Professional Documents
Culture Documents
SunilKumar (19 0)
SunilKumar (19 0)
Career Summary
A CISSP, AZ-900, GCIH, CISM, CISA, ITILv3F, ISO27001:2013LA, CompTIA Security+, CCNA, MCSE, MCP (AWS,
CCSK, PMP Trained & working towards certification) certified dynamic professional with 18 years of extensive practical
experience in the areas of IT Security Operations, Service Delivery, Project Planning and Management, People
Management. Working closely with global customers, skilled in architecting, documenting and implementing various
infrastructure solutions, processes and risk based controls.
Proven track record of outstanding leadership abilities with dedication, a keen planner, strategist, able to coordinate and
direct all phases of delivery based efforts while managing, motivating and leading delivery teams. Comprehensive
experience in diversified technology areas including in System & Network Security, VA/PT, Auditing & reporting
environment etc. with Extensive knowledge on ITIL and IT Security Processes.
Technology Skills
IS Security Data Loss Prevention, SIEM, VPN, Anti-Virus, Content Filtering, Patching, IDS/ IPS
Security Tools (VA/PT) Retina, Nessus, BackTrack, Metasploit, Burp Proxy, Wireshark, Nmap, JTR, Cain,
PSFTP, Enum, NBTenum, Dumpsec, Mimikatz, pwdump, saminside, rcrack,
l0phtcrack etc
Firewall NetScreen, SonicWall, Checkpoint, Linux Firewall, Huawei
Operating Systems/ Software Windows, Linux and other office productivity tools
Protocols and services TCP/IP protocol suite, ISO/OSI layers, ICMP, DNS, DHCP etc.
Hardware CISCO 1700, 2600, 3660, 3725 Routers, Cisco L3/2, Cat 1900/2950, 3500 Switches,
3Com, HP Network Devices, NetScreen, SonicWall Firewall, IBM & HP Servers
Processes/ Standards ISMS, ISO27001, NIST, PCI, ITSM Framework based on ITIL and other standards
Key Skills
Security Operations
Adept in analyzing information system needs, evaluating end-user requirements, custom designing information security
solutions, troubleshooting for complex network systems.
Integrate risk, threat and vulnerability identification and management into life cycle processes.
Robust understanding of security threats, mitigations, and applicability to cloud environments.
Compliance
Develop information security strategy aligned with business goals, objectives and corporate governance.
Identify drivers affecting the organization (e.g., technology, business environment, risk tolerance, geographic location)
and their impact on information security.
Security Consulting
Provide consulting support for Physical, Administrative, Technical Security controls that ensure CIA of the IT
Infrastructure and meet client’s security and compliance requirement.
Security Awareness
Develop and implement an information security awareness and training program with suitable materials.
Career Sketch
Security Associate Manager (MSS), Dec 2014 to Nov 2017 Accenture Solutions Pvt. Ltd., Gurgaon, India
Security Team Lead (MSS), Mar 2012 to Nov 2014
Key Deliverables:
Providing information security services to multiple clients of diverse industry sectors such as financial, hotel, travel,
health care etc. across multiple geographies.
People Manager – Managing a team of Security Team Leads, Sr. Security Analysts and Associates.
Spearhead independent review of enterprise security products for encryption, secure messaging, privacy data
monitoring, intrusion detection, end point and gateway security, system/network security.
Security and Compliance Leader for the project teams delivering Managed Security Services support, Malware Defense,
Data Loss Prevention, Anti-Virus, VA/PT, IDS and URL Filtering.
Responsible for risk identification of compliance requirements and mapping to the business; compliance risk assessment;
third party risk assessment; control assessment including self-assessment; and risk-issue tracking.
Plan specific audits to determine whether information systems are protected, controlled and provide value to the
organization. Conduct & report audit findings and make recommendations to key stakeholders.
Prepare and establish implementation of necessary information security policies, standards, procedures and guidelines,
in conjunction with the Business & Security Committee.
Liaison with related governance functions such as Physical Security / Facilities, Risk Management, IT, HR, Compliance,
plus middle managers throughout the organization, on information security matters.
Periodically review information security metrics and publishing weekly/monthly executive dashboards with senior
management for information security posture of the infrastructure.
Establish & lead activities relating to contingency planning, business continuity management and IT disaster recovery
in conjunction with relevant functions and third parties.
SCHOLASTIC
PG Dip in CYBER LAWS & IPR from Hyderabad University in 2008.
B.Sc. from CCS University Meerut in 1999.
CERTIFICATIONS ACHIEVED
CISSP – Certified Information Systems Security Professional
AZ-900: Microsoft Azure Fundamentals
CISM – Certified Information Security Manager
CISA – Certified Information Systems Auditor
ITILv3 Foundation Certified
ISO 27001:2013 Lead Auditor
GIAC Certified Incident Handler – GCIH
Trained on CCSK (Cloud Security), working towards certification
Trained on PMP, working towards certification
Trained on AWS Sol. Arch., working towards certification
OTHER DETAILS
Please feel free to contact in order get other details including references.
(Sunil Kumar)