Akhil Mahendra

DevOps Manager

Bengaluru, Karnataka, India11 yrs 3 mos experience
Highly Stable

Key Highlights

  • Built security programs in high-growth fintech startups.
  • Established security charter and DevSecOps frameworks from scratch.
  • Mentored future cybersecurity professionals through competitions.
Stackforce AI infers this person is a Fintech Security Engineer with extensive experience in building security frameworks and teams.

Contact

LinkedIn

Skills

Core Skills

Security EngineeringDevsecops

Other Skills

Amazon Web Services (AWS)Application SecurityBlack Box TestingBurp SuiteEngineering ManagementFinTechLeadershipM&A securityMicroservicesMobile SecurityNetwork SecurityOWASPObjectives and Key Results (OKRs)Product SecurityPython

About

I have over a decade of experience in security, with the past seven years dedicated to building and scaling security programs in high-growth fintech startups. As a former member of Team bi0s, India’s #1 ranked Capture the Flag team since 2016, I have won national and international cybersecurity contests. I have also worked with the team to organize India’s national and international editions of InCTF, mentoring upcoming talent and helping develop the next generation of cybersecurity professionals. At CRED, I joined as the first security engineer and, with leadership’s support, built product security, devsecops, security engineering, and software supply chain security from the ground up. Over the years, I expanded the security function by growing a 10 member team, managing AOP and OKRs, and collaborating with product, engineering, SRE, data, legal, and compliance teams to successfully complete various regulatory audits and embed security into core business and engineering workflows. I launched security champions programs across 10+ pods and ran developer training and org-wide CTFs, eliminating recurring bug classes and promoting a security-first culture trusted across the company. At Scapia, I’m building the security function, creating secure-by-default frameworks that fit naturally into how engineering ships software. I have built and open-sourced security frameworks in devsecops and software supply chain security that help engineering teams secure their SDLC without adding friction. I have shared my approaches and learning at security conferences like Black Hat and Nullcon. Outside of work, you will find me in the mountains skiing, chasing fresh powder, and still perfecting my carving turns.

Experience

Scapia

Security

Apr 2025Present · 11 mos · Bengaluru, Karnataka, India · On-site

  • back to building

Cred

4 roles

Engineering Leader - Product Security & Security Engineering

Promoted

Apr 2023Apr 2025 · 2 yrs

  • ➤ Joined as the 1st engineer in CRED's security team and played a key role in establishing the security charter from the ground up.
  • ➤ Lead and mentor a team of 10 Product Security and DevSecOps engineers, guiding them through the planning and execution of yearly roadmaps and OKRs. Oversaw progress tracking with KPI metrics and provided technical leadership to ensure successful outcomes.
  • ➤ Established the DevSecOps charter from the ground up and developed internal frameworks to support 1000+ deployments per day. Ensured robust security measures, including SBOM, SCA, SAST, secret scanning, logging & monitoring, and SCM security, while adopting a shift-left approach to integrate security early in the SDLC.
  • ➤ Secured a wide range of products and was involved in GTM of products across lending, insurance, wealth, BNPL, e-commerce, etc. Conducted thorough security reviews, including API reviews, manual source code reviews, threat modelling, and architecture reviews, to identify and address potential vulnerabilities.
  • ➤ Established and managed a Security Champions program within 10+ engineering pods, promoting a consistent and strong security posture across engineering teams, and influenced these teams to adopt a security-first culture.
  • ➤ Supported compliance and regulatory audits from a product security perspective, ensuring adherence to industry standards and regulatory requirements.
  • ➤ Organized and conducted annual CTF competitions and security training sessions to foster a security-first culture and enhance security awareness across the organization.
Supply Chain SecurityStakeholder ManagementSecurity EngineeringDevSecOpsSecurity ReviewsProduct Security+15

Lead Security Engineer

Promoted

Mar 2021Mar 2023 · 2 yrs

Senior Security Engineer

Promoted

Mar 2020Mar 2021 · 1 yr

Security Engineer

Mar 2019Mar 2020 · 1 yr

Team bi0s

CTF player/Web Security

Dec 2014Mar 2019 · 4 yrs 3 mos · Quilon, Kerala, India

  • https://ctftime.org/team/662

Education

Amrita Vishwa Vidyapeetham

Bachelor of Computer Applications (BCA) — Computer Science

Jan 2014Jan 2017

Indian Central School, Kuwait

Grade 12

Mar 2000Jan 2014

Stackforce found 100+ more professionals with Security Engineering & Devsecops

Explore similar profiles based on matching skills and experience

Aniruddha Biyani

Aniruddha Biyani

Information Security

at Prophecy

Bengaluru, India10 yrs 2 mos exp
Nikhil Mittal

Nikhil Mittal

Founding Security Engineer

at Clazar

Pune, India8 yrs 10 mos exp
Shubham Pandey

Shubham Pandey

Senior Engineer

at Target

Bengaluru, India7 yrs 2 mos exp
Josh Frantz

Josh Frantz

Senior Manager, Security Engineering

at CoreWeave

Fond du Lac, United States11 yrs 3 mos exp
LeadershipSecurity
Cody K.

Cody K.

Senior Consultant | Cybersecurity & Technology

at Meliora

Hong Kong, Hong Kong2 yrs 5 mos exp
Technical RecruitingCybersecurity
DP

Deepanjan Pal

Principal Product Security Engineer

at Oracle

Bengaluru, India11 yrs 6 mos exp
Application SecurityCloud SecurityPenetration TestingSecurity Architecture Reviews
Naveen Venugopal

Naveen Venugopal

Senior Engineer || Application Security

at Toyota Connected India

Chennai, India8 yrs 1 mo exp
Application SecurityThreat Modelling
Abhishek Jaiswal

Abhishek Jaiswal

Security and AI

at Confidential

Bengaluru, India6 yrs exp
API SecurityApplication SecurityVulnerability Disclosure ProgramVulnerability Management