Vice President and Chief Information Security Officer - QualityKiosk Technologies
(2025-05 - 2026-05)
- Develop and maintain security and privacy policies, standards, and governance frameworks
- Drive implementation and governance of Digital Personal Data Protection (DPDP) compliance
- Lead enterprise-wide cybersecurity, privacy, and IT risk management strategy
- Lead incident response, including data breach management and coordination with legal teams
- Implement vendor risk management and third-party security frameworks
- Oversee threat intelligence, vulnerability management, and security testing programs
- Maintain ISO 27001 and SOC 2 Type II certifications
- Drive enterprise-wide privacy and security awareness programs
Assistant Vice President – Information Security - Star Union Dai-ichi Life Insurance
(2016-11 - 2025-05)
- Defined and executed enterprise cybersecurity and privacy strategy aligned with IRDAI, ISO 27001, NIST, UIDAI, DPDPA and JV partners frameworks
- Estabhished and managed Governance, Risk and Compliance (GRC), Third Party Risk Management (TPRM), and Business Continuity Management (BCM) frameworks
- Defined and enforced security standards across core technology platforms, lead security control implementations across IT and Cloud infrastructure and assisted selection of security technologies to strengthen organizational resilience
- Managed Security Operations Center (SOC) operations
- Led cyber incident response and crisis management
- Oversee Vulnerability Assessment and Penetration Testing (VAPT) program
- Implemented and managed Privilege Access Management (PAM), Data Leak Prevention (DLP), Mobile Data Management (MDM) solutions
- Promoted security and privacy culture through awareness programs and simulations
- Managed regulatory audits, partner inspections and certifications
- Presented cyber security compliance and risk posture to senior leadership, board, and Information Security Risk Management Committee (ISRMC) periodically
- Managed cyber insurance and claims
Senior Manager – IT & Information Security - Cheers Interactive India Pvt. Ltd.
(2012-02 - 2016-11)
- Developed information security and privacy policies and processes
- Implemented Information Risk Management (IRM) solution
- Ensured data protection compliance and client-specific security requirements
- Conducted periodic reviews of security controls (AD, firewall, DLP, endpoint security)
- Managed enterprise IT infrastructure, virtualization (VMware), and networks
- Led ITIL processes: incident, problem, and change management
- Implemented DLP, patching, antivirus, and capacity management
- Managed vendors, budgets, and service delivery operations
Manager - Bharti AXA Life Insurance Co. Ltd.
(2008-05 - 2012-02)
- Led enterprise Business Continuity & Disaster Recovery (BCP/DR) programs, including BIA, planning, and nationwide drills
- Conducted technology risk assessments and security testing for critical financial systems (RTGS, NEFT, ATM, trading platforms)
- Managed audit observations, compliance tracking, and regulatory requirements
- Strengthened information security policies, controls, and risk frameworks
- Played a key role in ISO 27001 implementation and certification
- Delivered training and awareness programs on risk, resilience, and business continuity
Assistant Manager - ABN AMRO Bank
(2006-07 - 2008-05)
Deputy Manager - Bombay Stock Exchange
(2004-02 - 2006-06)