Summary
Overview
Work History
Education
Skills
Certification
Accomplishments
Timeline
Generic
Sachin Sunil Sawant

Sachin Sunil Sawant

Information Security and Governance
Mumbai

Summary

Experienced Information Security professional with over 8.8 years in cybersecurity, cloud security, SOC operations, and compliance. Skilled in driving security initiatives, managing regulatory audits (RBI, ISO 27001), implementing deception technologies, and leading security posture improvement programs. Eager to apply strong technical, governance, and leadership capabilities to enhance and fortify enterprise IT landscapes.

Overview

9
9
years of professional experience
4037
4037
years of post-secondary education
2
2
Certifications

Work History

Senior Manager - Information Security & Governance

HDB Financial Services Ltd
06.2024 - Current
  • Lead SOC operations and information security governance for a third-party-managed SOC.
  • Implemented Prisma Cloud CSPM across AWS aligning controls with ISO 27001 and RBI standards.
  • Developed and managed an RBI advisory compliance framework-mapping each advisory to actionable controls and maintaining audit-ready documentation.
  • Directed deployment of a cost-effective CERT-IN honeypot/decoy system (leveraging existing CERT-IN contacts), replacing higher-cost commercial solutions like Smokescreen.
  • Played a central role in RBI CSITE and ISO 27001 audits-as well as BCP preparedness testing-closing critical gaps and elevating overall security posture.
  • Conduct weekly SOC performance reviews, conduct root-cause analyses of critical incidents, and drive continuous process improvements.
  • Received an organizational award for leading strategic enhancements in SOC effectiveness and regulatory compliance.

Senior Manager - Information Security

Kotak Life Insurance Ltd
05.2022 - 06.2024
  • Spearheaded enterprise-wide Information Security Governance: risk management, policy lifecycle, and regulatory compliance (IRDAI, ISO 27001).
  • Managed SOC governance-coordinating with third-party SOC partners to ensure 24×7 threat detection, incident response, and complete event monitoring.
  • Defined and maintained security policies and procedures aligned to emerging threats, regulatory requirements, and business goals.
  • Conducted risk assessments and control testing across cloud and on-premise environments utilizing ISO 27001 and IRDAI Cybersecurity Guidelines.
  • Played a key role in internal audits and control assurance activities, working closely with auditors and internal stakeholders.
  • Provided technical support and escalation management for complex security incidents and user-reported issues.
  • Managed security awareness and training initiatives-designing phishing simulations, awareness videos, and mailers to strengthen organizational security culture.
  • Implemented CERT-IN-compliant honeypot/decoy systems in alignment with ROE directives-proactively detecting lateral movement and reconnaissance activities.
  • Identified recurring trends and root causes from incident/request patterns, driving process improvements and optimizing security operations.
  • Oversaw team performance-ensuring adherence to SLAs, KPIs, and industry best practices in information security management.

Deputy Manager - Cybersecurity

Aditya Birla Sun Life AMC Ltd
08.2021 - 05.2022
  • On boarded to direct payroll following successful third-party engagements.
  • Managed a cybersecurity team (ISMS governance and device management), ensuring timely vulnerability remediation and security control implementation.
  • Participated in SEBI Cyber Security, SEBI System, and ISO 27001 audits-supporting audit deliverables and closure of findings.
  • Developed and executed Information Security Awareness programs: phishing campaigns, simulation testing, and awareness video mailers.

Analyst - Infrastructure Security L2

Paladion Networks (Atos) Client: Aditya Birla Sun
07.2020 - 08.2021
  • Supported IT process streamlining and infrastructure changes: network device upgrades, migrations, and configurations.
  • Assisted business teams with troubleshooting technology and application-related issues.
  • Provided technical input for internal and external security audits-ensuring control effectiveness and compliance.
  • Fine-tuned security policies and configurations per enterprise standards; continuously monitored compliance.
  • Liaised with stakeholders and OEMs to resolve complex product-specific issues and supported incident response.
  • Coordinated with SOC and NOC teams for network or device changes required by business units.
  • Actively participated in Change Authorization Boards (CAB) to present business requirements and necessary network modifications.


Analyst - IT Security Projects

IT Source Technologies Ltd Client: Aditya Birla Su
07.2018 - 07.2020
  • Worked extensively on endpoint and drive encryption tools: McAfee Endpoint Drive Encryption, ARCOS, Seclore, and Symantec Endpoint DLP.
  • Supported IT process and infrastructure changes: network device upgrades, migrations, and configurations.
  • Coordinated with OEMs to resolve complicated, product-specific issues.
  • Managed and troubleshot network and security-related queries-escalating to the respective teams when required.
  • Handled security incidents raised by SIEM, Prisma, and Qualys Scan-taking timely action to mitigate risks.

Global Service Desk - Security Support

Impact Infotech Pvt. Ltd Client: Sun Pharma
03.2018 - 06.2018
  • Liaised with stakeholders and OEMs for critical troubleshooting, incident management, and end-user support.
  • Managed user access in McAfee MDE (Drive Encryption) and enforced technical controls as required.
  • Oversaw remote access management for end users and privileged users-ensuring secure enterprise architecture.

Desktop Engineer L2

Vayam Info Solutions Pvt. Ltd
11.2016 - 02.2018


  • Liaised with stakeholders and OEMs for incident resolution and end-user support.
  • Handled user management in McAfee MDE (Drive Encryption) and enforced user access policies per business requirements.
  • Administered remote access for applications-ensuring adherence to secure enterprise architecture guidelines.

Education

Bachelor of Science - Information Technology

N.G. Acharya & D.K. Marathe College
Mumbai, India
04.2001 - 01.2016

HSC - Science

Maharashtra State Board
Mumbai, India
02-2013

SSC -

Maharashtra State Board
Mumbai, India
03-2011

Skills

  • Security Tools: Prisma Cloud, Zscaler, Qualys, QRadar, Symantec DLP, McAfee
  • Security Areas: SIEM/SOAR, Endpoint Security, VPN, Load Balancer, NAC, Firewalls
  • Cloud Platforms: AWS, Azure

Certification

CISM (Certified Information Security Manager) – ISACA

Accomplishments

  • Awarded for SOC Enhancements & Audit Excellence at HDB Financial Services Ltd for driving key improvements in detection capabilities and audit compliance.
  • Saved 80 % in security solution costs by recommending and implementing a CERT-IN honeypot/decoy solution over commercial alternatives.

Timeline

CISM (Certified Information Security Manager) – ISACA

06-2025

Ransomware Rapid Responder Certification - DSCI

12-2024

Senior Manager - Information Security & Governance

HDB Financial Services Ltd
06.2024 - Current

Senior Manager - Information Security

Kotak Life Insurance Ltd
05.2022 - 06.2024

Deputy Manager - Cybersecurity

Aditya Birla Sun Life AMC Ltd
08.2021 - 05.2022

Analyst - Infrastructure Security L2

Paladion Networks (Atos) Client: Aditya Birla Sun
07.2020 - 08.2021

Analyst - IT Security Projects

IT Source Technologies Ltd Client: Aditya Birla Su
07.2018 - 07.2020

Global Service Desk - Security Support

Impact Infotech Pvt. Ltd Client: Sun Pharma
03.2018 - 06.2018

Desktop Engineer L2

Vayam Info Solutions Pvt. Ltd
11.2016 - 02.2018

Bachelor of Science - Information Technology

N.G. Acharya & D.K. Marathe College
04.2001 - 01.2016

HSC - Science

Maharashtra State Board

SSC -

Maharashtra State Board

Similar Profiles

CREATE PROFILE
Sachin Sunil SawantInformation Security and Governance