Udayan S.
Head – IT Infrastructure & Cyber Security
Experience
Head – IT Infrastructure & Cyber Security
Enthusiast Global India
- Cloud Security & Compliance by Design: Orchestrated AWS cloud migration initiatives with security embedded at the architecture stage, aligning with PCI-DSS and ISO 27001 frameworks; reduced rework cycles by 30% and accelerated compliance audits.
- Identity & Access Governance: Established a centralized identity plane using Entra ID federated with AWS IAM roles; enhanced visibility by deploying cloud-native SIEM integrations consolidated via Rapid7 and implemented Cloud Security Posture Management (CSPM) for continuous monitoring.
- Technology Transformation with Security Oversight: Provided strategic oversight for enterprise-wide technology transformation roadmaps, ensuring business-aligned security investments and championed cloud adoption for hybrid and multi-cloud migrations.
- Application Modernization & Container Security: Drove modernization programs using Kubernetes, Docker, Terraform, and PaaS models, embedding container security best practices and automated compliance checks.
- AI-Augmented Cybersecurity Governance: Introduced AI-driven risk analytics and predictive insights to strengthen governance for cloud, SaaS, and IaaS deployments.
- Information Security Leadership: Defined and governed organizational structures for InfoSec, IT, and Data Management teams, aligning cybersecurity responsibilities with business strategy.
- Security Management & Compliance Frameworks: Designed and led implementation of enterprise-wide security frameworks for ISO, SOC 2, and PCI-DSS compliance.
- IT & Cybersecurity Governance: Consolidated IT governance processes with AI-based project monitoring tools, reducing project costs through improved budget control, automated dashboards, and proactive risk insights.
- Service & Incident Management: Conducted monthly cybersecurity service reviews and resilience forums; streamlined incident, change, and problem management processes leveraging automation for improved response times.
- Talent & Team Development: Managed a 15-member cybersecurity and IT team, building core competencies through AI-assisted training, performance reviews, and recruitment.
- Achieved audit readiness for SOC 2 and ISO 27001 within 90 days due to early security design embedding.
- Implemented PCI DSS standards, SOC requirements, and vendor SLAs, and strengthened incident response playbooks for ransomware readiness.
- Generated 20% cost savings on an annual IT budget of USD 11M through optimized governance and security-driven project efficiency.
- Introduced Robotic Process Automation (RPA) and AI-assisted workflows for cost optimization, and built an internal Security Operations Center (SOC) for advanced threat defense.
- Improved productivity and reduced remediation turnaround by creating standardized validation, escalation, and AI-driven issue tracking processes.
Manager (IT) & InfoSec
Global Growth India Pvt Ltd.
- Worked on designing and planning of private cloud with VMware and IT infrastructure for 15 business units.
- Gained exposure to global infrastructure across USA, India, UK, Ukraine, and New Zealand.
- Designed and managed datacenter virtualization (VMware, Hyper-V), cloud initiatives (Azure, AWS, Office 365), and spam protection projects and operations.
- Managed NOC/SOC for IT and cybersecurity operations; ensured completion of risk and vulnerability assessments and closure of critical findings.
- Supervised hybrid cloud setup with AWS and Azure, supporting business units and projects.
- Implemented HIPAA-compliant security controls and frameworks for cloud infrastructure and data handling to protect EMR and EHR for US-based healthcare operations.
- Spearheaded the design and implementation of Dallas, Boston, and New York data centers, applying Microsoft infrastructure and database/security application servers in high-availability fault-tolerant configurations using VMware, Hyper-V, and SAN.
- Engaged in data center disaster recovery migration with zero downtime.
Summary
Global Cybersecurity Leadership – Successfully established and matured enterprise-wide Information & Cybersecurity Programs, covering security strategy, governance, risk & compliance, operations, vulnerability management, incident response, data loss prevention, application security, and identity & access management.
Multi-Cloud Security Architect – Spearheaded the security architecture design for a multi-cloud transformation spanning AWS and Azure, migrating critical workloads from legacy VMware data centers. Overcame challenges around IAM fragmentation, compliance reporting, and visibility gaps to deliver a resilient and compliant hybrid-cloud model. Ensured Service Level Agreement (SLA) adherence, established a 24X7 handover mechanism, mandatory escalation metric and delivery support based on Information Technology Infrastructure Library (ITIL) & Capability Maturity Model Integration (CMMI) methodologies.
I implemented a centralized identity plane using Entra ID and federated it with AWS IAM roles. For visibility, I deployed SIEM integration across cloud-native logs, consolidated in Sentinel, and implemented cloud posture management with CSPM tools.
Rich experience in process analysis, re-engineering & streamlining; expertise in managing business process automation, improving efficiencies and reducing TATs to enhance customer experience.
Experience in creating critical infrastructure for Data Centers; spearheaded critical infrastructure support to IT operations of Data Centre.
Dedicated technology leader with career long record of promotion, stakeholder satisfaction, team building and strategic insight, poised for next level of success in IT Head role
Languages
Certifications & licenses
CEH
CISM
ISO 22301
ISO 27001
ITIL v3 Foundation
PRINCE 2
Similar Freelancers
Discover other experts with similar qualifications and experience
- English
- Deutsch
2025 © FRATCH.IO GmbH. All rights reserved.