Apr 2024 – Present · 2 yrs 2 mos · On-site

• Container Security Architecture: Leading container security initiatives across ECS/EKS - implemented image scanning pipelines, runtime protection with Upwind Enterprise, and discovered critical vulnerabilities including AWS GuardDuty container runtime detection bypass and ECS task metadata credential exfilteration
• Security Automation & AI: Pioneered AI-driven security with Model Context Protocol servers - aws-security-mcp enables LLMs to autonomously detect AWS misconfigurations, aws-inspector-mcp automates vulnerability management. Reduced operational costs by $15,000/month through automation
• Open Source Contributions: Published MCP servers on GitHub enabling natural language security queries. Developed automated attack surface management tool for proactive public exposure detection across AWS infrastructure
• Security Evangelist: Speaker at DefCon CloudVillage demonstrating UEBA on AWS infrastructure using LLMs. Leading research on solving cloud security challenges with AI - translating natural language queries to optimized security context

Jul 2022 – Mar 2024 · 1 yr 8 mos · On-site

• Led 55+ infrastructure security initiatives across critical business verticals (Cred Money, Cred Cash, Cred Garage, Cred Travel etc) - completed 50+ security reviews identifying and remediating 120+ vulnerabilities
• Drove security transformation for M&A: Improved security maturity from 72% to 93% in 4 months, implemented 140+ Day-0 cloud security controls, deployed CSPM(Cloud Security Posture Management) across 100+ AWS accounts, identified and remediated multiple critical risks
• Achieved 97% AWS Security Improvement Plan (SIP) score - recognized as top score in APJC region. Won 1st place in AWS Security GameDay competing against 140+ participants from 60 teams
• Published critical security research: Discovered AWS AppStream CloudTrail bypass, AWS CloudShell container breakout, GCP Cloud Workstations privilege escalation - research featured in AWS Security Digest and CloudSec newsletters
• Architected enterprise security frameworks: AWS EKS Security Baseline, Cloud Security Policy, Common Control Framework, UAT Security Guidelines - adopted across multiple engineering teams
• Open sourced DIAL (Did I Alert Lambda?) - centralized security monitoring detecting misconfigurations in < 3 seconds. Presented at BlackHat USA 2023, Ekoparty demonstrating real-time cloud security at scale
• Led M&A security for 4+ acquisitions including Happay (expense management), Kuvera (wealth management), and CreditVidya (lending platform) - ensured compliance with RBI and PCI DSS mandates without blocking business velocity
• built, processed and optimised! - established infrastructure security review process, reduced operational costs by $10,000/month through tool consolidation

Mar 2021 – Jun 2022 · 1 yr 3 mos · On-site

• Built foundational security automation tools: DIAL (centralized misconfiguration detection <5s), TOM(Tenable over Ansible Master) - an automated security patching, Xenon (credential compromise detection), ARKVP (AWS resource mapping), AccessKeyDict (centralized access key management)
• Achieved 96% AWS WAR(Well Architecture Review) Security score (improved from 85%) - implemented SCPs, conducted cloud security audits, audited IAM Policies and established security baselines
• Led comprehensive red team exercise on aws cloud infrastructure - identified critical security gaps in authentication, access controls, and network segmentation that prompted organization-wide production security hardening initiative
• Automated security operations: Created ECR(Elastic Container Registry) image scanner, egress traffic monitoring, infrasec auditor for public resources, and integrated Deep Security with Slack
• Established threat modeling practice for critical datastores - created detailed plans and structured processes for Infrastructure Security Reviews
• Contributed to security community: Spoke at NoNameCon and Ekoparty, participated in AWS Security GameDay APJC Region(came 2nd), wrote Q3 Security Blog