May 2025 – Aug 2025 · 3 mos · Bengaluru, Karnataka, India

• Driving Product Security for the Microsoft Viva suite – enabling secure collaboration, communication, and employee experience at scale.
• Conducted threat modeling to identify and mitigate potential risks in application design.
• Analyzed and remediated CodeQL findings as part of secure code review practices.
• Performed Burp Suite testing to uncover vulnerabilities in product features and ensure application security.
• Led and scaled the Security Champions Program, fostering a culture of security across engineering teams.

Jan 2023 – Apr 2025 · 2 yrs 3 mos · Bengaluru, Karnataka, India

• Building Security for Cloud infrastructure for semiconductor/silicon design.
• Lead “shift left” security efforts to build security into the infrastructure and software development lifecycle.
• Conduct threat modeling, identify and prioritize risks, attack surfaces, and vulnerabilities.
• Manage internal vulnerability management program. Triage and prioritize vulnerabilities from scans and audits. Implement remediation and validate fixes.
• Strengthened cloud security by implementing Cloud security best practices and Infrastructure as Code (IaC) using Terraform.
• Leveraged Python-based security automation to streamline compliance enforcement in cloud environments.
• Develop and document security policies, standards, and playbooks. Conduct security awareness training for engineers.
• Collaborate closely with product engineers to instill security best practices. Advocate for secure architecture, design, and development.

Jan 2022 – Dec 2022 · 11 mos · Bengaluru, Karnataka, India

• Worked as an embedded security architect with Data & AI and Payment NewFlows PD.
• Working on Cloud & AWS Infrastructure Security, Security Engineering, DevSecOps, Application Security and Security Reviews.
• Exploring the security problem space and innovating solutions to solve systemic problems for Cloud security, Kubernetes, Service Mesh, IAM, Application Security and Supply Chain security.
• Participating in providing security design guidance for complex systems across the company.
• Partnering with internal product teams to provide security guidance, drive adoption of security initiatives and transform business needs into actionable strategy.
• Creating and promote frameworks, patterns, and methodologies that reduce the risk across the company.
• Creating alignment between security engineering and internal product teams on the security path forward.

Oct 2018 – Oct 2020 · 2 yrs · Bengaluru Area, India

• Part of the Cyber Engineering Team working on Cloud & Network Security
• Cloud Security Responsibilities:-
• Designing, Deployment and management of security services for companies’ global Public and Hybrid Cloud security infrastructure which includes assessment, design, implementation, automation of solutions leveraging AWS and other third party solutions.
• Develop Cloud security policies and conduct CIS Benchmark testing and auditing on AWS Services using both manual and automated approach.
• Design SIEM monitoring. Security controls, intrusion detection data and consolidate into SIEM.
• Implement AWS Security Services such as AWS Cloud HSM, Amazon Guard Duty, Amazon Inspector, AWS Key Management Service, Amazon Macie, AWS Shield, and Security Groups for access control of network subnets, VPC’s and AWS resources.
• Baking security controls into Engineering and DevOps automation pipelines (e.g. contribute to IaC automation and configuration management) and embracing infrastructure-as-code via high fluency in as-code provisioning tools, such as Ansible, Terraform
• Cloud Security Controls Enforcement and Monitoring , perform vulnerability scans and report findings for Cloud network and publish the vulnerability status reports to senior management and track remediation.
• Development of cloud-focused use cases and alerting for Security Operations from our Security platforms and tools
• Proactively reviewing threat intelligence in order to create alerting to detect techniques, tactics, and procedures employed by threat actors.
• Maintaining current knowledge and understanding of the threat landscape, emerging security threats, and new capabilities for public cloud environments.
• Network IDS Responsibilities:-
• Writing custom IDS signatures and tuning existing IDS signatures based on Deep Packet Inspection to
• minimize false positive alerts.
• Assisting in engineering development and maintenance of IDS platform.

