Rajib Das
Director & Head, IT & Cyber Security and Emerging Technologies
Kolkata, IN.About
Highly accomplished and results-driven professional with 22 years of extensive experience in Governance, Risk, and Compliance (GRC), IT/OT/IoT Cyber Security, and Automotive Connected Vehicle Cybersecurity. Proven leader in developing and implementing cutting-edge security solutions, driving strategic initiatives, and managing global teams to enhance organizational resilience and protect critical assets. Adept at leveraging emerging technologies, including Gen AI and Agentic AI, to proactively identify threats, optimize operations, and ensure robust compliance across diverse industry landscapes.
Work
NTT Data
|Director & GTM Capability Practice Head, Project and Program Management (IOT/OT/IOMT /Connected Vehicle) Security Practice
Kolkata, West Bengal, India
→
Summary
Led practice development and program management for IoT/OT/IOMT/Connected Vehicle Security, driving service launches and global presales support.
Highlights
Spearheaded the development and launch of IIOT/IOMT/Vehicle Security Practices, establishing new service offerings and market presence.
Drove presales support and solution model resourcing across multiple geographies, influencing key customer RFP responses and delivery strategies.
Cultivated strategic alliances with product vendors, contributing to GTM initiatives and expanding the sales funnel.
Directed skill development and team growth initiatives, enhancing organizational capabilities in advanced cybersecurity domains.
Engaged directly with customers to align practice development with delivery, ensuring high client satisfaction and project success.
LTIMindtree
|Senior Director, Project and Program Management (IOT/OT/OIMT/Connected Vehicle) Security Practice Development
Kolkata, West Bengal, India
→
Summary
Served as Senior Director, leading project and program management for IoT/OT/OIMT/Connected Vehicle Security Practice development.
Highlights
Orchestrated the development and launch of critical IIOT/IOMT/Vehicle Security Practices, establishing foundational frameworks.
Provided expert presales support and optimized solution model resourcing for diverse global customer engagements.
Fostered key alliances with product vendors, contributing to strategic GTM efforts and sales pipeline expansion.
Directed comprehensive skill development programs, enhancing team capabilities in emerging security technologies.
Facilitated crucial customer discussions, ensuring practice alignment with evolving delivery requirements.
Kolkata, West Bengal, India
→
Summary
Directed IoT/OT/IOMT and Connected Vehicle Security initiatives, focusing on capability development and client engagement across diverse industries.
Highlights
Expanded customer base in manufacturing, automotive, and healthcare sectors by effectively presenting IoT/Vehicle security capabilities.
Forged strategic vehicle product vendor partnerships (SecureThingsAI, Indexo, Karamba) and developed a 3-year IoT Security business strategy.
Led the design and implementation of Connected Vehicle Cyber Labs, creating VSOC, IDPS, and embedded security use cases.
Implemented advanced security solutions, including MS Defender for IoT POCs, and integrated Gen AI for enhanced cybersecurity.
Drove practice development and skill enhancement for a 60+ member team across India, significantly boosting team expertise.
Kolkata, West Bengal, India
→
Summary
Led global IoT/OT/Vehicle Cyber Security GRC and cloud security solutions as a Principal Consultant and Senior Manager.
Highlights
Led global delivery of IoT, IIOT, OT, and Industry 4.0 Connected Vehicle Cyber GRC and AWS/AZURE Cloud security solutions.
Implemented ICS SOC and Cyber Security EDR Solutions, including IEC 62443 and Purdue-based systems, for clients in airport, railway, oil & gas, and manufacturing industries.
Conducted comprehensive Connected Vehicle TARA, Onboard and Offboard Risk Assessments, and developed VOSC Solutions in line with ISO 21434, UNECE 155, 156, ISO 26262, and NHTSA standards.
Administered overall IT, Information, and Data Security Operations, ensuring business continuity and compliance with Data Security Standards.
Provided strategic consultancy on security requirements, system design, and incident response, ensuring adherence to regulatory and legal requirements.
Kolkata, West Bengal, India
→
Summary
Led diverse cybersecurity consulting engagements, practice development, and program management initiatives across multiple industries globally.
Highlights
Directed IoT/Connected Vehicle and GRC Security Practice Development, overseeing program and project management for key clients.
Managed SOC/SIEM/SOAR MSS, Cloud Risk Assessment, and Compliance Audit projects, ensuring robust security postures.
Implemented Third-Party Risk Management (TPRM) and Control Testing solutions using RSA Archer and ServiceNow for major international customers.
Ensured vehicle security compliance with UNECE R 155/R 156, CSMS, and SUMS standards through audit preparation.
