Work Preference
Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic
YASHAVANTHA KUMAR G S
Open To Work

YASHAVANTHA KUMAR G S

Bangalore,KA

Work Preference

Desired Job Title

Manager - Cyber Security, GRC & AuditLead Analyst - Security Risk & Compliance | India OperationsSecurity Consultant - IT Risk, Corporate Security & AuditAssistant Manager - Enterprise Risk & Cyber SecurityInformation Security Manager

Work Type

Full Time

Location Preference

On-SiteRemoteHybrid
Location: Bangalore, India
Open to relocation: Yes

Salary Range

45000/yr - 200000/yr

Important To Me

Career advancement

Summary

Results-oriented Corporate Security Leader with over 19 years of experience in security operations and risk management across multi-site environments in South Asia. Expertise in designing and executing corporate security programs for IT, financial services, and technology sectors. Skilled in managing sensitive investigations and collaborating with cross-functional teams to implement global security strategies. Holds CISM and ISO 27001 Lead Implementer certifications, knowledgeable in ISO 27001, SOC, and NIST CSF frameworks.

Overview

1
1
Certification
19
19
years of professional experience

Work History

Manager - Cyber Security, GRC & Audit

Microland Limited
08.2023 - Current
  • Oversaw corporate security operations across India, aligning strategy with APAC leadership priorities.
  • Implemented process improvements to streamline workflows and reduce delays.
  • Directed deployment of comprehensive security systems achieving complete coverage at all sites.
  • Acted as primary contact for regional security matters, translating global standards into local execution.
  • Conducted thorough threat risk assessments, reducing vulnerability backlog by 30% within two quarters.
  • Managed vendor relationships and contract performance, improving operational efficiency by 25%.
  • Generated regular security reports for leadership and audit committee, maintaining zero audit escalations.
  • Implemented quarterly security awareness initiatives, significantly increasing phishing simulation success rates.
  • Analyzed performance data to identify improvement opportunities and enhance overall security protocols.

Lead Analyst - Security Risk & Compliance | India Operations

Silicon Valley Bank (SVB)
12.2022 - 07.2023
  • Managed India security risk and compliance program for global financial institution, ensuring alignment across matrix structure.
  • Directed third-party risk management across security vendors, reducing risk exposure by 20% within six months.
  • Developed KRI framework with 15 indicators to monitor and escalate security control failures, enhancing overall compliance oversight.
  • Acted as primary point of contact in India for security risk compliance and vendor escalations, facilitating effective communication and resolution.
  • Tested newly installed programs to ensure operability and compliance with security standards.
  • Established procedures for data collection, analysis, interpretation, and reporting.
  • Identified improvement areas to guide decision-makers in implementing necessary changes.
  • Assessed change management processes, recommending enhancements that mitigated 14 high-severity risks before go-live.

Security Consultant - IT Risk, Corporate Security & Audit

IBM India Pvt Ltd (Kyndryl)
10.2016 - 12.2022
  • Oversaw security risk and compliance audits for clients globally, maintaining a perfect on-time delivery record over six years.
  • Directed corporate security audits across multiple sites, focusing on ITGC, ITAC, HIPAA, SOX, and SOC1/SOC2 standards in diverse environments.
  • Achieved a 45% reduction in high-risk findings by delivering targeted remediation strategies for high-growth clients.
  • Maintained account security manuals to ensure full policy compliance during all audit cycles.
  • Implemented risk-management frameworks (NIST, ISO 27001) for large technology clients while analyzing contractual obligations.
  • Created business continuity and disaster recovery plans validated through rigorous tabletop exercises in multi-site settings.
  • Built robust relationships with client security executives to facilitate effective communication and collaboration.
  • Quality-assured over multiple audit reports to align with Big Four standards for regulatory submissions.

Assistant Manager - Enterprise Risk & Cyber Security

Deloitte
01.2015 - 07.2016
  • Directed security risk audits for Fortune 500 clients based in India.
  • Managed cross-functional teams and facilitated executive-level reporting in a matrixed environment.
  • Led project teams in developing innovative solutions tailored to client needs.
  • Efficiently coordinated timelines and deliverables across multiple client engagements.
  • Implemented best practices to ensure compliance with risk management standards.
  • Spearheaded SOX, SOC, ITGC, and ITAC security initiatives for more than 10 client sites in India.
  • Conducted vendor risk assessments to evaluate physical and IT security controls using ISO 27001 benchmarks.
  • Composed executive-level audit reports that provided actionable insights and prioritized remediation efforts.

