Kumar Vivek

Presently leading global delivery and presales engagements for advanced cybersecurity programs across telecom, cloud, and critical infrastructure sectors. I manage end-to-end security initiatives in the APJ region—particularly in Singapore and Malaysia—delivering client-centric solutions, technical advisory, and compliance-aligned assessments.

Key Contributions:

Act as the presales lead for cybersecurity solutions, supporting RFPs, workshops, and executive engagements focused on 5G, cloud, and network security.

Drive global delivery of security assessments, architecture reviews, and remediation planning across cloud-native and legacy infrastructures.

Conduct cloud infrastructure security assessments, integrating DevSecOps and runtime protections across hybrid and public cloud environments.

Execute vulnerability assessments, SAST/DAST, and penetration testing, ensuring alignment with NIST CSF, CIS Benchmarks, and regulatory mandates (IMDA, MCMC).

Perform 5G and roaming security risk assessments including SEPP evaluations, protocol testing (SS7, Diameter, GTP), and interconnect threat modeling.

Oversee end-to-end 5G architecture reviews, with emphasis on zero trust principles, API security, and signaling firewall protection.

Provide technical leadership during audits and governance reviews, ensuring regulatory alignment with IMDA, CSA, PCI-DSS, and GDPR.

Implement security automation and orchestration strategies to improve incident response, compliance tracking, and platform resilience.

This role reflects my core expertise in enterprise cybersecurity strategy, client advisory, cloud and telecom security, and technical solution delivery across regulated and high-assurance environments.

Served as Senior Security Advisor and Product Security Lead for Mobileum’s global cybersecurity solutions, supporting clients across telecom, fintech, and banking. I led threat defense strategy and architecture alignment for the company’s flagship Signaling Firewall, driving adoption, customer satisfaction, and platform security maturity.

Acted as the global technical point of contact for critical clients, overseeing incident resolution, product enablement, and regulatory alignment.

Key Contributions:

Directed product security programs for Fortune 500 clients, aligning with GSMA FS.11/FS.19, GDPR, and PCI-DSS.

Designed advanced detection and mitigation strategies for SS7, Diameter, and GTP protocol threats across signaling environments.

Delivered technical briefings and security workshops to CISOs and compliance leaders, promoting trust and driving solution uptake.

Led cloud-native deployments with embedded runtime security controls, resulting in a 40% reduction in signaling fraud.

Managed cross-functional teams for secure product delivery and platform hardening in compliance-sensitive sectors.

Conducted security assessments and platform tuning on Hadoop-based analytics systems to improve threat visibility.

Provided Tier-2 support and acted as the primary escalation point for global customer cases involving fraud, signaling anomalies, and system hardening.

Facilitated governance meetings and roadmap discussions with internal and external stakeholders to prioritize security enhancements.

Utilized tools like JIRA, Confluence, ServiceNow, Hazelcast, RabbitMQ, and NGINX for incident management and platform stability.

This role strengthened my capabilities in product security leadership, client advisory, and delivering scalable security solutions across high-risk industries.

Led cybersecurity operations for large-scale transactional and service delivery platforms used across telecommunications, digital services, and enterprise IT ecosystems. Focused on ensuring platform resilience, secure design, and threat detection through automation and architectural reviews.

🔐 Key Responsibilities & Achievements:
Conducted system hardening, patch lifecycle management, and architectural risk assessments to strengthen the security posture of high-availability service delivery environments.

Implemented secure design principles across distributed infrastructure systems in collaboration with global support and engineering teams, driving improvements in compliance and risk mitigation.

Delivered event-based anomaly detection and security automation workflows, enhancing early threat visibility and reducing incident response time across critical service platforms.

Supported secure deployment and operational assurance of systems handling subscriber data, session routing, billing, and API integrations, applicable to telecom, fintech, and cloud-based service providers.

Actively contributed to incident resolution (CSRs) by analyzing root causes, coordinating escalations, and recommending system-wide security controls aligned with international standards.

This role provided a cross-functional foundation in platform security, secure system lifecycle management, and incident response—all essential for protecting transactional and service infrastructure across regulated industries such as telecom, banking, and public utilities.

Specialized in securing real-time communication platforms used across telecom, IoT, and other critical infrastructure environments.

I delivered Level 2 security support for global clients, ensuring system integrity through secure protocol configurations and trace-level threat diagnostics. My work focused on securing core signaling protocols such as SS7, SCCP, SIGTRAN, MAP, and TCAP—critical for ensuring secure inter-system messaging, identity routing, and transactional data flow.

I conducted Global Title Translation (GTT), MNP routing audits, and KPI anomaly investigations to detect and prevent fraud, spoofing, and interception attempts. I also authored detailed playbooks for trace analysis and built workflows to identify protocol-layer threats like malformed packet injection, unauthorized access attempts, and denial-of-service signals.

My responsibilities extended beyond telecom into broader infrastructure protection. The techniques and controls I implemented were equally relevant in legacy systems used across financial messaging networks, transportation command centers, and industrial IoT platforms—where protocol-based communication remains foundational.

Collaborating with vendors and customer engineering teams, I participated in escalation, incident triage, and proactive patching of systemic vulnerabilities. I aligned my work with evolving international security standards, contributing to the early-stage integration of practices later formalized under GSMA FS.11/FS.19 and NIST SP 800-series guidelines.

Core Skills Applied:
Protocol Security | Legacy System Hardening | Threat Detection & Trace Analysis | Incident Response | Fraud Prevention | Secure Infrastructure Communications | Signaling Security (SS7/SIGTRAN) | Telecom + IoT Security Crossover

This role laid the foundation for my cybersecurity journey—equipping me with real-world expertise in securing critical communication layers applicable across telecom, fintech, and industrial sectors.

Began my career in core network and switch security operations, managing mobile service continuity and network assurance.

Supported MSRN testing, daily switch health checks, and incident closure.

Gained foundational experience in telecom security and customer-facing O&M environments.