Sachin Bhadupota

Role Overview -

Oversaw all aspects of a robust cybersecurity posture, managing a suite of solutions for Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), and Web Gateway Security. Played a pivotal role in ISO 27001 implementation and ensured continuous adherence to SEBI mandates through scheduled vulnerability testing and remediation. Contributed to GRC initiatives by defining new scope for audits and maintaining preparedness for internal and external reviews. Provided L3 support to the SOC team, managed email security, and approved critical access and proxy requests while collaborating with the application security team on seamless testing environments.

Strategic and technical interventions.

Endpoint Security - Improved the efficacy of EDR, DLP, and proxy solutions, reducing the overall exposure score from 40% to just 3%. This was achieved by continuously simulating real-time attacks in a UAT environment, followed by strategic policy fine-tuning and the implementation of advanced security modules. Performed POC for application control and implemented stagewise deployment without any internal incidents. Conducted a comprehensive data flow analysis in collaboration with department directors to create dedicated DLP policies. This effort, combined with the continuous refinement of rules and content classifiers, successfully reduced false positive rates by 93%.

GRC, ISO 27001, and SEBI CSCRF Journey - Successfully completed the organization's ISO 27001 certification by creating comprehensive security policies and procedures, and by auditing existing controls to ensure full compliance. Proactively enhanced Governance, Risk, and Compliance (GRC) frameworks by expanding the scope of internal reviews and ensuring the organization's readiness for both internal and external audits. Conducted a detailed gap analysis for SEBI CSCRF compliance, developing a strategic action plan that included improving SOC efficacy, establishing a Software Bill of Materials (SBOM), and initiating source code reviews for regulated entities (REs). Also created an extensive questionnaire for vendor risk assessment, and performed VRA for both new and existing vendor engagements.

Vulnerability Management & Patching - Created advanced scanning templates and scheduled external as well as internal scans according to business and SEBI requirements. Performed OS hardening followed by patch management on all servers. Created a detailed vulnerability assessment procedure and defined the patch management flow.

Security Operations Center (SOC) Oversight - Oversaw all security monitoring and incident response activities, providing timely closure on SOC-related incidents. Collaborated with the managed SOC provider to enhance monitoring efficacy by creating Threat, Tactic, and Indicator (TTI) definitions, managing exclusions, and performing targeted threat hunting.

Role Overview -

Endpoint Security Lead

Spearheaded the management of critical security solutions for a large offshore client, including EDR, PAM, Email Security, and Vulnerability Assessment. Drove the effective use of these tools to identify, mitigate, and respond to security threats, enhancing the client's overall security resilience.

Strategic and technical interventions.

Managed Endpoint Security & Policy: Orchestrated the security for a network of over 50,000 endpoints. This included creating and managing exclusions for known and internal application executables, and contributing to the creation of Indicators of Compromise (IOCs) and Indicators of Attack (IOAs) by adding hash reputations. Provided Level 3 technical support to the Security Operations Center (SOC) team, performing in-depth incident analysis directly from the EDR console to assist with threat investigation and resolution.

Vulnerability Management & Compliance: Utilized Tenable Nessus to perform routine vulnerability assessments on endpoints and servers. Developed remediation plans for patch management, and scheduled advanced scans for critical vulnerabilities to proactively maintain compliance and a strong security posture.

Role Overview – Managed and monitored endpoint security solutions, including EDR and antivirus agents, as well as comprehensive email security services to protect against phishing and malware. Conducted vulnerability assessments, developed malware simulations for efficacy testing, and performed global threat assessments on the deep and dark web to identify emerging risks. Designed and executed email phishing campaigns, providing training and awareness programs to enhance user resilience. Ensured continuous compliance through routine security monitoring and assessments.

Strategic and technical interventions –

Endpoint and Email Security: Managed and monitored endpoint security solutions, including EDR and antivirus agents, as well as comprehensive email security services to protect against phishing and malware.

Proactive Threat Management: Led proactive security initiatives by conducting vulnerability assessments, developing malware simulations for efficacy testing, and performing global threat assessments on the deep and dark web to identify emerging risks.

Security Awareness & Compliance: Designed and executed email phishing campaigns, providing training and awareness programs to enhance user resilience. Ensured continuous compliance through routine security monitoring and assessments.