Niranjan Ganesan
Senior IT and Cloud Security Manager @ Plivo Inc.
Summary
More than 18+ years of experience with solid expertise in Cloud Security, IT infrastructure management, CyberSecurity Management, Security Governance, Audit & Compliance, and Enterprise architecture. Regulation & Compliance Experience with PCI-DSS, HIPAA, SOC 2, Data Privacy Framework, GDPR, CPRA, ISO 27001, Advanced Cloud Security Auditing (CSA STAR).Have Demonstrated expertise in establishing and implementing large information security programs.
Certifications
ISACA Certified Information Systems Auditor (CISA)
ISACA Certified Information Security Manager (CISM)
ISACA Certified in Risk and Information Systems Control (CRISC)
ISACA Certified in the Governance of Enterprise IT (CGEIT)
ISACA Certified Data Privacy Solutions Engineer (CDPSE)
Certified Chief Information Security Officer (CCISO)
Certified Information Privacy Technologist (CIPT)
Privacy Engineering Certification
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Competence in Zero Trust (CCZT)
CompTIA Security+
CompTIA PenTest+
CompTIA Network Vulnerability Assessment Professional
AWS Certified Security - Specialty
AWS Certified Solutions Architect - Associate
Certified ATT&CK Cyber Threat Intelligence
Certified ATT&CK Security Operations Center Assessments
ISO 27001:2013 Lead Auditor - Information Security Management System
ISO 27001:2022 Lead Auditor - Information Security Management System
Certified Agile Leader 1
Certified Agile Leadership for Teams (CAL-T)
Certified Agile Leadership for Orgs (CAL-O)
Certified Agile Leadership Essentials (CAL-E)
Certified GCHQ - Cyber Incident Planning & Response (CIPR)
Certified Advanced Cloud Security Auditing (CSA Star)
Certified ITIL V4 Foundation - IT Service Management
VMware Certified Associate - Data Center Virtualization
Redis Security
Certified Scrum Master
Cyber Supply Chain Management
Work experience
| Company Name | Title | Duration |
|---|---|---|
| Plivo Inc. | Senior IT & Cloud Security Manager | April 2021 |
| Fiserv Inc. | Senior Manager Information Security | Oct 2019 - April 2021 |
| Reward360 Global Services Private Limited | AVP Security | Jul 2018 - Oct 2019 |
| Skilworth Technologies Private Limited | IT Head | Feb 2016 - Jul 2018 |
| RedBlackTree Technologies Private Limited | Senior Data Centre Engineer | Oct 2010 - Nov 2015 |
| Alfie Software Private Limited | Service Engineer | May 2009 - Aug 2010 |
| RMP Infotech Private Limited | Systems Administrator | Dec 2005 - Apr 2009 |
Core Competencies
Strategic Leadership & Executive Management
Visionary Leadership: Demonstrated ability in steering organizational security strategy, aligning security initiatives with business goals, and fostering a culture of security awareness.
Executive Stakeholder Engagement: Expertise in engaging with C-suite and board members, translating complex security challenges into business terms, and driving enterprise-wide security governance.
Global Security Program Leadership: Proven track record in the development, implementation, and management of global security programs that balance risk, business realities, and operational impact.
Advanced Security Expertise & Technologies
Cloud Security Mastery: Advanced proficiency in cloud infrastructure and security, including AWS Certified Security - Specialty, and deep knowledge of cloud-native security tools (AWS CloudHSM, AWS KMS, AWS Security Hub, etc.).
Comprehensive Cybersecurity Architectures: Expertise in designing and implementing robust security architectures, including Zero Trust models, MITRE ATT&CK framework applications, and advanced WAF configurations.
Critical Infrastructure Protection: Advanced knowledge in safeguarding critical infrastructures, ensuring business continuity, and implementing effective disaster recovery plans.
Governance, Risk, & Compliance (GRC)
Strategic Compliance Oversight: Extensive experience in overseeing compliance with major standards and regulations (ISO/IEC 27000 series, PCI DSS, SOC2, HIPAA, GDPR, etc.), emphasizing a strategic approach to compliance management and governance.
Enterprise Risk Management: Proficient in leading enterprise risk management efforts, conducting sophisticated data risk assessments, and aligning risk strategies with organizational objectives.
Innovation & Operational Excellence
Security Transformation Initiatives: Leadership in security transformation projects, driving innovation while ensuring seamless integration with existing systems and business processes.
Operational Security Excellence: Deep understanding of operational security best practices, including incident management, vulnerability management, and security operations center (SOC) optimization.
Management & Strategy
Cross-functional Team Leadership
Project Management
Internal & Third-Party Audit
IT Strategy
Enterprise Risk Management
Resource Management
Vendor Management
Organizational Development & Culture
Security Culture Champion: Leadership in promoting security awareness and education across the organization, embedding security-mindedness into corporate culture.
Cross-functional Team Leadership: Demonstrated success in leading cross-functional teams, fostering collaboration, and nurturing talent within the security domain.
Technical Proficiencies & Tools
Advanced Technical Skills: Comprehensive knowledge of security practices & technologies, container security, virtualization technologies, application security, and secure development practices.
Security Tools & Solutions Expertise: Hands-on experience with a wide array of security tools (OSSEC, Alien Vault USM, Crowdstrike, etc.) and proficiency in managing security infrastructures.