Information Security Manager

Vmoksha Technologies Pvt Ltd
08.2013 - 01.2015
  • Directed establishment of comprehensive information and physical security program for technology services organization.
  • Cultivated robust security culture from ground up, significantly enhancing employee engagement.
  • Led ISO 27001 implementation from gap analysis through successful external certification.
  • Authored 25+ security policies covering all aspects of operational and information security.
  • Supervised incident response teams to effectively mitigate security breaches and threats.
  • Achieved zero repeat non-conformities through rigorous management of internal audits.
  • Executed risk assessments to uncover vulnerabilities within IT systems and networks.
  • Facilitated monthly security awareness training for employees and contractors.

Assistant Manager - IT Security

Evaluationz India Pvt Ltd
04.2010 - 05.2013
  • Established and maintained overall information security strategy for organization.
  • Developed audit plans and executed ISO 27001-aligned internal audits with zero non-conformities.
  • Supervised daily operations including scheduling shifts and assigning duties.
  • Led team meetings to collaboratively discuss progress and address challenges.
  • Conducted regular performance reviews to identify areas of improvement.
  • Organized training sessions for new hires to acclimate them to workplace environment.
  • Managed incident and change-management lifecycle, improving test pass rates to 95%.
  • Recruited, onboarded, and trained new security team members while coordinating security reviews with clients.

Senior Engineer - IT Security

CMS Info Systems Pvt Ltd
07.2006 - 04.2010
  • Performed VAPT assessments utilizing Nessus; streamlined patch management processes to cut mean exposure window by 60%.
  • Configured and managed comprehensive security infrastructure for desktops, laptops, servers, firewalls, network devices and storage across multi-site environments.
  • Directed infrastructure engineering projects to enhance system performance and reliability across multiple platforms.
  • Developed collaborative relationships with local security teams to assess new technologies and integrate user feedback, strengthening overall security posture.
  • Trained junior engineers in technical skills and project management strategies to foster team development.
  • Handled escalated customer issues efficiently to uphold service quality.
  • Showcased expertise at industry conferences, reinforcing company’s leadership in engineering.

Education

Bachelor of Computer Applications (BCA) - Computer Science

Skills

  • Risk assessment
  • Security operations
  • Compliance management
  • Security compliance auditing
  • Governance reporting
  • Security frameworks
  • Crisis management
  • Vendor management
  • Technology proficiency
  • Leadership management
  • Interpersonal skills

Certification

  • CISM - Certified Information Security Manager, ISACA, Current & Active
  • ISO 27001 Lead Implementer, corporate security standards applicable to the IT/tech sector
  • ITIL Foundation, IT Service Management
  • Microsoft Azure Fundamentals (AZ-900), Microsoft

Languages

English
Proficient (C2)
C2
Hindi
Proficient (C2)
C2
Kannada
Advanced (C1)
C1

Timeline

Manager - Cyber Security, GRC & Audit

Microland Limited
08.2023 - Current

Lead Analyst - Security Risk & Compliance | India Operations

Silicon Valley Bank (SVB)
12.2022 - 07.2023

Security Consultant - IT Risk, Corporate Security & Audit

IBM India Pvt Ltd (Kyndryl)
10.2016 - 12.2022

Assistant Manager - Enterprise Risk & Cyber Security

Deloitte
01.2015 - 07.2016

Information Security Manager

Vmoksha Technologies Pvt Ltd
08.2013 - 01.2015

Assistant Manager - IT Security

Evaluationz India Pvt Ltd
04.2010 - 05.2013

Senior Engineer - IT Security

CMS Info Systems Pvt Ltd
07.2006 - 04.2010

Bachelor of Computer Applications (BCA) - Computer Science

Similar Profiles

  • Tuka BariborTuka Baribor

    GRC / Cyber Security Analyst at ExcelMindCyberGRC / Cyber Security Analyst at ExcelMindCyber

  • VITALII PAVLENKOVITALII PAVLENKO

    Head of Safety and Security | Finance Investigator | Cyber Security Manager | Risk Manager at NT.Payments (Kiosk IT Systems Trading LLC)Head of Safety and Security | Finance Investigator | Cyber Security Manager | Risk Manager at NT.Payments (Kiosk IT Systems Trading LLC)

  • SIDDHARTHA SURALSIDDHARTHA SURAL

    Cyber Security/GRC Presales Analyst at HCL TechnologiesCyber Security/GRC Presales Analyst at HCL Technologies

  • Inoremhe Stella OgonnaInoremhe Stella Ogonna

    Cyber Security GRC Analyst at Cybarik Inc.Cyber Security GRC Analyst at Cybarik Inc.

CREATE PROFILE
YASHAVANTHA KUMAR G S