Summary
Overview
Work History
Education
Skills
Certification
Social Link
Personal Information
Accomplishments
Timeline
Generic
Subramaniakumar Punnaivanam

Subramaniakumar Punnaivanam

Cyber Security Specialist
Chennai

Summary

  • Cybersecurity and Risk Management Professional with 9+ years of experience in implementing ISO 27001, NIST CSF 2.0, and related cybersecurity frameworks. Proven expertise in cyber maturity assessments, control testing, risk analysis, and compliance with data privacy regulations such as GDPR.
  • Certified Lead auditor and Lead Implementer in ISO 27001.

Overview

9
9
years of professional experience
1
1
year of post-secondary education
10
10
Certifications
3
3
Languages

Work History

Lead Solution Advisor - Cyber Strategy

Deloitte
01.2024 - Current
  • Led cyber maturity assessments for Fortune 500 companies, utilizing industry-leading frameworks including ISO 27001, NIST CSF 2.0, ISO 27002, and ISO 27071.
  • Oversaw the evaluation of organizational cybersecurity posture, identifying gaps, assessing control effectiveness, and guiding remediation strategies to enhance cyber resilience.
  • Directed the application of NIST CSF 2.0 to assess and manage cybersecurity risks across six key functions: Govern, Identify, Protect, Detect, Respond, and Recover.
  • Executed comprehensive risk assessments and control testing initiatives to ensure compliance and validate the strength of security controls.
  • Delivered high-impact reports and executive-level briefings with strategic recommendations, aligning cybersecurity efforts with industry best practices and business objectives.
  • Played a key role in fortifying organizational resilience and shaping long-term cybersecurity strategy to proactively address emerging threats.

Senior Process and Compliance

Elait
01.2023 - 01.2024
  • Implemented and managed ISO 27001:2013 framework, including Annex A controls and regular control testing.
  • Oversaw IT risk governance, quality management, and process excellence initiatives.
  • Deployed key security measures: access control reviews, physical and asset security, risk assessments, and monitoring of security objectives.
  • Led organization-wide information security training with a structured training calendar.
  • Ensured compliance with data privacy regulations including GDPR and DPDP.
  • Conducted quarterly reviews of security performance to drive continuous improvement.
  • Gathered threat intelligence from CERT-In and NIST to mitigate advanced persistent threats.

Senior Consultant - Operations

RSM India
08.2022 - 01.2023
  • Implemented multiple international standards including ISO 9001:2015, ISO 14001:2015, ISO 45001:2018, ISO 50001:2018, SA8000:2014, Lean, Six Sigma, and Chemical Management Systems.
  • Led diagnostic assessments and end-to-end implementation of management systems tailored to client and regulatory requirements.
  • Developed and deployed SOPs to drive operational excellence and process consistency.
  • Established and improved KPI monitoring systems to track and optimize performance.

DIRECTOR

Bright Management Consultant
08.2017 - 07.2022
  • Implemented key frameworks including ISO 9001:2015, ISO 27001:2013, ISO 14001:2015, Lean, and Chemical Management Systems.
  • Conducted gap analyses to align existing systems with performance expectations and standard requirements.
  • Performed risk assessments using the FMEA model and implemented effective mitigation controls.
  • Scheduled and conducted periodic internal audits to assess implementation effectiveness.
  • Successfully led clients to achieve management system certifications as per customer and regulatory requirements.
  • Conducted over 500 first-party (internal) audits across various domains.

Engineer Technical Services

VV TITANIUM PIGMENTS (P) LTD
02.2016 - 08.2017
  • Technical suitability study on equipment.
  • Verification and validation of equipment design.
  • Technical bid evaluation (TBE) of equipment.
  • Micro schedule preparation for projects from procurement to turnkey.
  • Detailed study on process flow diagram (PFD) and (PID) to confirm the feasibility of operation.

Education

M.Tech - Chemical Engineering

University of Petroleum And Energy Studies(UPES)
Dehradun, India
04.2024 - Current

B.Tech/B.E. - Petro Chemical Technology

Anna University
Trichy
06-2012

Skills

  • Risk assessment
  • Cyber maturity evaluation using NIST CSF 20
  • Cybersecurity evaluation
  • ISO 27001 assessment expertise
  • ISO 27002 security control evaluation
  • ISO 27701 compliance
  • Stakeholder communication strategies
  • Risk management strategy
  • Information technology risk assessment
  • Information security management
  • ISO 9001 quality management
  • Experience in data security practices

Certification

Lead auditor in ISO 14001:2015

Social Link

https://in.linkedin.com/in/subramaniakumar-punnaivanam-3b07ba8a

Personal Information

Total Experience: 9 Years 0 Month

Accomplishments

  • Certified Lead Auditor in ISO 27001:2022 and ISO 9001:2015
  • Certified Lead Implementer in ISO 27001:2022

Timeline

M.Tech - Chemical Engineering

University of Petroleum And Energy Studies(UPES)
04.2024 - Current

Lead Solution Advisor - Cyber Strategy

Deloitte
01.2024 - Current

Senior Process and Compliance

Elait
01.2023 - 01.2024

Senior Consultant - Operations

RSM India
08.2022 - 01.2023

DIRECTOR

Bright Management Consultant
08.2017 - 07.2022

Engineer Technical Services

VV TITANIUM PIGMENTS (P) LTD
02.2016 - 08.2017

B.Tech/B.E. - Petro Chemical Technology

Anna University

Similar Profiles

CREATE PROFILE
Subramaniakumar PunnaivanamCyber Security Specialist