Governance, Risk, Compliance, Vulnerability Management, and Network Security. Expertise in ISO/IEC 27001 Lead Auditor practices, with hands-on experience in conducting risk assessments, internal audits, and compliance monitoring. Proven ability to support ISO 27001 audit processes while effectively tracking risks and control effectiveness, ensuring alignment with regulatory and organizational requirements through stakeholder collaboration. Skilled in managing vulnerability assessments and risk remediation using advanced tools such as Nessus, Tenable.sc, Tenable.io, Nexpose, and ServiceNow, enhancing organizational security posture across APAC, EMEA, LATAM, and NA regions.
Overview
8
8
years of professional experience
1
1
Certification
Work History
Cyber Security Officer
Safran India Private Limited
01.2023 - Current
- Led a Vulnerability Management team of 4, driving end-to-end vulnerability scanning, triaging, and remediation workflows across enterprise infrastructure.
- Reduced remediation timelines by 25% by streamlining processes with Nessus (Tenable.sc, Tenable.io) and ServiceNow integration.
- Conducted regular vulnerability assessments across 3,000+ endpoints, identifying, analyzing, and prioritizing risks based on business impact and CVSS scoring.
- Coordinated with cross-functional teams to achieve 95% SLA compliance for critical vulnerabilities, ensuring timely patching and risk mitigation.
- Supported ISO 27001-related initiatives through risk tracking and audit readiness activities.
- Delivered internal training workshops to 35+ IT staff on vulnerability prioritization and remediation best practices.
- Enhanced security posture by updating and implementing hardening guidelines for network devices and firewalls, aligned with industry standards.
Cyber Security Consultant (Client: NSE - National Stock Exchange)
Aujas Cybersecurity
01.2022 - 01.2023
- Supported ISO 27001 audit processes by reviewing controls during 1000+ CR (change requests), validations.
- Conducted internal audits for change requests (CRs) under the CIS-Risk team, ensuring compliance with internal policies and regulatory frameworks.
- Managed and tracked ISO/IEC 27001 controls, contributing to continuous compliance and risk mitigation efforts.
- Monitored vulnerability and patch management lifecycle, identifying delays and collaborating with relevant teams to ensure timely remediation.
- Tracked Risk Acceptance statuses and maintained records using ServiceNow, supporting the risk governance process.
- Coordinated security assessments including VA (Vulnerability Assessment), CA (Configuration Assessment), Greybox Testing, EPT (External Penetration Testing), and Secure Code Reviews.
- Reviewed technical integration status of critical security layers including API security, SIEM logging, DB encryption, and IDAM (Identity & Access Management).
- Analyzed reports from Checkmarx for code reviews and external vendors for EPT, documenting gaps and following up on mitigations.
- Performed configuration assessments and rule-based reviews of network devices like firewalls and switches, ensuring they meet hardening standards.
- Reviewed artefact-level controls and provided formal risk and compliance approvals for change implementation.
- Contributed to the creation and update of hardening documents for network devices and firewalls, aligned with best practices and compliance requirements.
Network Engineer
SITEL India Pvt Ltd
08.2019 - 01.2022
- Provided 24/7 global support for SITEL’s dual MPLS enterprise network across NA, LATAM, APAC, and EMEA regions, managing routers, switches, and firewalls.
- Remediated security vulnerabilities on network devices as per guidelines from the Global IT Security Team, ensuring compliance with PCI-DSS standards.
- Participated in internal and external PCI compliance audits, providing evidence, validating network configurations, and implementing remediation steps to address audit findings.
- Managed and reviewed access controls, including web and special access policies, through Cisco WSA, Firepower, and Cisco ISE.
- Performed configuration hardening, IOS upgrades, and SNMP updates on critical network devices to reduce security risks.
- Monitored traffic anomalies and generated reports using SolarWinds, LiveNX, and NetFlow to support proactive threat detection.
- Collaborated in major outage bridges, troubleshooting real-time network issues, and applying approved changes to restore service continuity.
- Processed day-to-day RFCs and change requests, ensuring alignment with change management processes and compliance requirements.
Network Engineer (Client: PeopleStrong HR Services)
AKP Consultant
09.2018 - 05.2019
- Managed security and network infrastructure across offices in Gurgaon, Bangalore, and Mumbai, ensuring business continuity and compliance with internal policies.
