Sep 2024 – Oct 2025 · 1 yr 1 mo · Navi Mumbai, Maharashtra, India · Remote

• Onclusive is an amalgamation of legacy Kantar, Critical Mention, Digimind, and Prgloo, brought together by Symphony Technology Group (STG) in the Media and PR industry.
• Security Architecture & Risk Management:
• Designed and implemented enterprise-wide security architectures, integrating advanced cloud security, AI-driven threat detection, and zero-trust principles (including Twingate reference architecture) to proactively defend against evolving threats. Defined and maintained technical security standards, policies, and frameworks, ensuring alignment with ISO 27001 (ISMS) and GDPR. Led security reviews and threat modeling for SaaS products, embedding robust controls throughout the development lifecycle.
• Directed cross-functional teams in developing technical security designs, ensuring seamless integration of ISO 27001 requirements via GAP assessments. Conducted risk assessments and compliance evaluations, shaping the organization’s security strategy and roadmap. Championed a balanced approach to risk management, enabling business objectives while protecting critical assets.
• Acted as a trusted advisor to executive leadership and stakeholders, providing guidance on security best practices, risk mitigation, and emerging technology trends, including establishing Onclusive’s Global Governance board. Developed and delivered security awareness programs and technical training for developers and employees.
• Designed Splunk’s distributed architecture for Onclusive’s hybrid cloud, collaborating with SOC vendors to establish detection and response processes. Implemented Orca Security for agentless, comprehensive CSPM across multi-cloud environments, enabling real-time visibility, risk prioritization, and automated remediation. Deployed and integrated Snyk into CI/CD pipelines, automating vulnerability detection and remediation in open-source dependencies, containers, and IaC, significantly reducing security risks and fostering a DevSecOps culture.

Dec 2021 – Sep 2024 · 2 yrs 9 mos · Chennai, Tamil Nadu, India · Remote

• Security Architecture Activities
• Security Architecture review of the migration of the EPOST(E-Postal System) from traditional on-prem architecture to
• Azure Based Hybrid Architecture. This involving the review of ACME based Digital Certificate Authentication for mutual
• authentication for 120+ microservices based on java, Kotlin, Scala etc..
• Oversaw and contributed towards security architecture review for cloud migration, Identified potential risk areas through security
• review with the IT Architect team.
• Worked on integration of Secure Code review tools like fortify into the CI/CD build chain. Integrated Composition tools like OWASP
• Dependency Checker into the built chain to detect supply chain vulnerabilities. The agile methodology(SaFE) was tweaked to adapt
• these changes as part of the SDLC Process.
• Writing Security Requirements (SecReq’s) from overall RISK assessment, management and mitigation activities for the new
• platform.
• Educate and communicate cloud security requirements, policies, standards and procedures to business/internal stakeholders as it
• relates to SDB project and strategic initiatives
• Conduct security architecture reviews of planned cloud migration initiatives across the organization and produce high quality
• Threat models(STRIDE) for cloud environments clearly articulating risks.
• Produce Documented Framework or Architectures, that describe and are used to manage implementation of Security at the new
• Platform in azure. Designing Security Solutions by possessing knowledge through SABSA Enterprise Security Framework.
• Security GAP Assessment and monitoring key compliance to regulatory and goverance requirements such as ISO27001, German
• Postal Regulations, General Data Protection Regulation (GDPR)
• Created mapping with security requirements with Business Attributes which align security implementations to Security Strategy
• and overall Business Strategy.
• Performed penetration testing on Deutsch post Applications, Microservices and MobileApp

Oct 2020 – Dec 2021 · 1 yr 2 mos · Bengaluru, Karnataka, India · Remote

• Performed multiple Red team operations against IBM cloud infrastructure through a assumed breach.
• Performed penetration testing on IBM’s own container service IBM Cloud Kubernetes Service and Red Hat Openshift.
• Designing and Deploying C2 infrastructure for Red team operations. Exploiting Softlayer Active directory infrastructure and lateral movement.
• Research on Bypassing EDR solutions and Improving SOC detection mechanism to better respond to APT’s
• Pentesting Web interfaces and API of the IBM cloud microservices such as metadata, instana etc.
• Testing Unreleased IBM cloud VPC VSI images against developer backdoors, best practices and Hardening guidelines before Public Release.
• Developed a learning environment for junior penetration testers and mentored new hires.
• Expertise in building and deploying dynamic infrastructure framework to efficiently work with IBM cloud environments targeting a huge number of asserts.

Jul 2016 – Oct 2020 · 4 yrs 3 mos · Chennai Area, India · Hybrid

• Performed penetration testing on various EY’s clients network and applications.
• Developed test cases to test web applications by mapping it to OWASP and NIST controls.
• Expertise in performing advanced exploitation and post-exploitation attack techniques as part of Cyber defense red team exercises.
• Reviewed configuration of target systems using Centre for Internet Security (CIS) benchmarks and recommended best practices for secure configurations.
• Performed internal application and infrastructure penetration testing including physical security review.
• Design, develop and implement penetration tools and tests and also use existing ones to handle penetration testing activities.
• Proficiency in one or more scripting languages. E.g. Perl, Python, ruby etc. Exposure to Assesmbly, C, Cobol, Java.
• Performed risk assessments to big data environments to ensure regulatory compliance are met.
• Developed Security Assessment Plan and Report, Rules of Engagement, Commencement Brief, and Exit Brief templates.
• Conducted trainings for security professionals on advanced tools, exploits and frameworks.
• Develops operational cybersecurity playbooks for security event triage and incident response for managed services clients.
• Performs advanced threat hunting activities and detected lateral movement on large enterprise and banking networks.
• Performs threat intelligence gathering, analysis, and dissemination.
• Utilize tools such as GRR,OSquery,Redline to conduct large-scale investigations and examine endpoint and network-based sources of evidence.
• Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations
• Designed Security Orchestration and Automation (SOAR) playbooks to automate incident response process.
• Deployed Splunk and Qrader on various managed services clients and integrated multiple devices. Developed correlation rules to detect emerging threats.