Oct 2020 – Jan 2022 · 1 yr 3 mos · Bengaluru, Karnataka, India

• Conduct security reviews and threat modelling of Citrix Cloud to identify areas of risk and provide specific technical guidance to help ensure any gaps are remediated.
• Conduct Cloud (AWS/Azure/GCP) Infrastructure and Container deployments’ security reviews.
• Researching on secure design patterns & architectures and drive its implementation to protect Citrix Cloud networks and systems
• Contributing and driving security standards across company (AWS/Azure Security & Container Security)
• Conduct in-depth research on current cloud security tools, techniques and best practices and technologies to remain at the forefront of offensive and defensive capabilities.
• Build security tools and processes for critical infrastructure protection, monitoring and remediation.
• Analyse, report on, and provide feedback on cloud and cloud/hybrid security architectures for various projects.
• Raise the awareness level of cloud security in the organisation and collaborate with other teams to develop and grow our Cloud Security practice.

Sep 2017 – Sep 2018 · 1 yr · Bengaluru Area, India

• Security Incident Management and Forensics:-
• Part of Incident Response Team (CSIRT) handling cyber security incidents which involves Malware
• Use packet sniffer such as Wireshark for performing the Network based analysis and investigation.
• Perform deep dive forensics on endpoints to understand the root cause of an investigation/compromise.
• IT Governance:
• Develop organization's processes and procedures for operational efficiency including automation and self-service models
• Develop and maintain an up to date M&M (Metrics & Measurements) knowledge base for vulnerabilities as well as conduct trend analysis
• Conducting various awareness program on IT security and IT Compliance for the business folks based on the requirements
• Work closely on the Info Security Architecture with the IT Infrastructure team to provide the technical solution for the project need
• IT Compliance:
• Drive the Technical Configuration Management project based on the NIST obligations across the organization
• Develop a process to remediate the compliance issue for infrastructure assets which in alignment with Security and Governance Policies and Practices
• IT Audit:
• Single point of contact based out of Asia for any IT audit related activity
• Managing the Overall Risk Assessment Program and Ensuring Mitigation Measures are implemented.
• Leading the IT compliance portfolio for the entity and responsible for all IT related Audits (Internal (Corporate Audit, Risk Assessment,) & External (SOX))
• Products and Technologies:
• Network PCAP Analysis: WireShark, TCPdump
• SIEM Tools: Splunk
• Intrusion Detection System: SNORT IDS
• Malware Analysis : Microsoft SysInternal Suite
• Email Security: ProofPoint
• Antivirus: CrowdStrike ; Trend Micro ; SCEP
• Vulnerability Management : QualysGuard

Dec 2015 – Sep 2017 · 1 yr 9 mos

• The CSS Security Incident Response team proactively and reactively communicate, identify, troubleshoot, and resolve security threats and attacks involving Microsoft products. The team also works collaboratively with other teams on Malware and Security Bulletin related issues. It represents Microsoft on security support issues and communicate with internal and external customers via a variety of mediums to identify solutions for technically complex problems and security threats.
• Skills:
• Security incident response and forensics analysis
• Malware triage and analysis
• Network and memory forensics
• Windows Debugging
• Extensive work experience on Identity Management tools like Microsoft Forefront Identity Manager (FIM/MIM)
• Installation and Configurations of Identity and Access Management which Includes Forefront Identity Manager and Microsoft Identity Manager
• Have worked on Configuring Exchange Server and Implementation of Exchange Server Provisioning for the various Objects using Forefront Identity Manager 2010.
• Synchronisation of Active Directory for provisioning the Users, Groups and Contact objects from various source systems by direct domain provisioning and the Cross Domain Functionality.
• Synchronisation of SAP HR system data as Source system using Forefront Identity Manager Suite.
• Role designing and modelling, RBAC, policies, workflows, re-certification, reconciliation, account provisioning in Identity Manager
• Installation and configuration of Microsoft Identity and Access Management tools such as Microsoft Identity Life cycle Manager, Forefront Identity Manager 2010 R2.
• Hands-on in handling various security products such as Azure information Protection/Azure RMS
• I have played a key role in adoption of AzureRMS by Fortune 500 companies by solving their complex RMS issues on both server end and client end.

