Jun 2024 – Jul 2025 · 1 yr 1 mo · Remote

• Safeguarding Enterprise Assets: Implement and manage security solutions to protect enterprise systems, applications, data, and overall infrastructure.
• Threat Detection & Response: Proactively identify, analyze, and respond to security threats and incidents.
• Vulnerability Management: Conduct security assessments and implement measures to mitigate vulnerabilities in enterprise systems.
• Security Policy & Compliance: Develop, implement, and enforce security policies and ensure compliance with industry regulations.
• Secure Cloud Architecture Design & Implementation: Design and implement secure cloud infrastructure and applications that align with industry best practices.
• Data Protection & Threat Monitoring: Enforce strict data protection measures and continuously monitor cloud environments for potential security threats and vulnerabilities.
• Regulatory Compliance: Ensure adherence to relevant security regulations and compliance standards.
• Security Awareness & Education: Training on cloud security best practices to foster a culture of security awareness across the organization.

Oct 2022 – Jun 2024 · 1 yr 8 mos · Hybrid

• Working on the payroll of TPG
• Handling M&A Security team where engage in the initial requirements definition including analysis of threats and risk and alignment with Coupa Security, Engineering, IT and Architecture standard for acquired entities and to be acquired entities.
• Work with M&A team to provide security solution to bring the acquired entities in Coupa Data Center, develop security program, provide training and best practices to development team.
• As a Security engineer develop references architectures, design patterns, standards, guidelines and other company-wide deliverables to align security requirements to the IT Strategy.
• Act as product security engineer by driving Security Architecture and Design, Implementation, and Optimization for Web, API and Mobile backend application across Coupa and acquired entities.
• Handling security engineering team which is responsible to perform advance penetration testing, threat modeling and design review as part of central M&A Security team.
• Support acquired entities to be complaint with various industry standard like PCI, ISO 27001 etc.

Mar 2022 – Oct 2022 · 7 mos

• Worked on the payroll of TPG
• Build the Product Security Team in Simpl by hiring best talents in the industry
• Leading the Product security blue team function in driving Secure SDLC activities for Simpl products.
• Worked with IT leadership for onboarding Life of Business applications into Secure SDLC.
• Onboarded applications into Sonarqube dependency scanner to remediate any third-party component vulnerabilities
• Secure Logging gap analysis on products to ensure the right level of logging is performed to trace any incidents while not logging any sensitive data.
• Securing CI/CD pipeline and improving its security posture to defend against any supply chain attacks
• Tailored Product Security Maturity model framework for Aujas products based on various industry benchmark frameworks.
• Leading special projects to enable products/applications for bug bounty programs.
• Leading projects on Security Automation

Jan 2021 – Jun 2022 · 1 yr 5 mos · Hyderabad, Telangana, India

• Analyze novel malware strains, in open-source (npm/RubyGems/PyPI) components, bytecode (.NET DLLs/Java JARs), and native binaries (Windows and Unix), impacting software supply chains
• Review, isolate, analyze, and reverse engineer vulnerabilities in open-source software
• Collaborate with Customer Success Engineers to mitigate firsthand customer-related support issues and improve our products.
• Collaborate with technology and business team members to define and refine requirements in an agile development environment

Sep 2018 – Aug 2019 · 11 mos · Hyderabad Area, India

• Analyze novel malware strains, in open-source (npm/RubyGems/PyPI) components, bytecode (.NET DLLs/Java JARs), and native binaries (Windows and Unix), impacting software supply chains
• Review, isolate, analyze, and reverse engineer vulnerabilities in open-source software
• Collaborate with Customer Success Engineers to mitigate firsthand customer-related support issues and improve our products.
• Collaborate with technology and business team members to define and refine requirements in an agile development environment

Aug 2019 – Jan 2021 · 1 yr 5 mos · Bengaluru, Karnataka, India · Hybrid

• Build the Product Security Team in Aujas by hiring best talents in the industry
• Leading the Product security blue team function in driving Secure SDLC activities for Aujas products.
• Worked with IT leadership for onboarding Line of Business applications into Secure SDLC.
• Onboarded applications into Sonarqube dependency scanner to remediate any third-party component vulnerabilities
• Secure Logging gap analysis on products to ensure the right level of logging is performed to trace any incidents while not logging any sensitive data.
• Securing CI/CD (Jenkins) pipeline and improving its security posture to defend against any supply chain attacks
• Tailored Product Security Maturity model framework for Aujas products based on various industry benchmark frameworks.
• Leading special projects to enable products/applications for bug bounty programs.
• Leading projects on Security Automation

Feb 2016 – Aug 2018 · 2 yrs 6 mos · Bangalore

• I was Deputed to VLS as an Information Security Analyst and was responsible for:
• Penetration Testing - Performed DAST and SAST on client's Web, Infra and Mobile applications
• Network Pentest - Performed black-box host assessment (Network Security Assessment)

Jan 2014 – Jun 2020 · 6 yrs 5 mos · Kanuru

• programming tutorials on C, C++, python, HTML, CSS etc... problem solving on programming, penetration testing tutorials

Dec 2013 – Present · 12 yrs 3 mos

• Content writer