Arun Govindasamy

Director of Engineering

Bengaluru, Karnataka, India17 yrs 10 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Revamped SDLC with security design and automated checks.
  • Developed tools to eliminate false positives in security.
  • Executed live ransomware attack demo to highlight security gaps.
Stackforce AI infers this person is a cybersecurity expert specializing in application and cloud security within enterprise environments.

Contact

LinkedIn

Skills

Other Skills

API DevelopmentAmazon Web Services (AWS)Application SecurityApplication Security ArchitectureBig DataBug bountyCloud SecurityContainerizationCryptographyCybersecurityDASTDevSecOpsEncryptionIT Security OperationsIdentity & Access Management (IAM)

About

I am a results-driven technical security leader with over 17 years of experience in cybersecurity, specializing in application security, cloud security, offensive security, and secure software development. I have successfully led security initiatives across large-scale cloud environments, product security, and red teaming exercises, collaborating closely with engineering leaders, and executive leadership to embed security within the SDLC. My expertise lies in driving security strategy, building scalable security programs, and developing security tooling that empowers both business and engineering teams. Key achievements: • Revamped the SDLC by embedding security design, threat modeling, and automated security checks, reducing vulnerabilities and accelerating secure releases. • Developed security tools that eliminate false positives and business exception bottlenecks, allowing seamless exception handling without compromising security. • Designed and implemented secure authentication, profile, and payment services, ensuring privacy, compliance, and data protection. • Built a secure file-sharing and password management application, providing a centralized and scalable solution for handling sensitive data securely. • Simulated sophisticated OTP flooding attacks, exposing limitations in the existing Bot Manager. This led to a strategic shift toward CAPTCHA-based mitigations, significantly reducing the attack surface. • Conducted a live ransomware attack demonstration for executive leadership, highlighting critical security gaps and accelerating the adoption of firewall and email security controls. • Designed and executed a Vulnerability Assessment & Penetration Testing (VAPT) program, providing quantitative security insights to senior management and engineering teams. • Created and launched a Capture The Flag (CTF) platform, elevating security awareness and secure coding practices across engineering teams. • Developed a Security Champions Program, identifying and mentoring engineers across different teams to advocate for security best practices and embed security into development workflows. • Organized hands-on red teaming and security training, fostering a security-first mindset across the organization.

Experience

Upstox

2 roles

Director of Application Security

Promoted

Apr 2024Present · 1 yr 11 mos · Coimbatore, Tamil Nadu, India · Remote

Associate Director of Application Security

Jun 2021May 2024 · 2 yrs 11 mos · Coimbatore, Tamil Nadu, India · Remote

The world bank

Information Security Officer

Oct 2012Jun 2021 · 8 yrs 8 mos · Washington, District of Columbia, United States · On-site

Wipro limited

Senior Engineer, Security Management

Nov 2010Oct 2012 · 1 yr 11 mos · Mysuru, Karnataka, India

Mphasis

Associate Infrastructure Engineer

Jun 2008Nov 2010 · 2 yrs 5 mos · Chennai, Tamil Nadu, India

Education

KSR College of Engineering

Bachelor of Technology - BTech — Information Technology

Jan 2004Jan 2008

Stackforce found 100+ more professionals with API Development & Amazon Web Services (AWS)

Explore similar profiles based on matching skills and experience

Devesh Sharma

Devesh Sharma

Technical Lead

at Material

Agra, India7 yrs 2 mos exp
Cloud SecurityDevOps
varun revanna

varun revanna

Principal Software Engineer

at Dell Technologies

Kuala Lumpur City, Malaysia11 yrs 3 mos exp
Rishabh Verma

Rishabh Verma

Software Engineer

at Swish

India1 yr 7 mos exp
Vishnuvardhan S

Vishnuvardhan S

Head of Platform Engineering

at CRED

Bengaluru, India6 yrs 9 mos exp
Aditya Sharma

Aditya Sharma

Manager

at EY

Gurgaon, India9 yrs 9 mos exp
API SecurityApplication SecurityDevSecOpsFull Stack DevelopmentVulnerability Assessment
Sanchit Sharma

Sanchit Sharma

Security Engineering Manager, AppSec

at Amazon

Bengaluru, India14 yrs 1 mo exp
Mahima Dongre

Mahima Dongre

Associate Security Consultant

at Varutra Consulting

Pune, India5 yrs 1 mo exp
API TestingCybersecurity
Kangan Agrawal

Kangan Agrawal

Developer

at Delhivery

Mainpuri, India2 yrs 1 mo exp
DjangoIoTPython