Available for Security & GRC engagements
Hi, I'm Khushal Anand
Bridging the gap between Security Operations, Technical Risk Assessment, and Privacy Governance.
About
Security leadership at the intersection of governance and operations.
I build defensible enterprises. From ISO 27001 audits and DPDP privacy workflows to DLP rule engineering and Zero Trust MDM architecture, I move fluidly between policy and packet, translating compliance requirements into controls that actually run in production.
4+
Years in Security & IT
0
ISO 27001 Non-Conformities
100%
Sensitive IP DLP Coverage
30+
Certifications & Awards
Core Competencies
A full-spectrum security practitioner.
Governance, technical operations, and a hands-on toolstack, engineered to ship measurable risk reduction.
GRC
Governance, Risk & Compliance
- Enterprise Risk Assessments
- ISO 27001 & SOC 2 Auditing
- DPDP Act & Privacy Governance
- Third-Party Vendor Risk
- Business Impact Analysis (BIA)
SecOps
Technical Security & Operations
- Vulnerability Management (VAPT)
- Data Loss Prevention (DLP)
- Endpoint Security (MDM Architecture)
- Threat Detection & Simulation
- Network Security
Tooling
Security Toolstack
- Burp Suite · Wireshark · Nmap
- Metasploit
- Google Workspace Admin
- Power Automate
- Hypervisors (Type I & II)
Experience
A chronological build, from labs to enterprise GRC.
Cybersecurity Analyst
Avnet via Softweb Solutions · An Avnet Company
May 2026 – Present
Current
- Executing enterprise security assessments aligned with NIST CSF and ISO 27001 frameworks across global business units.
- Continuous risk register management, identification, scoring, and remediation tracking for active enterprise risks.
- Updating global policy controls and evidence mappings against GDPR, PCI-DSS, and SOX.
- Performing third-party vendor due diligence and security assessments to harden the supply chain.
Certifications & Awards
Credentials that back the practice.
Featured
CAP Award
Appreciation Award for extraordinary enterprise performance
Certified Forensic & Dark Web Analyst (CFDWA)
Ampcus Cyber
Introduction to OSINT
Security Blue Team
Ethical Hacking & Cyber Security (85% A+)
Department of Forensic Science, Gujarat University
Infrastructure Security, Level 1
QA
Defending Active Directory
CodeRed, EC-Council
Introduction to Web Forensics
CodeRed, EC-Council
Let's Talk
Need a partner for security & compliance?
Open to GRC consulting, security operations leadership, and privacy program engagements.