Rajib Das

Director & Head, IT & Cyber Security and Emerging Technologies

About

Highly accomplished and results-driven professional with 22 years of extensive experience in Governance, Risk, and Compliance (GRC), IT/OT/IoT Cyber Security, and Automotive Connected Vehicle Cybersecurity. Proven leader in developing and implementing cutting-edge security solutions, driving strategic initiatives, and managing global teams to enhance organizational resilience and protect critical assets. Adept at leveraging emerging technologies, including Gen AI and Agentic AI, to proactively identify threats, optimize operations, and ensure robust compliance across diverse industry landscapes.

Work Experience

Director & GTM Capability Practice Head, Project and Program Management (IOT/OT/IOMT /Connected Vehicle) Security Practice

NTT Data

Apr 2025 - Present

Kolkata, West Bengal, IN

Led practice development and program management for IoT/OT/IOMT/Connected Vehicle Security, driving service launches and global presales support.

  • Spearheaded the development and launch of IIOT/IOMT/Vehicle Security Practices, establishing new service offerings and market presence.
  • Drove presales support and solution model resourcing across multiple geographies, influencing key customer RFP responses and delivery strategies.
  • Cultivated strategic alliances with product vendors, contributing to GTM initiatives and expanding the sales funnel.
  • Directed skill development and team growth initiatives, enhancing organizational capabilities in advanced cybersecurity domains.
  • Engaged directly with customers to align practice development with delivery, ensuring high client satisfaction and project success.

Senior Director, Project and Program Management (IOT/OT/OIMT/Connected Vehicle) Security Practice Development

LTIMindtree

Oct 2024 - Apr 2025

Kolkata, West Bengal, IN

Served as Senior Director, leading project and program management for IoT/OT/OIMT/Connected Vehicle Security Practice development.

  • Orchestrated the development and launch of critical IIOT/IOMT/Vehicle Security Practices, establishing foundational frameworks.
  • Provided expert presales support and optimized solution model resourcing for diverse global customer engagements.
  • Fostered key alliances with product vendors, contributing to strategic GTM efforts and sales pipeline expansion.
  • Directed comprehensive skill development programs, enhancing team capabilities in emerging security technologies.
  • Facilitated crucial customer discussions, ensuring practice alignment with evolving delivery requirements.

Director, IOT/OT/IOMT and Connected Vehicle Security

PwC India

Apr 2024 - Sep 2024

Kolkata, West Bengal, IN

Directed IoT/OT/IOMT and Connected Vehicle Security initiatives, focusing on capability development and client engagement across diverse industries.

  • Expanded customer base in manufacturing, automotive, and healthcare sectors by effectively presenting IoT/Vehicle security capabilities.
  • Forged strategic vehicle product vendor partnerships (SecureThingsAI, Indexo, Karamba) and developed a 3-year IoT Security business strategy.
  • Led the design and implementation of Connected Vehicle Cyber Labs, creating VSOC, IDPS, and embedded security use cases.
  • Implemented advanced security solutions, including MS Defender for IoT POCs, and integrated Gen AI for enhanced cybersecurity.
  • Drove practice development and skill enhancement for a 60+ member team across India, significantly boosting team expertise.

Principal Cyber Security Consultant/Senior Manager, IOT/OT/Vehicle Cyber Security

Wipro

Feb 2022 - Mar 2024

Kolkata, West Bengal, IN

Led global IoT/OT/Vehicle Cyber Security GRC and cloud security solutions as a Principal Consultant and Senior Manager.

  • Led global delivery of IoT, IIOT, OT, and Industry 4.0 Connected Vehicle Cyber GRC and AWS/AZURE Cloud security solutions.
  • Implemented ICS SOC and Cyber Security EDR Solutions, including IEC 62443 and Purdue-based systems, for clients in airport, railway, oil & gas, and manufacturing industries.
  • Conducted comprehensive Connected Vehicle TARA, Onboard and Offboard Risk Assessments, and developed VOSC Solutions in line with ISO 21434, UNECE 155, 156, ISO 26262, and NHTSA standards.
  • Administered overall IT, Information, and Data Security Operations, ensuring business continuity and compliance with Data Security Standards.
  • Provided strategic consultancy on security requirements, system design, and incident response, ensuring adherence to regulatory and legal requirements.

