Mar 2024 – Jun 2025 · 1 yr 3 mos · Bengaluru, Karnataka, India · Remote

• ● Conducted threat modeling and security assessments for applications, embedding security principles into design and architecture.
• ● Documented security threats, providing actionable mitigation strategies to enhance overall security posture.
• ● Designed and implemented secure architectures for AWS, Azure, and GCP, ensuring confidentiality, integrity, and availability.
• ● Identified security gaps, communicated business impact to stakeholders, and presented clear risk analyses and mitigation plans.
• ● Led a cloud security program focusing on cloud security posture management (CSPM) and entitlement management (CIEM).
• ● Applied frameworks such as NIST, ISO 27001, GDPR, SOC2, and FEDRAMP to ensure regulatory compliance.
• ● Architected secure cloud platforms focusing on identity management, CI/CD pipelines, and container security (Docker, Kubernetes).
• ● Collaborated with development teams throughout SSDLC, integrating secure coding practices and conducting code reviews.
• ● Managed SOC operations, enhancing threat detection and incident response capabilities through automation.
• ● Designed and deployed IAM solutions in AWS and Azure, enforcing least privilege principles.
• ● Performed vulnerability management and security reviews for multi-cloud environments, ensuring regulatory compliance.
• ● Developed tools for risk prioritization and attack path analysis to visualize security posture and lateral movement risks.
• ● Managed security technologies such as SIEM, EDR, DLP, and WAF across diverse platforms and cloud workloads.
• ● Conducted incident response, collaborating with teams to enhance detection and mitigation strategies.
• ● Delivered security awareness training to development teams on threats, vulnerabilities, and best practices.
• ● Implemented multi-cloud security tooling for Kubernetes infrastructure, enhancing overall protection.

Mar 2023 – May 2024 · 1 yr 2 mos · Bengaluru, Karnataka, India · Remote

May 2022 – Mar 2023 · 10 mos · Bengaluru, Karnataka, India · On-site

• ● Responsible for Detection Engineering for AWS, AZURE, and GCP cloud environments.
• ● Responsible for Cloud security Posture management for the organization across AWS, Azure,
• GCP using Prisma Cloud.
• Incident Response
• ● Part of L2 Analyst Team for handling Sev0, Sev1 Incidents in terms of driving it to technical
• aspects
• ● Responsible for automating Incident Response Triage Process- Planning and implementation of
• complex playbooks and standard operating procedures.
• Threat Hunt
• ● Driving hunting operations for security threats and malicious activity, developing related
• tactics and techniques through EDR and working via hypothesis.
• ● Maintaining current knowledge and understanding of the threat landscape and emerging
• security threats.
• ● Work with Threat Intel Partners to learn and gather information about organization from
• open internet and dark web (Data Breach, etc.)

Dec 2020 – May 2022 · 1 yr 5 mos · Bengaluru, Karnataka, India

• ● Responsible for creation of ☁ DFIR Capabilities, Onboarding new tech stacks, Building
• SOP/SOW
• ● Responsible for creation of other Blue Team service Line- Threat Hunt, Threat Intelligence,
• Digital Forensics process readiness and Audit & Legal Preparation (SOC2, FedRamp)
• ● Service Owner for building the SIEM capabilities and owns the operations and Detection
• Engineering for Elastic SIEM offerings.
• ● Responsible for handling Sev0, Sev1 Incidents in terms of driving it to technical aspects,
• finding RCA, performing host/log forensics and preparing Forensics Reports.
• ● Responsible for automation and innovation projects (Like- IR Process automation) for ☁ DFIR
• capabilities and solutions.
• ● Responsible for creation of Mature SOC model.
• ● Responsible for Cloud security Posture management for the organization across AWS, Azure,
• GCP using Prisma Cloud.
• ● Developed Playbooks for analysis and incident remediation

Apr 2019 – Dec 2020 · 1 yr 8 mos · Chennai Area, India