ARAVIND SUBRAMANIYAN

Affiliations & Qualifications

Riyadh, Kingdom of Saudi Arabia
+966-567499508 First Class bachelor’s degree in Electricals and
Electronics Engineering (B.E) from Anna
arvinophoenix@live.com / https://www.linkedin.com/in/aravinds7
University, India (2009- 2013)

SUMMARY
Associate Member of the Fortinet
Developer Network (2018 -Present)
• High-achieving Cybersecurity Architect / Engineer who has
decade plus years of experience and specializing in creation of Member of the Fat pipe Developer
business strategy, planning, architecture design, pre-sales and Network (2015-2017)
deployment of large complex global deployment of project initiatives
in Operational Technology (OT) and Enterprise IT Infra, Cloud Member of Cloud Security Alliance
(2022-Present)
Security, Network & Cybersecurity Architecture.
• Assisted Operational Technology clients with design efforts to Member of SABSA Institute
achieve Zero Trust Security segmentation utilizing the Purdue (2021-Present)
Model and IEC 62443 as reference.
• Seasoned Senior Manager / Enterprise Architect specializing in Technology Affiliations
project management and assessment of deployment of several
CISM – Certified Information Security Manager
large complex Cybersecurity and Network Architecture for
Operational Technology, IT, Hybrid Cloud, Enterprise IT, Critical CCSP- Certified Cloud Security Professional
Infrastructure (hospitals, manufacturing, oil/gas/energy, etc.) GIAC-GICSP- Industrial Cyber Sec
environments. Professional (Pursuing)
• Utilization of Cybersecurity Architecture and Frameworks such as ISA/IEC 62433 CS Fundamental & Risk
SCADA, ISA/IEC-62443, NERC CIP, Zero Trust, NIST, DISA
Specialist
STIG, ISO, CIS, (and more) to assure my clients are aligned with
the frameworks and standard and/or creating a roadmap in WAF- F5 & Fortinet
attainment of alignment to these philosophies. Nozomi Network Certified
SPLUNK Certified Power User (#141424 V7)
HIGHLIGHTS Check Point Certified Security Admin
Cyber Ark PAS Admin & Trustee
• As a token of gift for reported major bugs & feature enhancements on
Fortinet Product. Fortinet Inc., rewarded to attend “Accelerate18 the Air Watch/ VMware Workspace ONE v19.X
Cosmopolitan Network & Info Sec expert event in Las Vegas” SABSA -Enterprise Security Architect
• Achieved Key Employee of the year (FY ’19-’20) for taken initiatives and AWS SA-Associate Completed
created Business value during the pandemic to support organization
Fortinet (NSE4 Enterprise Firewall & NSE7 SD-
success, rewarded by Hitachi Systems India, MD.
WAN & OT)
• Achieved Key Employee of the (FY’21-’22) for taken initiatives on
positioning emerging cyber security technology and onboard of new client Tools
logo’s, awarded by Hitachi Systems, SVP & Director Japan.
SIEM- Splunk ES, Looker, Fortinet & Log Rhythm
RESPONSIBLITIES
Applications- Nmap, Iperf & Jperf, Siege
• Analyze the business requirements to create security solutions for OT tester
environment, financial, healthcare and enterprise Infrastructure. VA- Rapid7, Qualys & Open VAS
• Works closely with business impact issue, Security risk mitigation, threat
Packet debugger- TCPDUMP & Wireshark
management and malware analysis.
• Providing technical designs, implementations, and troubleshooting of cyber Scripting Language- Python & JSON
security & network projects co-operating with internal parties, vendors, and
partners to customers. API/IDE- Eclipse, Python, Selenium
• Prepare technical documents in response to requests for information (RFI) &
requests for proposals (RFP) Routing Static & Dynamic
• Providing technical consultation, POC’s and solutions mainly OT Technology- (ICS-IDS/IPS of OT, IP
cyber security projects to customers Tables, Load Balancing, Wan
• Providing pro-active security solutions to develop secure network Optimization, Router Clustering, CASB,
Infrastructure. XDR, SD WAN, SASE, NGAV,
• Involved in automation scripts preparation for networks audit and security PAS/PAM, DLP, Endpoint Security, ATP, Cloud
testing. Infra- AWS, NG Firewall, MDM, Firewall
Analyzer, ESG, Data Classification)
• Ensure the overall quality of Security integrations & operations, Security
solutions, Audit, risk assessment and compliance of infrastructure. Products- Palo Alto, Wallix, Nozomi,
• Providing support to other stakeholders in terms of troubleshooting, clarity of Dragos, Claroty, Checkpoint, Rapid7,
services and customer meetings. Microfocus, Fortinet, Beyondtrust,
• Works with Global & Domestic sales teams to ensure new technology TrendMicro, CyberArk, Forcepoint,
AirWatch, Firemon, Fatpipe, McAfee,
importance for OT, fintech, healthcare and enterprise environments and
Crowd strike
become the first choice for our most strategic customers.
 2|Pa ge A R A V I N DS
KEY EXPERIENCE