Lead Cyber Security Consultant & Practice Head

TCS

Sep 2007 - Feb 2022

Kolkata, West Bengal, IN

Led diverse cybersecurity consulting engagements, practice development, and program management initiatives across multiple industries globally.

  • Directed IoT/Connected Vehicle and GRC Security Practice Development, overseeing program and project management for key clients.
  • Managed SOC/SIEM/SOAR MSS, Cloud Risk Assessment, and Compliance Audit projects, ensuring robust security postures.
  • Implemented Third-Party Risk Management (TPRM) and Control Testing solutions using RSA Archer and ServiceNow for major international customers.
  • Ensured vehicle security compliance with UNECE R 155/R 156, CSMS, and SUMS standards through audit preparation.
  • Spearheaded continuous process improvement and automation initiatives across global operations (USA, UK, EU, Middle East), enhancing efficiency.

Network and Network Security Engineer

Epitom Network

Sep 2006 - Aug 2007

Kolkata, West Bengal, IN

Designed, configured, and troubleshot network infrastructure while performing security assessments.

  • Configured and managed Cisco Routers, Switches, VPNs, and IDS, ensuring network stability and security.
  • Designed and troubleshot enterprise network infrastructure architectures, resolving complex technical issues.
  • Conducted network Vulnerability Assessment and Penetration Testing (VA/PT) using tools like NMAP and Nessus.

Systems Support Engineer

Robotics Automotion Pvt Limited

May 2002 - Jul 2006

Kolkata, West Bengal, IN

Provided comprehensive system and network support, including configuration, troubleshooting, and security setup.

  • Managed LAN/WAN network configuration and troubleshooting, ensuring optimal network performance and connectivity.
  • Executed Windows Active Directory installation and security configuration, enhancing system access control and integrity.
  • Performed system and network setup, configuration, and implementation for Windows/Linux environments.
  • Utilized CEH tools, including Kali Linux, for network packet monitoring and troubleshooting, improving security posture.

Education

Information Technology

KSOU

75%

Sep 2014 - Aug 2015

Kolkata, West Bengal, IN

Computer Science & Engineering

SGGS (Government) College of Engineering & Technology, Nanded

70%

Sep 1997 - Aug 2001

Nanded, Maharashtra, IN

Electronics Science

Calcutta University

Sep 1995 - Aug 1997

Kolkata, West Bengal, IN

Science

West Bengal Board of Higher Secondary Education

Sep 1993 - Aug 1995

Kolkata, West Bengal, IN

General Studies

West Bengal Board of Secondary Education

Sep 1992 - Aug 1993

Kolkata, West Bengal, IN

Certificates

CEH (Certified Ethical Hacker)

EC-Council

CCNA

Cisco

MCSA

Microsoft

CISSP Exam Passed

ISC2

CISM (Certified Information Security Manager)

ISACA

CISA (Certified Information Security Auditor)

ISACA

ISO 22301 BCM Internal Auditor

ISO

AZ 900

Microsoft Azure

AZ 500 Security Technology

Microsoft Azure

AWS Certified Architect-Associate

AWS

AWS Security

AWS

ITIL V3 Service Management Foundation Level

AXELOS

PMP

PMI

Checkpoint Firewall Security

Checkpoint

Mastering Gen AI and AI Tools with Prompt Engineering

Inferred

MS Open AI Fundamentals

Microsoft

Awards

Process Excellence Appreciation Certificate

Employer (Inferred)

Jan 2023

Awarded for excellent project delivery and significant reduction of manual errors in Inventory Control.

