Dec 2022 – Jan 2025 · 2 yrs 1 mo

Apr 2022 – Dec 2022 · 8 mos

• Trained team of security engineers to take over the management and maintenance of 'Guardian' and ASMM.
• Developed roadmap for adoption of lean / distroless container base and cloud native workload OS for the kubernetes nodes to reduce overall the attack surface and also bringing down the vulnerabilities resulting in lesser reliance on detective controls for patch management.

May 2021 – Mar 2022 · 10 mos

• Continued working on ASMM and developing 'Guardian' and extended it's feature to handle certain use cases of incident response.

Aug 2019 – May 2021 · 1 yr 9 mos

• Being a person who has always been interested and passionate in technical aspect of Information security , shifted from a techno-management role to a technical role.
• As a security engineer, primary responsibility revolves around Securing DevOps.
• 1) Maintaining a Secure Operating Environment
• Developed organization's first cloud security initiative named ‘Freshworks AWS Security Maturity Model’ (ASMM) to streamline cloud security practices.
• Designed and implemented ‘Guardian’ a python based event-driven system inspired and influenced by well known OSS project named cloud custodian to automatically remediate misconfigurations.
• 2) Continuous Security Monitoring
• Conducting Incident Response and Forensics
• 3) Shifting Security Left
• Conducting regular trainings with respect to Cloud Security for up-skilling the team.
• Other responsibility includes the following :-
• Helping the security team in ideation and designing of new automations for managing and improving security posture.
• Developing quick hacky scripts for automating some boring or mundane tasks of the team.

Aug 2018 – Jul 2019 · 11 mos

• Developed a python based framework that integrates with in-house project management tool to track evidence / artifacts for audit engagements reducing manual efforts for the GRC personnel.
• Automated compliance audits around cloud security controls
• Acted as a liason between engineering teams, internal GRC Team and external auditors.

Aug 2018 – Aug 2019 · 1 yr · Chennai Area, India

• Guest Faculty for Cyber Forensics and Incident Response.

Jul 2014 – Apr 2017 · 2 yrs 9 mos · Chennai Area, India

• Reviewed networks and infrastructure configuration for audit engagements.
• Developed multiple scripts to automate configuration reviews for audit and consulting engagements to cut down analysts’ time on mundane tasks
• Consulted for multiple infrastructure security solutioning engagements
• Data centre Security Assessment
• Application Security Controls Assessment
• UNIX / Redhat / AIX / AS 400 Series Servers Secure Configuration Reviews
• Application and Network Device Security Configuration Reviews
• Database Security Configuration Review
• SDLC (Software Development Lifecycle) Reviews
• Active Directory Security Assessment
• SOC 2 / ISO 27001 Audits
• ISO 27001 Implementations