Salil leads the Security Operations and Automation capability in KPMG as part of the client-facing Corporates Consulting team. He has more than 13 years of experience and has worked with more than 40 clients on Security Operations and various other cyber security domains in the UK, Europe, Asia and the Middle East.
During his 10 years at KPMG, Salil has led and worked on various engagements such as:
- Developed and leading on KPMG’s Powered Cyber - SecOps offering which helps organisations in operationalising their SOAR solutions in an accelerated manner while adhering to best practices. Designed and implemented SOAR solution for various sectors, including a multinational retailer for automating security incident response and gamifying vulnerability response processes.
- Designed target operating models, governance mechanisms and strategy for security operations and vulnerability management teams of various clients.
- Comprehensive review of Security Operations function and SIEM platform for multiple companies, including for a large European banking client.
- Strategic security sourcing - RFP designing, defining technical specs, vendor evaluation and implementation oversight of 10+ security tools for multiple clients, including tools such as SIEM, DLP, FRM, VM, UEBA, PAM, IDAM, Anti-APT, Anti-DDoS and ATM Terminal Security.
- Sourcing Managed Security Providers(MSSPs) for multiple clients, including a large insurer & FMCG in Europe.
- Designed risk led use cases for SIEM using threat modelling, leading practices and MITRE ATT&CK framework.
- Architected and implemented Symantec DLP, Microsoft365 DLP and Azure Information Protection for a client.
- Performed Cyber Maturity Assessments (CMA) using NIST CSF and ISF Framework.
- Developed risk, control, security frameworks applying various best practices, including COBIT5.
- Vulnerability Assessments, penetration testing and configuration audits.
- Involved in multiple security due diligences as part of M&A deals.
- Developed IT, Security & Infra-Strategy as part of one of the largest IT sourcing deals in Asia.
- Other experience includes IT Audits, ISO 27001 reviews, forensics investigation, fraud risk management solutions and related domains.
Salil has also been involved in other KPMG initiatives for making schools cyber aware, corporate charity work, innovation centre, team welfare, learning & development etc. He has also imparted security trainings within KPMG and to senior executives at various clients.
Prior to joining KPMG, Salil has worked in diverse fields such as information security, data privacy, risk assessments, IT regulatory compliance, financial and statutory audits.
