Harpreet Singh

Education
M.Sc (IT) from Subharti University
: +91-7011146538
: [email protected]
https://www.linkedin.com/in/harpreet-singh-33718829/

Certifications
ISACA CISM (Certified)
CSA CCSK v4 (Certified)
ISO/IEC 27001:2022 Lead Auditor (Certified)
ITIL v3 (Certified)
SC-100 (Certified)
AZ-500 (Certified)
AZ-900 (Certified)
CISSP (Trained)
Visionary GRC Professional & Auditor, Technical Project/Service Delivery Manager with versatile experience across Industries
viz – IT Infrastructure, FMCG, Manufacturing, Aviation, Banking, Central Govt aided Project for Verticals viz – Technical
Service Delivery, Tier 3 Data Center Project with overall 15 years of experience, 7 years of experience in Information
Security Domain

EMPLOYMENT CHRONICLE

RAH Infotech - Dec 2023 till Present - (Head – Systems & Security Engineering)

1. Designing & Building Solutions across Managed IT & Cyber Security Landscape pointing at Defense in Depth
methodology including System Integration per Managed Security Service provider capability
2. Conducting ISO 27001:2022 Technical Security Audits for On-Prem, Hybrid, Cloud Security invoking frameworks viz CIS
benchmarking, NIST 800-115
3. Representing Managed Detection & Response Center for Small & Medium Enterprise Customers as a part of Managed
Security Offering (SoCaaS) – SOC as a Service
4. Acquiring Lead from Partners to represent/offer Managed Security Services to Enterprise Customers across Indian
Defense, Govt Organizations, Manufacturing, BFSI segments demonstrating product & service capability across the
Portfolio
5. Rendering end to end engineering including RFP requirement analysis > BoQ acquisition > Solution Designing basis
Customer signed off BoQ > Solution Architecting

DXC Technologies- Feb 2020 till Dec 2023 - (Manager – IT Security, Governance, Risk & Compliance)

Project Served in Tenure – Tata Singapore Airlines (Vistara) – Aug 2022 till Dec 2023

1. Spearheading New Project Implementation viz Designing & Building Solutions across IT & Cyber Security
Landscape
2. Performing Security Assessment on Switching Network, Cloud Application Landscape, Firewalls, SIEM including
Architecture, Security Posture, Secure Configuration per NIST, CIS Industry guidelines to ensure reduced attack
vectors
3. Implementation of Design & Architecture based Security Solutions viz – SOAR, XDR, Zero Trust Network Access
while collaborating with Partners, OEMs being a Technology Service Provider while representation of Client
Infrastructure
4. Investigating Infosec Breach Incidents along with Service Lines to ensure Root Cause get documented,
Corrective & Preventive Actions get Implemented
5. Representing Project status, Cyber Security Posture & related Metrics during Monthly Review with C Suite/Level
Individuals
6. Conducting ISO 27001:2022 Audits, Risk Analysis across the Environment with sole objective to Accept, Avoid,
Transfer, Mitigate to ensure reduced levels of applicable Risks
7. Perform detailed review of Policies, Procedures, Identify gaps & enhancements. Draft new policies, procedures
adhering to Business Objectives, Regulatory Compliance Matrix, Industry specific Compliance

(Service Delivery Manager) – TIER 3 DC Operations (Level -5) – Feb 2020 till Aug 2022

Projects Served in Tenure – SBI Cards & Payments, Emami LTD, MoRTH, IPPB

1. Managing & Leading Incidents on Compute, Storage, Network ensuring Resolution invoked for P1/P2 Outages,
thereby ensuring effective Problem Management

2. Ensure Compliance for Tools, Processes, OS Patching, Inventory Reconciliation, CMDB onboarding across Data
Center Operations
 3. Define Scope of Support for Vendor Management along with DXC Aggregator on Cloud for Compute, Express Route,
SLA, Network deployments viz - Traffic Manager, Load Balancer, Application Gateways, Azure Firewall while
migration of On-Prem DC to Cloud

4. As a part of Center of Excellence Team – Assess > Evaluate > Recommend – on the Security Posture of On-Prem, On-
Cloud hosting, thereby ensuring Risks are minimized for Infrastructure as well as Applications

5. Work with Security Operations, Information Security to assess, plan, deploy Common Vulnerabilities/Weakness
Enumeration across OS, Storage, Network line of Data Center proactively on Project basis thereby ensuring zero
impact on DC/DR Operations

6. Perform Conducting ISO 27001:2022 Internal Audits, Risk Analysis to meet Organizational goals whether
Compute/Non-Compute to ensure applicable Risk(s) level get reduced to an acceptable level via RAID methodology

Jan’16 – till June’18 with Quick Heal Technologies Pvt Ltd, New Delhi as Manager- Product Support/Pre-Sales

Project Name- Quick heal Technologies Ltd- as Manager- Product Support/Pre-Sales (Permanent Role However Laid off
due to Resource Optimization)
❖ Managing SaaS based Technical Support, BAU Operations for Enterprise product portfolio viz Seqrite EDR, XDR, UTM

Oct’14 – till Dec’ 15 with HP India Sales Pvt Ltd., Gurgaon(on the pay roll of Growel Softech - Contractual Job) as
Service Manager

Project Name- GE Capital Data Center- (AP Region- Asia-Pacific)

❖ Accountable for supporting Service Management inclusive of Incident, Problem & Change Management as Service Manager
in a TIER 3 On-Prem Data Center

Aug’12 – till May’14 with IBM India Pvt. Ltd., Gurgaon (on the pay roll of Magna InfoTech – Contractual Job) as Analyst–
Incident/Change/Problem (Individual Contributor)- Service Management Department

Project- Bank of Ireland- UK, SANDVIK- Europe, National Australian Bank- Australia
❖ Accountable for supporting Service Management inclusive of Incident & Change for SO Delivery

May’11 – Mar’12 with Convergys India Services, Gurgaon as SME - Change Management (Associate B1 Prog/Analysis) -
Change Management Department (Sought Vertical Growth however, Project decommissioned)

Project- Convergys IT Infrastructure

❖ Worked as Change & Release Manager for North America region

PREVIOUS EXPERIENCE

Jan’09 – Feb’11 with Royal Bank of Scotland, Gurgaon as Infrastructure Engineer

Project- RBS IT Infrastructure

❖ Handling & Managing the Incident Management lifecycle end to end to restore the Services

Sep’06 – Mar’08 with IBM Daksh Business Process Ltd, Gurgaon as Technical Support Executive (Technical Support
Business Unit)
❖ Answering Tech Support calls for HP Outsourced Process on Laptop, Desktop, AIO

Declaration
I hereby confirm the authenticity of information specified above is correct & accurate

Regards
Harpreet Singh