Jun 2021 – Feb 2023 · 1 yr 8 mos · Greater Seattle Area

• All things AWS & Kubernetes security.

Jul 2017 – Jun 2021 · 3 yrs 11 mos · Greater Seattle Area

• Lead security engineer for cloud (AWS, GCP, and GSuite) security projects focused on directive, preventative, detective, and responsive controls.
• Led the transformation of Uber Cloud Security from an operations-focused to an engineering-driven team. Envisioned and led projects to build multi-cloud security monitoring & response automation platform, identity & access management, threat detection, and provisioning.
• Built and driving cross-industry partnership with Dow Jones for Hammer.
• Helped the Vulnerability Management, Threat Detection, Incident Response, and Compliance teams to successfully adopt the cloud by authoring engineering solutions and consultation.
• Performing security engineering reviews including threat models, architecture reviews, and providing security guidance for cloud initiatives.

Oct 2014 – Jun 2017 · 2 yrs 8 mos

• In this role, I participated in all phases of the cloud service lifecycle which includes design, development, deployment, monitoring, and maintenance. I worked with third party vendors to integrate their services into the Microsoft cloud to ease customer pain points and provide seamless experiences. I owned ‘App Service Certificate’, ‘App Service Domain’ and components of ‘App Service’ Platform and Azure Server-less offering i.e. ‘Azure Functions’.

Jul 2011 – Sep 2014 · 3 yrs 2 mos

• As part of this role, I performed security design reviews, code reviews, threat modelling, penetration testing, security breach detection and reactive security engineering on various cloud services and products in Azure organization. It also included developing security features, proofs of concepts and security services for first party Azure services.

Feb 2011 – Jul 2011 · 5 mos

• Worked on a password security project under the Consumerization of IT (CoIT) initiative in collaboration with Microsoft Research. In this project, we analyzed the threat to corporate password security due to CoIT from both, theoretical and practical perspectives. In addition to managing it, I also developed all the tools required for this initiative.

Jul 2010 – Jan 2011 · 6 mos

• Worked in the Security and Privacy research group on their ServiceOS research project. My responsibility was to build the ServiceOS prototype for both, smartphone and desktop. This included implementing the ServiceOS policies in its browser kernel by modifying the Internet Explorer rendering engine and making ServiceOS runtime compatible with the core Windows kernel.

Feb 2010 – Jul 2010 · 5 mos

• Performed security code review of multiple internal applications and deployment review of production servers. Also prepared a few internal security white papers and got them reviewed from security experts.

Aug 2009 – Feb 2010 · 6 mos

• Prepared test plans and test cases for features in the Windows Activation stack and executed them during the system testing phase. Analysed pain points in our group’s performance testing methodologies, gave recommendations and built assistive tools. I evaluated VSTS 2010 and TFS 2010, presented my findings and gave recommendations to the team.

Apr 2009 – Jun 2009 · 2 mos

• Worked as a student developer for Google during Google Summer of code 2009 to develop Freesite (websites hosted in Freenet) filters for Freenet which is a decentralized, censorship-resistant P2P network with a distributed dataset. I created white list based filters for HTML5, CSS2, SVG and BMP.

Jun 2008 – Aug 2008 · 2 mos · Greater Hyderabad Area

• Developed automation software for routine on premise production server maintenance operations such as patch management, monitoring performance and uptime etc.