Sairam Jetty

Melbourne,Australia

Summary

Cyber Security Transformation Professional with over a decade of expertise in Security Architecture, Governance, and Technical Implementation. Demonstrates extensive experience in Zero Trust, Application & Cloud Security, and Identity & Access Management, driving security transformation for both government and enterprise environments. Passionate about leveraging cutting-edge methodologies to enhance security posture and compliance, ensuring robust protection against evolving threats.

Overview

years of professional experience

Certification

Work History

Senior Security Analyst / Acting Security Architect

Department of Transport, Victoria

03.2023 - Current

Developed and executed the Department’s Cyber Security Roadmap, aligning with organizational strategy, OVIC guidelines, and VPDSS/VPDF frameworks.
Presented security strategy and progress to governance committees, providing executive visibility and enabling risk-informed decision-making.
Directed change management and organization-wide security communications, ensuring adoption of initiatives and building a culture of security awareness.
Oversaw enterprise-wide uplift of maturity, reducing audit findings and improving risk posture.
Standardized penetration testing and vulnerability management practices, streamlining remediation and strengthening assurance reporting.
Implemented enterprise IAM and PAM programs (CyberArk, IDAM Standards), safeguarding access and privileged credentials.
Directed deployment of data security and compliance initiatives through Microsoft Purview, ensuring compliance with data protection obligations.
Championed Zero Trust adoption, leading implementation of Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) under a ZTNA architecture.
Improved Microsoft 365 security posture, leading a Secure Score uplift program across collaboration platforms.
Developed and formalized the SOC Operating Model, defining roles, responsibilities, and escalation paths for effective monitoring and response.
Authored and implemented enterprise-wide Incident Response Playbooks, ensuring consistent, repeatable, and timely responses to cyber threats.

Principal Security Consultant

Trusted Impact Pty. Ltd

Delivered security roadmaps for government and enterprise clients.
Conducted cloud security assessments (AWS Inspector, Nessus, PAWS).
Supported compliance (ISO, NIST, Essential 8) and authored security standards.
Led threat modelling (MITRE ATT&CK, STRIDE, OWASP) and Secure SDLC adoption.
Performed red team, penetration testing, and secure code reviews.
Developed incident response playbooks and led remediation workshops.
Presented findings and recommendations to executives and boards.

Penetration Tester & Security Analyst

Zimbani Pty. Ltd (Acquired by Deloitte)

Conducted web, mobile, API penetration testing (OWASP Top 10).
Performed red team CTF-style assessments for enterprise clients.
Designed vulnerability management programs and remediation strategies.
Led secure code reviews using Checkmarx and HP Fortify.
Produced and presented tailored security audit reports.

Security Consultant & Team Lead

Paladion Networks (Acquired by ATOS)

Led a 10-member security testing team managing $1.2M budget for a major UAE telecom.
Delivered ISO & PCI compliance support for global clients.
Conducted penetration testing (Web, Mobile, API, Network, Wireless, ATM).
Performed secure architecture reviews, firewall audits, and exploitative testing.
Authored reports and remediation guidance for government, banking, and industrial clients.

Education

Bachelor of Technology - Computer Science & Engineering

JNTU Hyderabad

Skills

Security Architecture
Governance, Risk & Compliance
Identity & Access Management
Zero Trust Security
Data Security
Application Security
Incident Response

Cloud Security
Vulnerability assessment
Endpoint security
Red Teaming
Penetration Testing
Vulnerability Management
Security Awareness