- Conducted monthly vulnerability assessments of servers and network nodes using Nessus, coordinating remediation efforts with internal IT teams and external auditors (E&Y).
- Acted as a liaison during external VAPT engagements, collaborating with E&Y to validate findings, track mitigations, and support compliance reporting.
- Led quarterly Business Continuity Planning (BCP) drills, ensuring critical systems met recovery objectives and business continuity standards.
- Implemented firewall and security changes (ACLs, NATs, VPNs, security policies) aligned with change management requirements and compliance guidelines.
- Monitored and reviewed IPS/IDS, endpoint, and DLP logs for security events, providing regular reports to management for audit readiness.
- Contributed to the development and enforcement of content filtering, web filtering, and URL filtering policies using Firepower and Cyberoam UTM.
Customer Support Associate
Intelenet Global Services
05.2017 - 03.2018
- Delivered L1 technical support for Spectra ISP’s enterprise and FTTH customers.
- Resolved average of 60+ daily tickets, reducing first-call resolution time by 15%.
- Enhanced customer satisfaction by promptly addressing and resolving inquiries and concerns.
Education
Diploma in Cyber Law - Law
Asian School of Cyber Law
04-2024
MBA - Information Technology
Swami Vivekanand Subharti University
01.2024
Bachelor of Science - Physics, Chemistry, Mathematics
Dr. Ram Manohar Lohia Avadh University
05-2016
Skills
- Security & Compliance: ISO 27001, Risk Assessments, Internal Audits, Vulnerability Management
- Tools: Nessus, BitSight, Checkmarx, ServiceNow, Algosec, SolarWinds, Symantec DLP, LiveNX, Cisco WSA
- Devices: Cisco, Checkpoint, Fortinet, Palo Alto, Cyberoam, F5, Barracuda LLB, Ruckus APs
- Networking: Routing, Switching, Firewall Management, VPNs, SNMP, IOS Upgrades
- Basic Exposure: NIST CSF, Prompt Engineering, Generative AI Concepts
Certification
- ISO 27001 Lead Auditor - Exemplar Global
- Cisco Certified Network Associate (CCNA)
- Cisco Certified Specialist – Security Core (CCNP-SCOR)
- NSE 1 & NSE 2 Network Security Associate
Accomplishments
- Selected for an international collaboration project in France, enhancing global security strategy alignment in Safran.
- Recognized as Bravo Award for outstanding performance in Aujas.
- Spearheaded a floor-wide IT cabling project for 200+ desks, ensuring seamless go-live in People Strong.
- Recognized as Star Performer for outstanding network availability and escalation handling in Intelenet.
Languages
English
Bilingual or Proficient (C2)
Hindi
Bilingual or Proficient (C2)
Timeline
Cyber Security Officer
Safran India Private Limited
01.2023 - Current
Cyber Security Consultant (Client: NSE - National Stock Exchange)
Aujas Cybersecurity
01.2022 - 01.2023
Network Engineer
SITEL India Pvt Ltd
08.2019 - 01.2022
Network Engineer (Client: PeopleStrong HR Services)
AKP Consultant
09.2018 - 05.2019
Customer Support Associate
Intelenet Global Services
05.2017 - 03.2018
Diploma in Cyber Law - Law
Asian School of Cyber Law
MBA - Information Technology
Swami Vivekanand Subharti University
Bachelor of Science - Physics, Chemistry, Mathematics
Dr. Ram Manohar Lohia Avadh University
Similar Profiles
Vipul Mani TripathiVipul Mani Tripathi
Cyber Security Officer at Safran India Private LimitedCyber Security Officer at Safran India Private Limited
Jayendra A. RokadeJayendra A. Rokade
Administrator at Safran India Private LtdAdministrator at Safran India Private Ltd
PINAKI MISHRAPINAKI MISHRA
Nc Program Engineer at Safran aircraft engines Hyderabad private limitedNc Program Engineer at Safran aircraft engines Hyderabad private limited
FARHAZ KHANFARHAZ KHAN
Business Development Manager at Pure Grown DiamondsBusiness Development Manager at Pure Grown Diamonds
RONAK JAINRONAK JAIN
Process Improvement Analyst- Customer Operations at IAGL LtdProcess Improvement Analyst- Customer Operations at IAGL Ltd