Nitai Mandhyan is a Vice President within Stroz Friedberg’s global Cyber Proactive practice, leading complex client engagements for some of the world’s most prominent companies. Mr. Mandhyan is responsible for developing innovative security strategies in order to further clients’ business objectives while addressing the evolving threat landscape. He brings over ten years of experience as a leader in cyber security strategy, security operations, and architecture assessments. Mr. Mandhyan assists clients with evaluating enterprise security challenges including assessments of their security strategy, cloud strategy, security architecture and proactive incident response.
Prior to joining Stroz Friedberg, Mr. Mandhyan was employed with Barclays where he was a Security Analyst within the company’s Global Information Security team. In this role, Mr. Mandhyan dealt with the information security challenges of a global financial organization and provided technical expertise in the areas of application security, security engineering and operations. He was responsible for architecture and design reviews of financial applications, and provided application security advisory to the application development teams.
During his tenure at Barclays, Mr. Mandhyan also worked as a Network Engineer and as an Incident, Problem, and Change Manager for major incidents and service outages.
Mr. Mandhyan earned a Masters in Information Technology from Rensselaer Polytechnic Institute and a Bachelor’s degree in Computer Science from University of Pune, India. He is a Certified Information Systems Security Professional (CISSP), a Certified Information Security Manager (CISM), and he holds the GIAC Penetration Tester (GPEN), GIAC Exploit Researcher and Advanced Penetration Tester (GXPN), GIAC Certified Forensic Examiner (GCFE) and GIAC Network Forensic Analyst (GNFA) Certifications.
Mr. Mandhyan is also a member of the GIAC (Global Information Assurance Certification) Advisory Board. He has collaborated with the Financial Services Information Sharing and Analysis Center (FS-ISAC) to develop cyber-attack scenarios against the wire transfer payment systems for their Cyber-Attack Against Payment Systems tabletop exercises in 2016, 2017 and 2018.