May 2025 – Jul 2025 · 2 mos · Jamnagar, Gujarat, India · On-site

• Conducted detailed ISO 27001:2022 compliance gap analyses, reviewing IRM policies, risk assessments, and documentation aligned with audit requirements. Proposed security enhancements such as integrating eBPF-based anomaly detection to monitor resource utilization and improve operational resilience.
• Deployed and secured on-premise Kubernetes clusters with high availability configurations using NGINX and HAProxy. Developed automated deployment scripts (Bash, Python) to streamline infrastructure setup, reducing manual effort and accelerating rollout.
• Analyzed and documented trade-offs among CNI plugins (Cilium, Calico, Flannel), evaluating security features, performance implications, and operational overhead, guiding the selection of Cilium for production deployment.
• Architected a secure software supply-chain framework leveraging Sigstore (cosign, Fulcio, Rekor) to enforce developer-signed script execution and maintain a Merkle-tree based audit trail, significantly strengthening script integrity and compliance.
• Identified and reported a critical vulnerability in the organization’s Virtual Desktop Service, assessed its business impact, and recommended effective mitigation strategies to reduce risk exposure.