Apr 2023 – Nov 2024 · 1 yr 7 mos · Bengaluru, Karnataka, India

• The Internet of Things Security Foundation (IoTSF) is a not-for-profit, global membership association that works to make the connected world more secure. It is an international response to the complex challenges posed by cybersecurity in the expansive hyper-connected world of IoT. The IoT Security Foundation focuses on promoting best practices, guidelines, and standards to enhance security in the realm of the Internet of Things (IoT). They aim to educate and provide resources to individuals, organizations, and industries to address security challenges within IoT devices, networks, and systems.
• IoT Security Foundation chapter has been created in India, as part of the organisation's commitment to fostering global collaboration on IoT security . The context is to promote good security practices, increase adopter knowledge, and boost user confidence, with the aim of driving the growth of the IoT ecosystem in the region. This is the second regional chapter, following IoTSF Bucharest, to support this cause.

Jul 2022 – Dec 2024 · 2 yrs 5 mos

• Leading the global Product Security team for Building Automation (BA) group, responsible for secure development of BA products.
• Implement end-to-end Product Security, including Security requirements, Security Architecture review, Software composition analysis, Threat Model, Secure code review, Product security assurance, Risk Assessment, Secure deployment and Product Security Incident Response (PSIRT).
• Drive Security Excellence through Security Audits, Security Awareness Program, DevSecOps implementation, Process automation, Tools strategy, Cyber analytics, Dashboards & Reporting.

Oct 2020 – Jun 2022 · 1 yr 8 mos

• Secure Software Development Lifecycle implementation - Security requirements, Security Architecture. Software composition analysis, Threat Model, Secure code review, Product security assurance, Risk Assessment and Secure deployment.

Jun 2019 – Oct 2020 · 1 yr 4 mos · Bengaluru, Karnataka, India

• Led the Product Security, Security Efficacy & Cloud IPS Engineering team at Netskope.
• Developed Secure Software Development Lifecycle (SSDL) framework and set up the team from scratch.
• Led Security Efficacy team, focusing on Malware, URL & IPS efficacy of Netskope's product line.
• Managed IPS engineering team responsible for building cloud-based IPS solution.

Apr 2016 – May 2019 · 3 yrs 1 mo · Bangalore

• Managed teams of Developers & QAEs, responsible for improving music search quality on Amazon Echo devices and Amazon Music App.
• Led the team in building a tool to generate custom datasets for music launches and established QA automation framework to test search functionality.
• Launched new features on the Amazon Deals platform for major sales events, including Prime day, Black Friday, and Cyber Monday.
• Reduced platform launch time, ensured smooth Black Friday and Cyber Monday sales, established centralized test management tool and device lab, streamlined Scrum process, and promoted team members.

Dec 2014 – Mar 2016 · 1 yr 3 mos · Bangalore

• Managed three different QA teams at Amazon
• 1.) Deals & Events
• 2.) Social
• 3.) smile.amazon.com

Jul 2014 – Dec 2014 · 5 mos · Bangalore

• Managed teams of Developers & QAEs for various product lines, including Network Data Loss Prevention (NDLP), Cloud Single Sign-on (Intel ECA 360), Email & Web Security, and McAfee ePO.
• Led the transition of product lines, set up new teams, established engineering practices, and delivered successful releases.
• Acted as the Product Security Champion, driving Secure Development Life Cycle (SDLC) and security testing initiatives.
• Trained engineers, conducted workshops, and presented papers on security testing.

Jan 2008 – Dec 2014 · 6 yrs 11 mos · Bangalore

• I was the first Product Security Champion (PSC) for McAfee India center. PSC role was part of McAfee’s Product security group, responsible for driving Secure Development Life cycle (SDLC) and security testing initiative at McAfee India center. This was an additional responsibility over and above my Engineering Manager role at McAfee.

Sep 2002 – Jun 2014 · 11 yrs 9 mos · Bangalore

• Managed Engineering team (Development + QA) for McAfee Cloud Single Sign On product, Email & Web Security Appliances, McAfee ePO and Connector Catalog as a Service project.

Jan 2001 – Jul 2002 · 1 yr 6 mos · Pune

• Development & Testing of projects outsourced by McAfee.com to Winczar software
•  Development and QA for the application, McAfee.com “Oil Change” product.
•  McAfee Personal Firewall (V 3.0)
•  McAfee Virus Scan Online (V 4.0)
•  McAfee Privacy Services (V 3.0)

Dec 1999 – Jan 2001 · 1 yr 1 mo · Pune

• ISO certification & project management