Feb 2015 – Dec 2015 · 10 mos

• Provide operations and crisis management support to 200-plus Microsoft Online services that include Bing, MSN, Office 365, Xbox Live, Skype, OneDrive and Microsoft Azure to name a few and direct all incoming service outage escalations and Outage notifications for these services under Microsoft's Cloud Infrastructure and Operations group.
• Cloud reliability operations is responsible for delivering over 200 Microsoft web portals, Live and Online Services around the world including infrastructure, security and compliance, operations, globalization, and manageability.
• Roles & Responsibilities
• Support hundreds of thousands of production servers that make up the Bing & Ad Center environment in a 24X7 support model.
• Work closely with our SOC/NOC to detect, prioritize and resolve incidents
• Identify and document common recovery procedures for service impacting incidents
• Establish and follow a ROB (Rhythm of Business) to ensure that all break / fix issues are resolved in a timely manner or escalated to the appropriate group
• Develop, communicate and drive Service Improvement Plans to maintain an environment of continuous improvement with a focus on rapid growth, world class quality, and cost efficacy
• Provide team feedback and drive improvements with current tools and process; drive initiatives to the appropriate group for either design and implementation or business risk assessment
• Drive operational aspects of incident management, ensuring SLA’s for time, quality, and customer satisfaction are met in for our global infrastructure.

Aug 2014 – Feb 2015 · 6 mos · Bangalore

• Responsible for monitoring one or many networks for certain conditions that may require special attention to avoid degraded service.
• Part of SaaS Operations group in a global organization with teams in US and India, responsible for operation of IPV (Identity Management) products.
• Performance tuning, maintenance , monitoring, delivering requested service to customers and keeping availability
• Provides effective direction of a 24x7x365 staffed and on-call support team managing operations to provide for the guarantees of achieving or exceeding established Service Level Agreements.
• Communicate with clients concerning scheduled maintenance and availability of the network.
• Provide excellent customer service and communicates effectively with executive staff, department heads, management, team leaders within the department.
• Create effective policies and procedures that result in efficient overall operations of technical systems.

Sep 2013 – Jul 2014 · 10 mos · Bengaluru Area, India

•  Provided first-level triage using Unix/Linux for the entire Yahoo! global infrastructure, for all YNOC-supported properties from Yahoo Mail , Flickr, Yahoo Groups, Yahoo sports, Yahoo media and many more.
•  Also perform initial triage and remediation of network and systems issues across the global Yahoo infrastructure.
• Document and escalate issues to the appropriate subject matter experts as required after going through syslogs.
• Identify production affecting outages, and drive resolution by engaging appropriate internal and external resources.
• Engage external telecommunications providers to facilitate circuit repair and remote work requests.
• Assist with internal documentation and troubleshooting instructions to reduce dependence on tribal knowledge.
• Investigate and remediate monitoring issues to ensure proper network monitoring
•  Extensive systems and Production service architecture troubleshooting, DNS, SMTP, SSH, Host-side network, apache, VIP. Also have done extensive regression and performance testing of our newly implemented tool Moogsoft and I am the SME and Team lead and single point of contact for any Moogsoft related issues based out of Bangalore.
•  Responsible for process improvement/documentation. Alert and noise reduction. Statistical analysis of quality and quantity of alerts and incidents. Report/graph generation.
•  Also responsible for Incident management i.e Responsible for coordination and resolution of large scale incidents affecting Yahoo!'s products, services, and infrastructure. I regularly work with service engineers, architects, and upper management throughout the Incident process.
•  Specialties: Tier 1 Triage, Monitoring, Solutions , Incident Management
• Knowledge in Unix
• Basic knowledge on Cisco, Juniper devices
• Knowledge on Netcool, Moogsoft, Service Now, Siebel, Nagios, Bugzilla, syslog, SNMP