(Apr’2023- Present) Cyber Security Architect-

Bett Al Anzama Al Raqmi for ICT & OT (formerly known as Digital Tec Era) An Al Gihaz Holding Group, Riyadh, KSA

Managing a Solutions Engineering & Post-sale team of Middle East Region, handling, mainly OT, and enterprise clients
across the region. Performing Security Gap & Risk assessment, blue team & Security service integrations for client infrastructure
and identify the gaps to provide the pro-active suggestion to implement the robust security control to protect against the modern
vulnerabilities. Organizing and. operating Cyber Security Resilience Center functions to support the clients round the clock with
onshore base for OT clients.

• Leading cybersecurity design & implementation projects of Saudi Electricity company, Aramco & Private PIF Funded IPP Projects.
Responsible for end-to-end OT cybersecurity scope on the projects (from concepts to handover to operations team).

• Responsible for Designing, Developing, and implementing ICS/OT Cybersecurity architecture for implementation of ICS/OT
cybersecurity technologies, regulations, policies & procedures, international standards, and industry best practices in coordination
with Automation system OEMs/Suppliers. Preparing Cybersecurity Requirements Specification. Preparing Zone and Conduits
diagrams (Purdue level diagram). Preparing and updating OT Asset register, HW BOM / SW BOM (Asset Inventory) and Conducting
Cybersecurity-FAT for ICS/OT systems. Co-ordinate with engineering, IT teams, safety, operations, and maintenance teams.

• Performing 3rd Party Cybersecurity Risk Assessment workshop for mega scale project in regulated environment (Electrical
substation & , Solar PV, Power generation plant). Participation in initial and detailed design ICS/OT Cybersecurity Risk Assessment.
Providing inputs/recommendations to reduce residual risk by taking credits of current/as designed security controls and additional
recommendations as needed to reduce risk level.

• Responsible for integration of OT components (Level-3 and below) with OT DMZ zone at level 3.5 for various technologies (OT
Firewall, WSUS, AV, whitelisting, SIEM, NMS, AD/DC (IAM), PAM, Passive network monitoring solution, Vulnerability management,
Asset Management, GPS Time clocks, and Secure Remote Access, etc).

• Co-ordinating with security appliance vendors /OEMs for training and proof of concept (PoC) testing on various cybersecurity
appliances (i.e., Waterfall unidirectional Gateways and Belden Eagle 40 Firewalls). Configured Tofino Firewall for implementing
specific Modbus TCP/IP rule enforcement and tested it during C-FAT.

• Leading Cybersecurity Posture/Gap assessment (Conducting physical walkthrough, review physical controls, review environmental
controls, review architecture diagrams, conducting interviews with operations and maintenance team by utilizing custom
spreadsheets questioners), Passive Vulnerability Assessment using Cyberx Tool (Microsoft Defender for IOT) and other
configuration reviews, Active Assessment using NMAP and Tenable (Port Scanning & Vulnerability assessment), review of system
configurations. Preparing spider web charts, weekly/monthly project progress reports and presentation of assessment results with
client.

Key Achievements –

• Played Vital role on Designing & provided cost effective redundant CS solution of PIF 2 Funded Al Shoibah Hold Co 2.6
GW IPP PV Plant OT Cyber Security scope of 13 SS & CCR.

• Won Qiddiya SEC 380 KV & 132 KV group of 5 Sub stations.

(Mar’2022- Mar’2023) Sr. Security Consultant (Systems Engineer-2)

Fortinet Inc. India & Sri Lanka

Understand and effectively present Fortinet security platform and solutions. Create and deliver compelling demonstrations of
Fortinet products and solutions. Educate customers and partners on the modern network security landscape. Identify and qualify
new opportunities and support technical pre-sales activities to opportunity closure. Expand the Fortinet deployed base within
existing accounts. Enable and leverage channel partners and work successfully in a channel-driven sales model. Create evaluation
test plans with customers and lead the evaluation process to a successful conclusion. Assist customers through the support
escalation process. Identify problems in customer environments, effectively engages customers at the technical field and technical
management levels. Effective in customer-facing engagement and manage the relationship with C-suite people to till ground level
technical engineers.
3|Pa ge A R A V I N DS
KEY EXPERIENCE

Key Achievements –

• Won India’s one of the largest Retail companies deal by provided POC and technical expertise to replace the
MPLS link to use Fortinet SD-WAN securely for more than 100+ locations.

