Contact
uk.tripathi2013@gmail.com
Umakant Tripathi, CISM
Director- Cyber Security Leader @LTIMindtree, Ex..Accenture |
www.linkedin.com/in/uma-kant- Wipro | HCLtech | Awards Winner | Cybersecurity SME | Thought
tripathi (LinkedIn) Leader | Speaker
Delhi, India
Top Skills
Reference Architecture Summary
Supplier Evaluation
Accomplished Cybersecurity Leader with more than 20+ years
Bookings
of experience. Proficient in managing SOC, GSOC, MXDR
Operations and safeguarding digital assets, driving strategic
Languages
initiatives, and ensuring security compliance. Proven track
English (Full Professional)
record in incident response, threat detection, app security and
Hindi (Native or Bilingual)
vulnerability management. Adept at managing cross-functional
teams, maintaining Cyber security postures, and utilizing advanced
Certifications
security tools. Strong leadership abilities with a focus on motivating
ORACLE 9i PROGRAMING WITH
PL/SQL and guiding teams to achieve operational excellence.
Microsoft Certified: Azure Security
Engineer Associate Technical Proficiencies
NSE 1 - Network Security Expert • Practice Lead of Cyber Security tools Implementation like
Certification
SIEM,UEBA, SOAR, EDR & Cloud Security
SC- 200 Microsoft Certified: Security
Operations Analyst Associate • Platform support - SIEM tools like IBM QRadar/ ArcSight/
SC-100 Microsoft Certified: Netwitness / Azure Sentinel / Securonix
Cybersecurity Architect Expert • Network security - Firewall, Anti- DDoS, IPS/IDS, Proxy, WAF
• Attack Surface management - SAST, DAST, VA & knowledge of
Honors-Awards OWASP Top10 vulnerabilities.
TOP PERFORMER OF THE YEAR • Cyber Defense - SOC, GSOC,MDR, Program Management of
AWARD
MSSP service delivery
Cloud Champian 2021
• Threat Intelligence - Managed Detection Response, Malware
analysis and incident response
• Compliance - Knowledge of ISO 27001 framework, ISMS process
and risk management
• Design and deployment, Integration of Cyber security solution for
enterprise security clients
• Pre-sales, /post sales solution Designing & Manage RFP/RFI/RFQ
response
• Customer Success building strong relationship with Clients stack
holder management
Role and Responsibility
Page 1 of 6
�Cybersecurity Strategy and Leadership, SOC and GSOC
Management ,MXDR Operations
Incident Response and Threat Detection
Cloud Security Implementations
Network Security Technologies (Firewalls, DDoS Protection, IPS)
Compliance and Risk Management (ISO, SOC, PCI DSS, GDPR)
Application Security and Vulnerability Assessment
SIEM, SOAR, EDR, and UEBA Tools
Identity and Access Management (IAM)
Cybersecurity Project Management
Stakeholder Communication and Management
P&L Management
Team Building and Leadership
Security Policy Development and Governance
Awards & Recognition -
1. Winner of Smart CISO Awards - 2024
2. Winner of Innovative CISO Awards - 2023
3. Winner of Cyber Defender Award – 2022
4. Winner of InfoSec Maestros Award - 2022
5. Winner of Cyber Security Leadership Awards – 2022
6. Winner of Top Cyber Warrior Awards – 2022
Experience
LTIMindtree
Director - Cyber Security
December 2021 - Present (3 years 3 months)
Accenture
Security Manager
April 2021 - November 2021 (8 months)
Gurugram, Haryana, India
Leading SOC Delivery operations, overseeing and manage enterprise
risk. Coordinating with clients and stakeholders to ensure effective risk
management and compliance.
Page 2 of 6
�• Implement a comprehensive SOC strategy to identify, prevent, detect, and
respond to cyber threats.
• Build and recruit a team and mentor SOC engineers and security analysts,
fostering a collaboration
• Manage security tools like IBM SIEM, SOAR, EDR & IDS/IPS, and threat
intelligence feeds.
• Improve security incident management processes to ensure swift resolution
and prevention of issues.
• Implement cybersecurity framework, principles, best practices, and
technologies.
• Oversaw threat detection mechanisms, analyzing patterns and anomalies to
identify potential risks.
• Coordinated containment strategies and eradication efforts for cybersecurity
incidents.
• Ensured SLA compliances, process adherence, and improvement in MTTA,
MTTI, & MTTR.
• Build and recruit a team of SOC engineers, security analysts & management
of cross function team.
• Led investigations into security incidents, collaborating with internal and
external stakeholders.
