Pradeep Bhat — Director of Engineering

As a passionate Security leader, I specialize in employing both offensive and defensive strategies to pinpoint and fortify security gaps in products and infrastructure. I am currently positioned as the Security Engineering Manager at Groww, a prominent Fin-Tech organization where I lead and oversee critical aspects of our cybersecurity initiatives. In this role, I lead dynamic teams of Product Security Engineers and Cyber Defence Analysts. Join me as I unfold the chapters of my professional narrative. - Responsible for implementing and overseeing a comprehensive cybersecurity program, ensuring strategic alignment with overarching business objectives. - Lead and manage Product Security Enhancement projects, actively fortifying the security posture of digital assets. - Playing a crucial role as the primary security contact and trusted adviser for diverse business functions, including leadership, engineering, product, IT, HR, Finance, and Legal. - Excel in stakeholder management across Engineering, Product, DevOps, and Executive teams, ensuring seamless alignment of security initiatives with development goals. - Demonstrate proficiency in mastering security automation, driving its implementation within CI/CD pipelines to enhance operational efficiency and resilience. - Champion initiatives for elevating cloud security standards, actively ensuring a robust and secure digital environment. - Leverage specialized expertise in Security Information and Event Management (SIEM), effectively utilizing threat intelligence for proactive defense. - Conduct comprehensive reviews to enhance cloud security postures and systematically mitigate risks. - Advocate for a Secure Software Development Life Cycle (SDLC), actively promoting and implementing practices such as Threat Modeling, Architectural Review, PRD Review, and Security by Design. - Spearhead and oversee the Bug Bounty Program, orchestrating ethical hacking initiatives to uncover and address potential security vulnerabilities. - Define and execute strategies for Digital Risk Protection, encompassing Brand Monitoring, External Attack Surface Monitoring, and proactive prevention of data leaks. - Provide leadership and mentorship to a dynamic team of Product Security Engineers and Cyber Defence Analysts, fostering a culture of excellence in security practices Join me on this journey of fortifying digital landscapes and collectively elevating security standards.

Stackforce AI infers this person is a cybersecurity expert in the Fintech industry with a focus on secure software development.

Location: Bengaluru, Karnataka, India

Experience: 11 yrs 6 mos

Skills

Cyber Defense
Security Management
Data Security
Secure Sdlc
Threat Modeling
Penetration Testing
Vulnerability Assessment

Career Highlights

Expert in cybersecurity program implementation and management.
Proven track record in leading security teams and initiatives.
Specialized in cloud security and secure software development.

Work Experience

Groww

Senior Engineering Manager - Security (11 mos)

Engineering Manager - Security (2 yrs 11 mos)

Hopscotch

Manager - Security (6 mos)

Security Lead (2 yrs 3 mos)

Ola (ANI Technologies Pvt. Ltd)

Security Engineer II (1 yr 8 mos)

Security Analyst (11 mos)

EVRY India

Software Engineer (1 yr 10 mos)

Associate Software Engineer (9 mos)

Education

Bachelor of Engineering (BE) at Jawaharlal Nehru National College of Engineering, Shimoga

PCMB at DVS Independent College

National high School at National High School

Pradeep Bhat

Director of Engineering

Bengaluru, Karnataka, India11 yrs 6 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Expert in cybersecurity program implementation and management.
Proven track record in leading security teams and initiatives.
Specialized in cloud security and secure software development.

Stackforce AI infers this person is a cybersecurity expert in the Fintech industry with a focus on secure software development.

Contact

Skills

Core Skills

Cyber DefenseSecurity ManagementData SecuritySecure SdlcThreat ModelingPenetration TestingVulnerability Assessment

Other Skills

API SecurityAWS SecurityApplication SecurityCC++Cloud SecurityCollaborative Problem SolvingDesign ReviewDigital Risk ProtectionEthical HackingHTMLInformation SecurityJavaJavaScriptLeadership

About

Experience

Groww

2 roles

Senior Engineering Manager - Security

Promoted

Apr 2025 – Present · 11 mos · Bengaluru, Karnataka, India

Security ManagementCyber DefenseCloud SecurityStakeholder ManagementSecurity Automation