• Won India’s 7th largest Educational University deal by provided technical demonstration on Fortinet NGFW &
Fortinet Identity solution to secure the students BYOD.
• Received SE Award of the South India from Country Director of Systems Engineering for grasping the Fortinet
ecosystem to deliver the solution in short span of time.

(Sep’2019- Mar’2022) Manager- Systems Engineering

Hitachi Systems India & Singapore

Managing a pre-sales of South India/East Asia region, handling BFSI, healthcare and enterprise clients across the region.
Performing Security Gap & Risk assessment for client infrastructure and identify the gaps to provide the pro-active suggestion
to implement the robust security control to protect against the modern vulnerabilities.
Ensure security and compliance of the systems, processes and solutions with internal standards, industry compliance standards
and best practices. Assist and mentoring operations engineers by providing prioritization and follow-up on security-related tasks.
Integrated and proposed solutions on various cyber resilience products & SOC Set-up, also performing POC’s and demo.

Key Achievements -

• Won India’s 5th largest public sector banks (DLP, Proxy and Data Classification) bid, which has more than 50 K+
endpoints. Provided efficient design and assisted technical team for the successful implementation. Received
appreciation from Bank Management for the successful solution/integration.

• Won largest pharmaceutical company deal by provided POC and technical expertise to secure the outdated OS by
HIPS/Virtual patching solution for Operational Technology environment.

• Won Multinational Hospital deal and helped them to achieve the health care compliance by integrating DLP suite
solution. Performed POC on DLP and provided pro-active suggestions for their endpoint/network vertical to acquaint
other technologies.

• On boarded 5 new logos on enterprise & OT vertical and introduced many cyber resilience technologies.

• Received appreciation from one of the bank managements for solution the complex Proxy chaining and Web DLP set-up.

(Jan’2017 –Sep’2019) Technical Specialist- Solution Advisor/GSOC Ops Management

HCL Technologies Inc., India & USA (Hybrid)

Provided solutions to multiple Global clients’ large enterprise infrastructure, which has more than 2250+ Fortinet NGFW.
Governing various security appliances, which includes Fortinet, Check Point, Palo Alto, Proof point, Cyber Ark (IAM) and
Cloud Path. Performing periodic vulnerability assessment for infrastructure to patch- up and mitigating the vulnerable services.
Creating adaptive automation scripts for manage security devices configuration in terms of audit & compliance by using
Firemon Tool. Creating and developing elastic search query for historical dashboard to retrieve analytical reports on traffic,
threats, NAC, systems, authentications, and VPNs for all security devices through Log Rhythm, Looker, Splunk & Kibana
elastic big data engines. Followed Security framework process to fulfil the business requirements and maintained the robust
posture of security services. Solution and architected large enterprise network MFA, NGFW & PAS Solution for more than 500
thousand end points. Played Technical Account Manager- Solution Advisor role and managed team to achieve the Key areas
of client requirement, performed POC, positioned security controls, security gap assessment and global transition for new
accounts.
4|Pa ge A R A V I N DS
KEY EXPERIENCE

(May’2014 – Jan’ 2017) Network Engineer- Pre-Sales/QA & Product Support

FatPipe Networks Inc., India & USA (Hybrid)

Handled and technically supported for all Fatpipe products for international clients, mainly from US, Europe & Eastern
Asia. Organized UK & APAC technical event of Fatpipe SD-WAN and trained partners on Fatpipe products. Created product
portfolio, installation & solution guide of Fatpipe products. Performed POC for notable enterprises on SD-WAN, Wan opt &
Router Clustering Technologies. Played solution associate & support role to deploy Fatpipe product for enterprise
networks, given brainstorm solution for complex infrastructure deployment.

Managed Own DevOps QA Environment along with various network & security appliances to perform continuous core
Fatpipe product testing. Developed Python & TCL automation scripts to perform user interface and core feature stress
testing via Selenium IDE.

Key Achievements-

• Won largest retail clothing company deal by depicting competitive analysis of MPLS & ISP utilization
and provided POV on Fatpipe’s WAN clustering technology.

• Won US Government Agency deals for showing values on Smart DNS and Inbound Load Balancing
technology.

(Jun’2013 – May’2014) Management Trainee- Operations OT – Intelligent Infra Management System Engineer
SUN TV Networks, India

Operated and Maintained CISCO NBM and Catalyst Switch. Coordinated with CISCO Intelligent Infra Management
solutions and its implementation on data center. Performed L2 level network troubleshooting on NCE, ADS and Switches.
Asset log management for Infra IP devices and solution provider for Identity Management team. Daily status reporting on
end services and configuration back-up of all assets.

PERSONAL DETAILS

Marital Status - Married

Resident/Passport No - W5849477/ Transferrable Iqama

Languages Known - Read/write & Spoken -English

Spoken-Arabic (Beginner)