Kushal K.

DevOps Manager

Bengaluru, Karnataka, India12 yrs experience
Highly Stable

Key Highlights

  • 10 years of experience in cybersecurity.
  • Expert in Cloud Security and DevSecOps.
  • Proven track record in vulnerability management.
Stackforce AI infers this person is a Cloud Security Architect with expertise in DevSecOps and Application Security.

Contact

LinkedIn

Skills

Core Skills

Cloud SecurityRisk ManagementDevsecopsApplication Security

Other Skills

API SecurityAWS SecurityAgile MethodologiesAmazon Web Services (AWS)Analytical SkillsApplication Security ArchitectureAzure Security EngineerBug hunterCloud ComputingCloud Security Posture ManagementCloud Security architectCommunicationContainer SecurityContinuous Integration and Continuous Delivery (CI/CD)Critical Thinking

About

🌟 Welcome to my Cyber Odyssey! 🌟 In a world where digital landscapes are under constant siege, I've embarked on a 10-year voyage safeguarding the virtual frontiers. πŸ›‘οΈ Crafting Secure Skies - Cloud Security Architect πŸ›‘οΈ Within the dynamic sphere of Cloud Security, I've wielded the strengths of AWS and Azure to craft security frameworks that stand firm against potential breaches. Fusing Cloud Security Architecture with risk management and vulnerability management, I've constructed robust defenses that shield sensitive data and applications. πŸ”’ Guardian of Digital Gateways πŸ”’ Within the realm of applications and APIs, I've assumed the role of a vigilant guardian. With expertise in Application Security and API Security, I've ensured the seamless and secure flow of data and interactions, fostering trust among users and systems. πŸ’‘ Harmony of DevSecOps πŸ’‘ At the crossroads of development and security, I've championed the cause of DevSecOps. My mastery in DevSecOps Implementation & Automation has enabled me to infuse security seamlessly into the development process, where it flourishes as an integral part of the code, rather than an afterthought. πŸ› οΈ Tools at My Arsenal πŸ› οΈ In the relentless pursuit of invulnerability, I've harnessed the capabilities of tools like Veracode, WebInspect, Fortify, Nessus, Metasploit, Kali Linux, Burp Suite, Accunetix, and AppScan. These tools have been my allies in identifying, mitigating, and countering threats. πŸŽ“ Certified for Excellence πŸŽ“ My journey is etched in my certifications - CISSP, AWS Security Specialist, AWS Solution Architect - Associate, AZ-500, SC-100 🌐 Navigating the Highlights 🌐 πŸš€ I've navigated the intricacies of cloud security, scrutinizing 50+ solutions in alignment with industry standards like NIST, ISO, and CIS. πŸš€ Gaps in Vulnerability and Patch Management processes have not escaped my scrutiny; I've contributed improvements. πŸš€ Shoulder-to-shoulder with developers, I've woven security throughout the fabric of software development life cycles. This journey has been one of relentless pursuit - to create a digital realm where technology thrives under the vigilant watch of cybersecurity. πŸš€ Let's connect, share insights, and unite to fortify our shared digital terrain. Email: kus.kumar@hotmail.com

Experience

Godaddy

Senior Security Engineer

Dec 2023 – Present Β· 2 yrs 3 mos Β· Remote

Governance, Risk Management, and Compliance (GRC)Third Party Risk Management (TPRM)Cloud SecurityRisk Management

Deloitte india (offices of the us)

5 roles

Senior Consultant

Mar 2022 – Nov 2023 Β· 1 yr 8 mos Β· Belgium

  • 1. Led the design and implemention of robust security controls for cloud applications, enhancing organization's cloud-based systems and data security.
  • 2. Collaborated seamlessly with engineering, infrastructure and development teams to develop cloud security capabilities and ensure the resilience and high availability of cloud applications.
  • 3. Conducted review of cloud solutions (AWS, Azure) based on industry best practices (NIST, CIS), resulting in strengthened security measures and compliance.
  • 4. Assisted in the development, configuration, implementation, and maintenance of information security processes, policies, standards, procedures, and controls, contributing to an improved overall security posture.
  • 5. Proactively enhanced security frameworks, documentation, tools, processes, and methodologies, leading to a remarkable 30% increase in security maturity.
DevSecOpsCloud SecurityApplication SecurityVulnerability AssessmentWeb Application SecurityAmazon Web Services (AWS)+8