Engineering Manager - Security

Jul 2022 – Jun 2025 · 2 yrs 11 mos · Bengaluru, Karnataka, India

Hopscotch

2 roles

Manager - Security

Jan 2022 – Jul 2022 · 6 mos

Creating a security roadmap for the company and driving projects to closure
Defining data security standards and policies to protect organizations from data breaches, information theft and cyber attacks
Establishing Secure SDLC process in the organization and guide the engineering teams towards Secure Architecture
Building security team & mentoring team members to achieve the security goals of the company
Building Security Automation Charter in the company and driving the projects
Building and mentoring team of Product Security Engineers to achieve the security goals of the company
Understanding the Scope of Data Security, IT Security, App Security, AWS Security and N/W Security of the company, analyze the present status and drive it towards the required ideal security standards
Constantly evaluating and auditing business needs and improvising the security posture of the company by discussing with engineering leaders

Data SecuritySecure SDLCSecurity AutomationMentoring

Security Lead

Dec 2019 – Mar 2022 · 2 yrs 3 mos

Evaluate the product & technical specification requirements and define security requirements during the design, development and implementation phase of applications
Conducting Threat Modelling and Risk Assessment on a product solution and new business verticals to identify the risks and gaps
Performing penetration testing of Web Applications, Mobile Applications, Cloud Infrastructure and Web Services
Identifying and securing the perimeter of the attack surface from attacker’s point of view by analyzing real time attacks and setting out solutions to mitigate such.
Strengthening cloud security posture by identifying & fixing misconfigurations, enabling security controls, automating and auditing security best practices
Strengthening IT Security by hardening g-suite security controls, email servers, employee exit procedures etc.
Defining and running Digital Risk Protection strategies such as Brand Monitoring, External Attack Surface Monitoring and Data leaks
Building security automation in CI/CD pipelines
Managing stakeholders across Engineering, Product, DevOps, and Executive teams to align security initiatives with development goals
Identifying & mitigating frauds in the business flows and regulating zero days and security exploitations

Threat ModelingPenetration TestingCloud SecurityDigital Risk Protection

Ola (ani technologies pvt. ltd)

2 roles

Security Engineer II

Apr 2018 – Dec 2019 · 1 yr 8 mos

OLA Cabs:
Responsibilities:
Evaluate the product & technical specification requirements and define security requirements
during design, development and implementation phase of applications
Identifying security issues in web applications, web services and mobile applications and drive them
to closure
Conducting Threat Modeling and Risk Assessment on a product solution
Performing Secure Code Review on projects and identifying the vulnerabilities
Establish a Secure SDLC process in the organization and guide the developmental team towards
Secure Architecture
Onboarding and training/mentoring new members for the organization for application security
FoodPanda:
Responsibilities:
As a newly acquired company, the following challenges and responsibilities were present:
Perform Threat analysis on the whole tech of FoodPanda to understand the risks associated with the
existing Tech
Implement SDLC in further development on the existing code
Understand and Identify the risks & vulnerabilities associated with the new Business vertical and act
upon them to fix issues with thriving business needs
Identifying and securing the perimeter of the attack surface from the Attackers PoV
Educating developers on Secure Coding Practices in turn building secure SDLC
Understand the Scope of Data Security, IT Security, App Security, AWS Security and N/W Security of
the company, analyze the present status and drive it towards the required ideal security standards
considering business needs

Secure SDLCThreat ModelingVulnerability AssessmentSecure Code Review

Security Analyst

Apr 2017 – Mar 2018 · 11 mos

Identifying security issues in web applications, web services and mobile applications and drive them
Performing Secure Code Review on projects and identifying the vulnerabilities
Onboarding and training/mentoring new members for the organization for application security

Threat ModelingSecure SDLCVulnerability Assessment

Evry india

2 roles

Software Engineer

Promoted

Jun 2015 – Apr 2017 · 1 yr 10 mos · Bangalore

Vulnerability Researcher

Associate Software Engineer

Aug 2014 – May 2015 · 9 mos · Bangalore

Responsibilities:
Conduct independent Vulnerability assessment, Penetration Testing of Web, Mobile, Thick Client
applications and network infrastructure
Prepare effort estimation and understand the client requirements
Conduct calls, walkthroughs and follow up with clients and development teams
Configure and fine-tune the automated tool for assessment
Report the findings with POC and recommend solutions for the same
Secure Code review of projects and secure development of modules for digital asset management