• Applied malware analysis and cybersecurity forensic techniques to analyze
incidents.
• Establish and maintain a robust cybersecurity framework to protect critical
infra. data & assets.
• Lead a team of cybersecurity professionals, providing guidance and support
to managing security risks.
Wipro Limited
Senior Consultant - Cyber Security Practice
January 2020 - April 2021 (1 year 4 months)
Greater Noida, Uttar Pradesh, India
• Manage multi-client Security Operations platform support for MSSP clients.
• Implementing and managing cybersecurity tools and technologies, such
as firewalls, intrusion detection systems, SIEM, SOAR, EDR, & Azure Cloud
Security & AWS.
• Responsible for onboarding clients on MSSP. dedicated environment to
enable delivery function.
• Providing incident management support and best practice to mitigate
customer risks and threats
Page 3 of 6
�• Helping customers to build SOC and providing consulting service as per the
agreed terms
• Responsible for new implementation as per the project timeline and timely
delivery of the project
• Proposing an appropriate enterprise security solution which fits into the
budget and client requirement.
• Resource management and delegating tasks to junior staff members based
on skill sets and experience.
• Working closely with the global sales team for business opportunities
related to Cyber Security product portfolio to offering SIEM, SOAR & Threat
Management solutions for global client
• Creation of technical documents like SOP, SOW, RECI, & DOW for smooth
MSSP delivery
• Manage relationship with clients, OEM vendor eco-systems and all the
stakeholders.
• Continuously update self-knowledge on the global threats and advancements
in security, challenges
HCL Technologies- Infrastructure Services Division
Practice Lead - Cyber Security |GSOC | CSFC
May 2016 - December 2019 (3 years 8 months)
Greater Noida, Uttar Pradesh, India
Practice lead of Cyber Security Fusion Center (CSFC/GSOC) and supporting
offshore MSSP global clients for SI, platform support & Presale Cyber Security
for Global clients.
• SIEM & Cyber security tools implementation administration and platform
support for offshore delivery of multi-tenant client’s environment.
• Responsible for developing custom use cases, playbook & best practice.
• Ensuring high availability operations and business continuity for SOC/ GSOC
platform.
• Expert in SIEM configuration customization of rules and alert for monitoring
support.
• Detailed analysis of cyberattacks and incident response reporting daily
weekly and monthly.
• Provide technical support to IT team for high priority incidents like DDoS, Sql
injection, & virus outbreak.
• Review the SOC monitoring policy to fine tuning of SIEM & security policy of
SOC.
Page 4 of 6
�• Working closely with Security Incident Response Team (SIRT) for any
Incident.
• Performing Vulnerability (VA) scanning and providing report for corrective
action plan.
• Pre-sales activity and support for client presentation , Solution design for
identified clients.
• Establish effective processes and SLAs for GSOC deliverable for all geo
clients.
Sahara India
15 years 3 months
SOC Lead - Cyber Security SOC
March 2006 - April 2016 (10 years 2 months)
Kolkata Area, India
Leading the Security Operation Center, managing 24/7 SOC operations, and
reporting to the CISO. Administering SIEM tools like ArcSight, IBM QRadar
and RSA-SA
• Implementation and building SOC and looking entire platform support day to
day activity.
• Working on cyber security tools like SIEM, Proxy, Antivirus, and event log
monitoring.
• Managing security controls on SIEM event monitoring and creating rules for
monitoring.
• Implementations of security policies on web sense and web content filtering
across the organization
• Performing risk assessments, Vulnerability assessment & patch
management.
• Lead the team and mentoring junior for performing daily monitoring task for
sending reporting.
• Advice for blocking blacklisted IP at perimeter firewall for blocking traffic at
firewall.
• Acting as front face of Security function and take ownership of managing
risks internal & external audit.
• Updating the SANS blacklisted for verification of IPs reputation to firewall
minimize the risk of attack.
Sr. System Specialist - Data Center /DR
February 2001 - March 2006 (5 years 2 months)
Bangalore / Lucknow/ Kolkata
Page 5 of 6
�• Leading Data center Infrastructure and facilitate to maximum availability of IT
services.
• Manage DC Operation & maintenance, upgrade, OS, database, connectivity.
• Ensure availability infra and application and perform backup and restore
during outage.
• Ensure replication in between DC & DR and accountable for BCDR & DR drill
on regular basis
Education
Chatrapati Sahuji Maharaj Kanpur University, Kanpur
Bachelor of Arts (B.A.), English Language and Literature, General
Uttar Pradesh Rajarshi Tandon Open University
Master of Business Administration (M.B.A.), Information Technology
Page 6 of 6