Spearheaded continuous process improvement and automation initiatives across global operations (USA, UK, EU, Middle East), enhancing efficiency.
Kolkata, West Bengal, India
→
Summary
Designed, configured, and troubleshot network infrastructure while performing security assessments.
Highlights
Configured and managed Cisco Routers, Switches, VPNs, and IDS, ensuring network stability and security.
Designed and troubleshot enterprise network infrastructure architectures, resolving complex technical issues.
Conducted network Vulnerability Assessment and Penetration Testing (VA/PT) using tools like NMAP and Nessus.
Kolkata, West Bengal, India
→
Summary
Provided comprehensive system and network support, including configuration, troubleshooting, and security setup.
Highlights
Managed LAN/WAN network configuration and troubleshooting, ensuring optimal network performance and connectivity.
Executed Windows Active Directory installation and security configuration, enhancing system access control and integrity.
Performed system and network setup, configuration, and implementation for Windows/Linux environments.
Utilized CEH tools, including Kali Linux, for network packet monitoring and troubleshooting, improving security posture.
Education
Awards
Process Excellence Appreciation Certificate
Awarded By
Employer (Inferred)
Awarded for excellent project delivery and significant reduction of manual errors in Inventory Control.
Certificates
Skills
Cyber Security & GRC
Governance Risk and Compliance (GRC), IIOT/ICS/OT/IOMT Cyber Security, Automotive Connected Vehicle Cyber Security, DevSecOps (SAST, DAST, IAC, SCP), Container Security, Microservices Security, KAFKA TOPIC Security, Vendor Risk Management, Cloud Security Policy, DPIA, BCM/DR (ISO 22301), Control Testing, IT/OT Security Operations Center (SOC), SOC/SOAR Implementation and Monitoring, ICS/OT Design/Implementation, Application Security (VA/PT), Threat Intelligence, Threat Modelling (STRIDE), Vulnerability Management, Incident Management, Compliance Management, Penetration Testing, Forensic IT Audits, Security Program Management, Risk Management, Data Privacy (GDPR), Security Administration, Cyber Resilience.
AI & Emerging Technologies
Gen AI Cyber Security, Agentic AI Integration, Machine Learning Threats/Attacks, Prompt Engineering, CHAT GPT, Claude, Gemini, Deep Seek, Grok, Copilot for Security, Perplexity, Open AI, Industry 4.0.
Cloud Security
AWS Cloud Security, Azure Cloud Security, AWS DevSec Ops, Cloud Infrastructure Security, Cloud Risk Assessment, IAAS/PAAS/SAAS Platform Security, Azure Cloud Platform Services.
Automotive Cybersecurity
ISO 21434, UNECE 155, UNECE 156, NHTSA, AIS, ISO 24089, ISO 26262, Vehicle SOC, TARA, MS TMT based Threat Modelling, Automotive Threat Intelligence Platform, On board/Off Board Components Security (ECU, VDC, Flex Ray, LIN, CAN, TCU SOTA, DTC), Auto SAR, Sec OC, Vehicle IDPS Solution, Binary Analysis, Software Defined Vehicle (AWS Cloud Car Security), AWS Data Lake, ECU Attacks, CAN Attacks, CSMS, SUMS, AIS-189, AIS-190, IEC-63443 AUTO ISAC.
Security Standards & Frameworks
ISO 27001, ISO 22301, NCSC NIS CAF, GDPR, PCI DSS, HIPAA, SOX 404, SOC 2,3, NERC CIP, NIST, CSA CCM 4.0, OWASP TOP 10, MITRE TTP, CYBER-KILL-CHAIN, C2M2, TISAX, Cyber Essentials, Purdue Level Security Assessment.
Security Tools & Platforms
RSA Archer, ServiceNow GRC, Splunk, RSA Envision SIEM, Armis, Nozomi, Claroty, Argus/Secure AI IDPS, MS Defender for IoT, NMAP, Nessus, Kali Linux, SIEM/XDR Tools.
Network & Infrastructure Security
Network Infrastructure Architecture Design, Cisco Router/Switch/VPN/IDS Configuration, Wifi Device Configuration, Cyber ROAM UTM, Web Filtering Solution, IPV4 Network Design, DNS, DHCP, VM AD Windows Configuration, Troubleshooting Network Infrastructures, System Security Documentation.
Leadership & Management
Project Management, Program Management, Team Leadership, GTM (Go-to-Market), Capability Development, Strategic Security Program Design, Operational Excellence, Cross-functional Collaboration, Stakeholder Engagement, Business Continuity Management, Disaster Recovery Management, Resource Allocation, Coaching & Mentoring.