Available for Security & GRC engagements

Hi, I'm Khushal Anand

 

Bridging the gap between Security Operations, Technical Risk Assessment, and Privacy Governance.

About

Security leadership at the intersection of governance and operations.

I build defensible enterprises. From ISO 27001 audits and DPDP privacy workflows to DLP rule engineering and Zero Trust MDM architecture, I move fluidly between policy and packet, translating compliance requirements into controls that actually run in production.

4+
Years in Security & IT
0
ISO 27001 Non-Conformities
100%
Sensitive IP DLP Coverage
30+
Certifications & Awards
Core Competencies

A full-spectrum security practitioner.

Governance, technical operations, and a hands-on toolstack, engineered to ship measurable risk reduction.

GRC

Governance, Risk & Compliance

  • Enterprise Risk Assessments
  • ISO 27001 & SOC 2 Auditing
  • DPDP Act & Privacy Governance
  • Third-Party Vendor Risk
  • Business Impact Analysis (BIA)
SecOps

Technical Security & Operations

  • Vulnerability Management (VAPT)
  • Data Loss Prevention (DLP)
  • Endpoint Security (MDM Architecture)
  • Threat Detection & Simulation
  • Network Security
Tooling

Security Toolstack

  • Burp Suite · Wireshark · Nmap
  • Metasploit
  • Google Workspace Admin
  • Power Automate
  • Hypervisors (Type I & II)
Experience

A chronological build, from labs to enterprise GRC.

Cybersecurity Analyst

Avnet via Softweb Solutions · An Avnet Company

May 2026 – Present

Current

  • Executing enterprise security assessments aligned with NIST CSF and ISO 27001 frameworks across global business units.
  • Continuous risk register management, identification, scoring, and remediation tracking for active enterprise risks.
  • Updating global policy controls and evidence mappings against GDPR, PCI-DSS, and SOX.
  • Performing third-party vendor due diligence and security assessments to harden the supply chain.
Certifications & Awards

Credentials that back the practice.

Featured
CAP Award
Appreciation Award for extraordinary enterprise performance
Certified Forensic & Dark Web Analyst (CFDWA)
Ampcus Cyber
Introduction to OSINT
Security Blue Team
Ethical Hacking & Cyber Security (85% A+)
Department of Forensic Science, Gujarat University
Infrastructure Security, Level 1
QA
Defending Active Directory
CodeRed, EC-Council
Introduction to Web Forensics
CodeRed, EC-Council
Let's Talk

Need a partner for security & compliance?

Open to GRC consulting, security operations leadership, and privacy program engagements.