Vandan R.

DevOps Manager

Bengaluru, Karnataka, India3 yrs 2 mos experience

Key Highlights

25 years of survival on a dangerous planet.
Expert in cloud security and automation.
Proven track record in vulnerability management.

Stackforce AI infers this person is a Cloud Security Engineer with expertise in SaaS and Infrastructure Automation.

Contact

Skills

Core Skills

Cloud SecurityKubernetesInfrastructure AutomationSecurity EngineeringProgrammingAutomation

Other Skills

Google Cloud Platform (GCP)PythonTerraformLinuxBurp SuitePalo Alto XDRGo (Programming Language)CybersecurityGitAmazon Web Services (AWS)ContainerizationComputer ScienceCommunicationdockerPython (Programming Language)

About

Please checkout the experience section if you want to know about my experience. Please checkout the skills section if you want to know about my skills. My achievement is surviving for 25 years straight on an inhabited planet with dangers such as volcanoes and sparkling water.

Experience

Mobile premier league (mpl)

Security Engineer

Feb 2024 – Aug 2025 · 1 yr 6 mos · Bengaluru, Karnataka, India · On-site

Collaborated cross team to roll out various K8s security mech-
anisms such as:
1. Distroless golden images
2. Least privilege RBAC
3. (Calico) Network policies
4. Workload identity
5. Real-time admission controller monitoring
6. Seccomp profiles
7. Cluster level misconfigs such as public access, vul-
nerable open ports and default service accounts
Worked with SRE and developers to architect and im-
plement general Cloud security including:
1. Fine grained IAM for developers and workloads
2. Private service connect
3. Cloud bucket best practices
4. Implementing alternatives to Service account keys
5. Secret management
6. Organization policies for best practice enforcement
7. VM golden images hardened using Packer and Jenk-
ins
8. cloud functions for slack alerting
9. Utilizing Prisma cloud for remediating container and
cloud vulnerabilities
10. Database access management and strategies
11. Implementing Cloud Armor (web application firewall policies)
Developed MITM proxy scripts for in-game websocket
pentesting and other quality of life automations using
python.
Performed external/internal asset monitoring and inci-
dent response using Cortex XDR
Deployed and maintained tools for monitoring and vul-
nerability management on K8s such as defectdojo, ELK
stack etc.
Performed Phishing campaigns with a success rate of
13% including full account takeovers (bypassing 2FA
mechanism).
Worked with compliance auditors to ensure smooth delivery of proofs.
Performed technical POCs and price negotiations (~68% reduction) for on-boarding tools.
Tools:
Prisma Cloud CSPM
GKE
GCP
Python
Terraform
Linux
Burp Suite
Palo Alto XDR

Google Cloud Platform (GCP)KubernetesPythonTerraformLinuxBurp Suite+2

Oportun

Security Engineer

Oct 2022 – Feb 2024 · 1 yr 4 mos · India · Remote

As part of the Security Architecture team:
Coding up services (using Go) and Deploying them using Kubernetes
Acted as on-call for own services
Managing infrastructure using Terraform (AWS, Signal Sciences, GitHub...)
Helped create and deploy custom technical architecture.
Maintained the SOAR platform (playbooks, integrations, custom Python actions, IAM, POC)
Metrics collection and monitoring
Achievements:
Found 100+ hard-coded secrets in git repositories
Saved hours of manual work during tool migration
Automated security alert validation and alerting
Helped save $$$ by developing custom in-house solutions