Summary
Overview
Work History
Education
Skills
Accomplishments
Personal Information
Timeline
Generic

BRAHM DEO Yadav

Gothenburg

Summary

Information security professional with over 15 years of experience in the digital security (IT, OT, and IoT) industry in various roles at different levels of organizational structure in my working domain. I have worked broadly with large corporations and the public sector, which includes the delivery of high-budget and high-risk projects with a variety of infrastructure and security criteria. I have proven experience with security architecture, vulnerability management, compliance, and risk frameworks. I finished my master’s degree in technologies (MTech) from the University of Pune and Electronics Engineering with a specialization in machine learning and simulation. I have graduated with diverse industry experiences across automotive, health care, banking, insurance, telecom, federal, and BPO. OT and vehicle SOC, security for artificial intelligence (AI), and AI for cybersecurity are my present areas of interest, along with the exploration of automation opportunities for different compliance requirements.

Overview

19
19
years of professional experience

Work History

Delivery Owner: Cyber Security & Compliance

HCL Technologies Sweden AB
03.2016 - Current
  • Delivered vulnerability management initiatives for IT, OT, and DevSecOps while integrating SOC operations.
  • Oversaw a 25-member cybersecurity team to ensure effective delivery of IT and OT security services.
  • Achieved 90% compliance pass rate by enhancing ITGC compliance from 48% in 2016.
  • Managed information security initiatives across manufacturing, automotive, and financial sector clients.
  • Conducted thorough security audits, risk assessments, and compliance reviews including ISMS evaluations.
  • Influenced strategic decisions as CyberSecurity architect during enterprise architecture board discussions.
  • Drove development of industry-standard security policies and protocols.
  • Designed GDPR compliance solutions for Volvo IT alongside 40 external clients.

IT Security Specialist (Lead)

UnitedHealth Group
12.2012 - 03.2016
  • Managed team of 10 Security Analysts to enhance operational efficiency.
  • Conducted third-party security assessments and contractual risk evaluations.
  • Performed policy exceptions for UHG and various vendors.
  • Executed external vulnerability assessments and logical access reconciliations.
  • Maintained Archer & GRC tool, publishing regular security metric reports.
  • Facilitated risk assessments for diverse organizational vendors.
  • Analyzed centralized applications for security vulnerabilities using OWASP model.
  • Provided actionable recommendations for vulnerability remediation, coordinating with stakeholders.

Information Security Consultant

VKF, Nanovate Technologies Private Ltd.
01.2010 - 12.2012
  • Conducted Application security assessment with SSDLC framework.
  • Developed Security Policies, Security Checklists, Risk Assessment and Threat modeling process and procedures specific to the applications development.
  • Prepared Secure Coding Guidelines for the developers to build the application.
  • Performed Application Security Assessment based on OWASP Top 10,2010.
  • Documented recommendation and mitigation steps for the vulnerabilities reported.
  • Delivered Application Security Awareness training to the developer and user group.

Part Time- Network Administration & Website Development

Mahatma Jyotiba Phule Rohilkhand University
06.2006 - 05.2008

Education

M. Tech - Modelling & Simulation / Machine Learning

University of Pune
Pune
01.2010

B. Tech - Electronics And Communications Engineering

M.J.P. Rohilkhand University
Bareilly, U.P.
01.2008

Class XII -

Lucknow Model Public School
Lucknow, U.P.
01.2003

Class X -

Lucknow Model Public School
Lucknow, U.P.
01.2002

Skills

  • GDPR compliance
  • Dora regulation
  • NIS1 and NIS2 directives
  • ISO 27001 certification
  • ISO 21434 standards
  • BS 25999 framework
  • PCI DSS compliance
  • BS 10012 guidelines
  • ISAE 3402 assurance
  • ISAE 3000 reporting
  • CIS benchmarks
  • Vulnerability assessment tools
  • Network scanning techniques
  • Penetration testing methodologies
  • Security scanning solutions
  • Networking utilities
  • Azure AD management
  • Monitoring solutions
  • Data analysis tools
  • Risk management frameworks
  • Governance practices
  • Compliance monitoring systems
  • Security analytics platforms
  • Application security measures
  • Web vulnerability scanners
  • Web application testing tools
  • Cloud security strategies
  • Data security practices
  • Data loss prevention (DLP)
  • Privilege access management (PAM)
  • Encryption techniques
  • Audit and logging practices
  • Database configuration management (CMDB)
  • Identity management (IDM)

Accomplishments

  • Published 5 research papers in different international journals like APS, Springer.
  • Founder member of Alumni association of MJP Rohilkhand University.
  • Main Coordinator of National level events at Rohilkhand University in RELISH ’07 & 08, three day cultural and technical festival.
  • Social work with an NGO National Service Scheme(NSS).

Personal Information

Visa Status: Swedish Citizen

Timeline

Delivery Owner: Cyber Security & Compliance

HCL Technologies Sweden AB
03.2016 - Current

IT Security Specialist (Lead)

UnitedHealth Group
12.2012 - 03.2016

Information Security Consultant

VKF, Nanovate Technologies Private Ltd.
01.2010 - 12.2012

Part Time- Network Administration & Website Development

Mahatma Jyotiba Phule Rohilkhand University
06.2006 - 05.2008

M. Tech - Modelling & Simulation / Machine Learning

University of Pune

B. Tech - Electronics And Communications Engineering

M.J.P. Rohilkhand University

Class XII -

Lucknow Model Public School

Class X -

Lucknow Model Public School

Similar Profiles

CREATE PROFILE
BRAHM DEO Yadav