Skills

Cyber Security & GRC

  • Governance Risk and Compliance (GRC)
  • IIOT/ICS/OT/IOMT Cyber Security
  • Automotive Connected Vehicle Cyber Security
  • DevSecOps (SAST, DAST, IAC, SCP)
  • Container Security
  • Microservices Security
  • KAFKA TOPIC Security
  • Vendor Risk Management
  • Cloud Security Policy
  • DPIA
  • BCM/DR (ISO 22301)
  • Control Testing
  • IT/OT Security Operations Center (SOC)
  • SOC/SOAR Implementation and Monitoring
  • ICS/OT Design/Implementation
  • Application Security (VA/PT)
  • Threat Intelligence
  • Threat Modelling (STRIDE)
  • Vulnerability Management
  • Incident Management
  • Compliance Management
  • Penetration Testing
  • Forensic IT Audits
  • Security Program Management
  • Risk Management
  • Data Privacy (GDPR)
  • Security Administration
  • Cyber Resilience

AI & Emerging Technologies

  • Gen AI Cyber Security
  • Agentic AI Integration
  • Machine Learning Threats/Attacks
  • Prompt Engineering
  • CHAT GPT
  • Claude
  • Gemini
  • Deep Seek
  • Grok
  • Copilot for Security
  • Perplexity
  • Open AI
  • Industry 4.0

Cloud Security

  • AWS Cloud Security
  • Azure Cloud Security
  • AWS DevSec Ops
  • Cloud Infrastructure Security
  • Cloud Risk Assessment
  • IAAS/PAAS/SAAS Platform Security
  • Azure Cloud Platform Services

Automotive Cybersecurity

  • ISO 21434
  • UNECE 155
  • UNECE 156
  • NHTSA
  • AIS
  • ISO 24089
  • ISO 26262
  • Vehicle SOC
  • TARA
  • MS TMT based Threat Modelling
  • Automotive Threat Intelligence Platform
  • On board/Off Board Components Security (ECU, VDC, Flex Ray, LIN, CAN, TCU SOTA, DTC)
  • Auto SAR
  • Sec OC
  • Vehicle IDPS Solution
  • Binary Analysis
  • Software Defined Vehicle (AWS Cloud Car Security)
  • AWS Data Lake
  • ECU Attacks
  • CAN Attacks
  • CSMS
  • SUMS
  • AIS-189
  • AIS-190
  • IEC-63443 AUTO ISAC

Security Standards & Frameworks

  • ISO 27001
  • ISO 22301
  • NCSC NIS CAF
  • GDPR
  • PCI DSS
  • HIPAA
  • SOX 404
  • SOC 2,3
  • NERC CIP
  • NIST
  • CSA CCM 4.0
  • OWASP TOP 10
  • MITRE TTP
  • CYBER-KILL-CHAIN
  • C2M2
  • TISAX
  • Cyber Essentials
  • Purdue Level Security Assessment

Security Tools & Platforms

  • RSA Archer
  • ServiceNow GRC
  • Splunk
  • RSA Envision SIEM
  • Armis
  • Nozomi
  • Claroty
  • Argus/Secure AI IDPS
  • MS Defender for IoT
  • NMAP
  • Nessus
  • Kali Linux
  • SIEM/XDR Tools

Network & Infrastructure Security

  • Network Infrastructure Architecture Design
  • Cisco Router/Switch/VPN/IDS Configuration
  • Wifi Device Configuration
  • Cyber ROAM UTM
  • Web Filtering Solution
  • IPV4 Network Design
  • DNS
  • DHCP
  • VM AD Windows Configuration
  • Troubleshooting Network Infrastructures
  • System Security Documentation

Leadership & Management

  • Project Management
  • Program Management
  • Team Leadership
  • GTM (Go-to-Market)
  • Capability Development
  • Strategic Security Program Design
  • Operational Excellence
  • Cross-functional Collaboration
  • Stakeholder Engagement
  • Business Continuity Management
  • Disaster Recovery Management
  • Resource Allocation
  • Coaching & Mentoring