Aditya Vignesh Ram Guruvaiya Kesavaraj

At KPMG, I served as OT Cybersecurity Manager, leading complex, large-scale assessments and project delivery across critical infrastructure clients in the Middle East. My work spanned risk-based OT security assessments, vulnerability management, and board-level reporting. I collaborated with cross-functional teams, mentored junior staff, and managed multimillion-dollar projects—ensuring strategic alignment with enterprise security and compliance goals.

• Led Risk-Based Cybersecurity Assessments: Directed the PMO unit in conducting OT cybersecurity assessments across 60+ sites for the largest oil & gas company in the UAE, using a custom Unified Control Framework and delivering executive-level risk reports and cybersecurity dashboards to inform board-level decisions, ensuring alignment with governance and compliance requirements.

• Identified Critical Vulnerabilities & Developed Remediation Plans: Pinpointed security gaps in OT systems, providing actionable recommendations to ensure compliance with standards like NIST CSF and IEC 62443, enhancing regulatory compliance and risk management strategies.

• Collaborated Across Stakeholders: Partnered with IT, OT operations, and engineering teams to address audit findings, ensuring alignment with business objectives and effective resolution of security issues, fostering cross-functional collaboration.

• Led OT Assessments for Airports: Directed comprehensive IT/OT assessments for an air navigation company in the UAE, identifying gaps and delivering recommendations to enhance compliance with international OT standards and improve governance frameworks.

• Oversaw Multi-Million-Dollar Cybersecurity Projects: Managed end-to-end delivery of large-scale cybersecurity consulting projects, including financial tracking, budgeting, and resource allocation to ensure timely completion within scope and cost constraints, reinforcing business continuity and disaster recovery measures.

During my tenure at PwC, I progressed from Associate to Manager, delivering end-to-end cybersecurity services across IT and OT environments. I conducted high-impact global OT security assessments, risk-based audits, and red team testing for major clients across sectors like government, finance, and manufacturing. I developed actionable recommendations to enhance resilience and align with regional and international standards, working closely with senior leadership to ensure strategic alignment. I also developed cybersecurity strategies and frameworks, mentored junior staff, and championed a culture of continuous learning and innovation.

• Led High-Impact OT Security Assessments: Conducted comprehensive OT security assessments for a leading chemical manufacturer, developing technical checklists, custom scripts, and automated configuration reviews to ensure compliance with regional and international regulations, enhancing cybersecurity compliance and oversight.

• Delivered Risk-Based Cybersecurity Audits: Conducted detailed risk-based cybersecurity audits across IT and OT environments for major clients, identifying vulnerabilities in networks, applications, and cloud infrastructures, and recommending improvements to mitigate risks, aligning with risk compliance and management frameworks.

• Actionable Recommendations for Security Improvements: Provided clear, actionable recommendations to address audit findings, enhancing cybersecurity resilience across industries such as government, finance, and manufacturing, ensuring compliance with governance and regulatory standards.

• Developed Cybersecurity Strategies & Frameworks: Crafted comprehensive cybersecurity strategies, roadmaps, and enterprise security architectures for government agencies and financial institutions, ensuring alignment with standards such as ISO 27001, NIST CSF, and regional frameworks like NCA and HCIS, supporting digital governance and compliance audits.