Shivani Thakur
Cyber Security Consultant
Melbourne,Melbourne
Summary
Cybersecurity leader with over 13 years of expertise in vulnerability management, risk analysis and prioritization, cloud security posture management, secure architecture, secure coding practices, and risk strategy across diverse sectors including healthcare, finance, mining, logistics, petroleum, and telecom.
Overview
13
13
years of professional experience
Work History
Exposure Management Specialist
Bupa
08.2023 - Current
- Reduced operational costs by identifying improvement areas and implementing cost-saving measures.
- Oversaw budget planning and financial analysis for accurate forecasting and prudent decision-making.
- Delivered projects on time through effective resource allocation and time management.
- Managed client relationships by maintaining open communication and promptly addressing concerns.
- Led discussions to solve problems, resulting in practical solutions.
- Established key performance indicators to measure team success and enhance overall performance.
- Conducted regular operations reviews to identify further improvement opportunities.
- Generated reports that detailed findings and actionable recommendations.
Attack Surface Management Lead
Bupa
03.2022 - 07.2025
- Lead strategic and operational initiatives to reduce cyber risk across Bupa’s digital estate.
- Implemented Unified Vulnerability Management framework integrating Tenable, Qualys, and ServiceNow VR.
- Managing entire lifecycle of Vulnerability Management covering multiple aspects like: Attack Surface Visibility, Risk Assessment & prioritization, Remediation Coordination, Continuous monitoring, reporting and communication and collaboration.
- Automated reporting and ticketing workflows, reducing manual effort by 80%.
- Enforced exemption management framework across ANZ assets.
- Delivered executive dashboards translating technical risk into business impact.
- Collaborated with IT, DevOps, and security teams to drive timely remediation.
- Aligned vulnerability posture with ISO 27001 and APRA CPS 234 standards.
Cyber Security Professional
Infosys
07.2012 - 02.2022
- Worked with various clients in sectors like Finance, Petroleum, Logistics, Mining and Telecom.
- Worked on IDS, IPS, SEIM solution, DLP, WAF, vulnerability management solutions and various ticketing tools.
- Conducted risk assessments and compliance scans aligned with PCI-DSS.
- Delivered secure code training and remediation workshops for development teams.
- Provisioned and hardened 4600+ cloud servers across AWS and Azure environments.
- Deployed IDS/IPS and DLP systems to safeguard sensitive data and ensure business continuity.
Education
Masters of Computer Applications - MCA
Panjab University
01.2012
Bachelor of Computer Application - BCA
Panjab University
01.2009
Skills
- Vulnerability Management ( Qualys, Tenable, Wiz, Checkmarx, Appscanner etc)
- Threat Intelligence & Risk Management
- Regulatory compliance/framework (ISO 27001, APRA CPS 234, SOCI
- CI/CD Security Integration, Data Loss Prevention, Endpoint Detection and Response
- Cloud security posture management
- Stakeholder engagement, Problem-solving skills, Quick Adaptability and flexibility
VALUES DRIVEN
- Resilience: Proactively identified security gaps to strengthen the organization’s defense posture
- Accountability: Maintain clear visibility and ownership of vulnerabilities through structured reporting and remediation workflows
- Adaptability: Continuously evolve detection and response strategies based on emerging threats and technology shifts
- Trustworthiness: Prevented exfiltration of data to preserve client and stakeholder trust
- Strategic focus: Prioritized risks based on business impact, enabling smarter resource allocation and mitigation planning
- Ethical Commitment: Committed to legal and regulatory standards to ensure responsible and lawful operations
- Reliability: Delivered consistent, auditable compliance processes that support internal governance and external assurance
Accomplishments
🔍 Vulnerability Management
- Achieved a 40% reduction in exploitable vulnerabilities by implementing proactive scanning and remediation workflows.
- Strengthened client security posture through continuous monitoring and adaptive threat intelligence integration.
- Enhanced accountability by introducing automated reporting dashboards for vulnerability tracking and resolution metrics.
- Prevented potential data breaches by deploying DLP policies that reduced unauthorized data transfers by 60%.
- Built trust with clients by ensuring zero incidents of sensitive data exposure across monitored environments.
- Improved incident response time by 30% through streamlined alerting and containment procedures.
- Enabled strategic decision-making by developing a risk scoring model that prioritized threats based on business impact.
- Increased stakeholder engagement through transparent risk reporting and tailored mitigation recommendations.
- Reduced high-risk exposure by 50% through targeted remediation plans aligned with organizational priorities.
- Achieved full compliance with ISO 27001 and GDPR across multiple client environments through rigorous audit preparation and control implementation.
- Delivered reliable compliance documentation that passed third-party audits with zero major findings.
- Strengthened governance by embedding continuous compliance checks into operational workflows.
Certification
- CISM
- ISO27001 Lead Auditor
- Rapid7 InsightVM Certified Administrator
- Qualys VM Specialist
- Qualys IT Asset Inventory & Management
- Certified Ethical Hacker
- Oracle Certified Associate
Awards
- Security Champion of the year
- Cyber Security Tiger Team Star
- Mentor of the Quarter
Timeline
Exposure Management Specialist
Bupa
08.2023 - Current
Attack Surface Management Lead
Bupa
03.2022 - 07.2025
Cyber Security Professional
Infosys
07.2012 - 02.2022
Masters of Computer Applications - MCA
Panjab University
Bachelor of Computer Application - BCA
Panjab University
Similar Profiles
Abating DengAbating Deng
Personal Care Assistant at BupaPersonal Care Assistant at Bupa
Toni LawaiToni Lawai
Cleaner at BupaCleaner at Bupa
Kieran WinterKieran Winter
QAanalyst at BupaQAanalyst at Bupa
Kanwaljeet KaurKanwaljeet Kaur
Personal Care Assistant at BupaPersonal Care Assistant at Bupa
Shannon SagayarajShannon Sagayaraj
Front End, Produce and Grocery Team Member at WoolworthsFront End, Produce and Grocery Team Member at Woolworths