Shashank N

DevOps Engineer

Bengaluru, Karnataka, India5 yrs 6 mos experience

AI EnabledAI ML Practitioner

Key Highlights

5 years of diverse experience in cyber security.
Expertise in AI-LLM security and incident response.
Proven track record in cloud security architecture.

Stackforce AI infers this person is a Cyber Security expert with a strong focus on Cloud Security and AI-LLM Security.

Contact

Skills

Core Skills

Cloud SecurityAi-llm SecuritySecurity AutomationDevsecopsIncident Response

Other Skills

Agent Development KitCloud ArmorCloudTrailCrowdstrikeData Loss PreventionGuard DutyIAMIdentity-Aware ProxyJavaScriptMachine LearningModel ArmorPHPPingSafeProofpointPython (Programming Language)

About

Highly ambitious, hardworking, driven professional with a very keen interest cyber security with 5 years of experience ranging from AI-LLM security, incident response, vulnerability management, cloud security, product security. Leverage excellent interpersonal skills and technical knowledge to achieve results. Visit my website: https://shashvik.github.io/security-engineer/ TECHNICAL SKILLS Technologies: LLM Security, SIEM, EDR, AV, IAM, PAM, SAST/DAST, Mail Security, Web Application Firewall, Data Loss Prevention, Network access control, Container Security, CSPM, FIM, Red Teaming Tools:Model armor,Secureworks XDR, Elastic Stack, Wazuh, SentinelOne,Crowdstrike, Qualys, Zscaler, Proofpoint, Fastly WAF, AWS WAF, Caldera, Kali,Forescout,Fortify, Snyk, Guard Duty, Cloudtrail, AWS Config,Trusted Advisor, Azure activity logs, BeyondTrust, Malwarebytes, Azure AD,Pingsafe,cloudsek,akto,semgroup,dependabot, Forcepoint Languages: SQL, HTML, Javascript, Bash,Python, Powershell,PHP,Terraform Others: Cloud ( GCP, Azure, AWS), Jenkins,github actions, Docker, Kubernetes, Microsoft Suite, Machine Learning, OS ( Windows, Linux)

Experience

Google

Security Architect

Jan 2025 – Present · 1 yr 2 mos · Bengaluru, Karnataka, India · On-site

1. Secure Google Cloud Infrastructure
Designed and implemented secure, compliant architectures on Google Cloud Platform (GCP) using Cloud Armor, Security Command Center, Security Operations (SecOps), and Data Loss Prevention (DLP). Built scalable landing zones, enforced binary authorization, leveraged VPC Service Controls, Access Context Manager, and Identity-Aware Proxy (IAP) to ensure zero-trust access and governance.
2. AI and LLM Security Foundations
Established security best practices for large language models (LLMs), utilizing Model Armor and other techniques to detect, prevent, and mitigate prompt injection, data leakage, and model manipulation attacks.
3. Agentic Security Tooling with ADK
Developed agent-based security automation tools using the Agent Development Kit (ADK) to support threat detection, incident response, and continuous posture management across diverse environments.

Cloud ArmorSecurity Command CenterData Loss PreventionVPC Service ControlsIdentity-Aware ProxyCloud Security+1

Razorpay

2 roles

Senior Security Engineer-Devsecops

May 2024 – Jan 2025 · 8 mos · Bengaluru, Karnataka, India · On-site

Devsecops, on-prem Infrastructure and cloudsecurity

DevSecOps

Security Engineer-DevSecOps

Aug 2023 – May 2024 · 9 mos · Bengaluru, Karnataka, India · On-site

Cloud Security
1. Responsible for end to end security on AWS leveraging native capabilities( Guard duty, cloudtrail, Config,security hub, landing zones, SCP, IAM ).
2. Cloud security Posture Management and CNAPP using PingSafe.
3. Responsible for creation and maintenance of golden container image pipelines including signing images using cosign.
Infrastructure Security Engineer
1.End-to-End implementation of Forcepoint DLP and CASB solution
2. Maintain security posture of cisco switches, access points and palo alto firewalls
3. Introduced Azure AD conditional access policies for securing infrastructure applications
4. Conduct regular assessments on Azure AD, domain controllers, google workspaces, JAMF and Intune MDM.

Guard DutyCloudTrailIAMPingSafeCloud Security

Enphase energy

Associate Security Engineer

Sep 2020 – Aug 2023 · 2 yrs 11 mos · Bengaluru, Karnataka, India

Cloud Security Analyst
1. Responsible for multi cloud (Aws,Azure) security leveraging native capabilities( Guard duty, cloudtrail, config, activity logs,SSO, Config, Defender)
2. Cloud security Posture Management using trusted advisor, config, change analysis, steampipe,defender for cloud, Qualys
Security Operations Analyst
1. SOC point of contact for enterprise and product, handled incident response including log and forensic analysis
2. End to end investigations of phishing mails on proofpoint, crowdstrike, WAF, Palo Alto firewall IDS/IPS
3. Creation of custom log integration, correlation queries,optimization and management of SIEM
4. Leverage MITRE Attack,Defend framework for creation of Incident response runbooks
5. Threat hunting and network traffic analysis using statistical analysis and machine learning to identify APT threats
6. Leverage and analyze threat intelligence and identify gaps, potential exploited vulnerabilities in the environment.
7. Conduct Red Team adversary emulation using MITRE Caldera and improved efficiency of crowdstrike by 76%
8. Multiple POC on security tools such as Splunk, Logrhythm, Snyk and advised management on its efficiencies.
9. Managing and optimisation of IAM/PAM tool Beyondtrust
10. Achieving SOC2 certification and evidence collection, and multiple M&A security Integrations
Vulnerability Management Analyst
1. Responsible for Firewall, Switches, Access points, Windows, linux vulnerability Management
2. Container security Vulnerability via Crowdstrike VM module
3. Creation, deployment and enforcement of CIS Compliant Golden Images
Security Engineering
1. Management and optimization of fastly and AWS WAF ( 80% increased efficiency) and Zscaler Internet Proxy
Product Security
1. SAST/DAST scans(Fortify, Qualys), OSS security(snyk), secrets(trufflhog) on web applications and microservices
2. Optimized Security testing in CI/CD Pipeline and Secure SDLC
3. Threat Modeling on IOT fleet, and cloud architecture