Senior Solution Advisor

Promoted

Jul 2019 – Jan 2022 Β· 2 yrs 6 mos

  • Reviewed 50+ cloud solution architecture (AWS, Azure) using industry best practices (NIST, ISO, CIS, etc.) resulting in enhanced security measures and compliance.
  • Ensured security by design principles were integrated into architectural design patterns for multiple projects, reducing potential security vulnerabilities.
  • Conducted threat modelling for identifying and mitigating security risks , ensuring a robust and secure cloud infrastructure.
  • Contributed to enhancing SSDLC processes, integrating security throughout the software development lifecycle, leading to improved application security.
  • Performed 100+ comprehensive Vulnerability Assessments and Penetration Testing for networks and applications, , identifying and remediating vulnerabilities to bolster overall security.
  • Aligned Vulnerability and Patch Management process with industry standards, ensuring timely patching and providing improvement recommendations for vulnerability remediation.
  • Demonstrated expertise in SAST, DAST, and API security, resulting in ~50% reduction of security gaps and enhancing the security architecture.
Application SecurityVulnerability AssessmentTechnology SecuritySecure SDLCCloud Security architectCloud Security

Lead Solution Advisor

Jul 2018 – Jun 2019 Β· 11 mos

Application SecurityVulnerability AssessmentTechnology SecuritySecure SDLC

Solution Advisor

Jul 2017 – Jun 2018 Β· 11 mos

Application SecurityVulnerability AssessmentTechnology SecuritySecure SDLC

Associate Solution Advisor

Jul 2016 – Jun 2017 Β· 11 mos

Application SecurityVulnerability AssessmentTechnology Security

Aujas networks pvt ltd

Consultant

Mar 2016 – Jun 2016 Β· 3 mos Β· Bangalore, India

  • 1. Conducted comprehensive manual security assessments and validations of client systems, websites, and networks, successfully discovering and identifying critical vulnerabilities.
  • 2. Thoroughly documented exploit chain and proof of concept scenarios, providing valuable insights and actionable recommendations to clients for vulnerability remediationParticipate in Security Assessments of networks, systems and applications .
  • 3. Configure, run and monitor automated security testing tools
  • Perform manual security assessment and validation of vulnerabilities of client systems, web sites and networks to discover 
vulnerabilities.
  • 4. Thoroughly document exploit chain/proof of concept scenarios for client consumption
Application SecurityVulnerability AssessmentTechnology Security

Symantec

Associate Security Analyst

Aug 2013 – Feb 2016 Β· 2 yrs 6 mos Β· Pune, India

  • 1. Performed as a Security Log Analyst in Security Information and Event Management (SIEM)/Managed Security Services, analyzing logs from 10+ security technologies, including IDS/IPS, HIDS, Application Firewalls, and Vulnerability Scanners.
  • 2. Conducted in-depth research and analysis of logs, identifying potential security threats and incidents, contributing to proactive threat detection and response.
  • 3. Played an active role in sprint planning meetings and decision making sessions, collaborating effectively with the team to ensure efficient and timely resolution of security issues.
  • 4. Research & log analysis from wide range of security technologies including, but not limited to: SEIM, IDS/IPS, HIDS, Application Firewalls and Vulnerability Scanners.
  • 5. Simulating attacks on different security products for analysing logs and simulating real world scenario.
  • Creating Symantec engineering specifications for individual security products to correctly interpret security log entries.
  • 6. Deploying Symantec Log Collectors to Security Operation Center (SOC) in Cloud to monitor real time customer logs and generate correlated alerts.
Application SecurityVulnerability AssessmentTechnology Security

Education

Jamshedpur Public School

Science

Jan 2002 – Jan 2008

Bharati Vidyapeeth

Bachelor's degree β€” Electronics and Telecommunication

Jan 2008 – Jan 2012

Stackforce found 100+ more professionals with Cloud Security & Risk Management

Explore similar profiles based on matching skills and experience

Nikhil Mittal

Nikhil Mittal

Founding Security Engineer

at Clazar

Pune, India8 yrs 10 mos exp
Elavarasu A K

Elavarasu A K

Managing Director & CISO

at Brillio

Bengaluru, India27 yrs 7 mos exp
Aniruddha Biyani

Aniruddha Biyani

Information Security

at Prophecy

Bengaluru, India10 yrs 2 mos exp
RR

Radhakrishnan Ravichandran

Sr. Cyber Security Analyst – Enterprise Vulnerability Management

at Landmark Group

Bengaluru, India8 yrs 6 mos exp
Application SecurityInformation SecurityPenetration TestingProject ManagementVulnerability Assessment
DC

Dharmendra Kr. Chauhan (DC)

Accumulated Expertise

at Career-Wide Experience

Noida, India0 mo exp
Shane Levi

Shane Levi

Business Consultant

at Nextep

Englewood, United States3 yrs 6 mos exp
LeadershipSalesforce.com
NIKHIL KUMAR GANDLA

NIKHIL KUMAR GANDLA

Application Security Manager

at Bajaj General Insurance

Hyderabad, India6 yrs 6 mos exp
Application SecurityCyber Risk ManagementCyber SecurityInformation SecurityRisk Assessment
Nicklaus Combs

Nicklaus Combs

Vice President, Threat Management

at First Advantage

Asheville, United States21 yrs 3 mos exp
Information SecurityManaged Detection & ResponsePenetration TestingSecurity ConsultingSecurity Operations