Dec 2020 – Present · 5 yrs 4 mos · Bengaluru, Karnataka, India

Apr 2017 – Sep 2020 · 3 yrs 5 mos · Bengaluru Area, India

• Identified Zero Trust and Cloud Workload Protection (CWPP) as major disruptions and foundations for proactive security model and successfully pivoted ColorTokens vision towards leadership in Zero Trust
• Drove company’s vision towards securing next-gen applications running across private data-center and multi-cloud environments across various form-factors VMs, Cloud-Native, Containers and Serverless managed by single Intent Based Policy architecture and secure access to the applications by ZTNA.
• Built 100+ member team at Color Tokens, Bangalore, including engineering leaders, Security/Big-data/SaaS architects and product management leaders in around eight months. Established various processes and controls to enable Bangalore team’s contributions on all fronts of product development.
• Drove re-architecture and pivoting of product towards SaaS and built highly scalable SaaS product offering from ground zero with Kubernetes, Micro-services, Bigdata ingestion using Spark, Elastic & MongoDB and fully automated CI/CD DevSecOps pipeline delivering feature releases every week. Product validated with scale of more than 10K workloads and Ingestion capacity of more than 1 billion events/day, supports HA/DR across regions and canary feature roll-out.
• Setup 24x7 Site Reliability team including requisite processes for SaaS offering. Set vision of team to strive for proactive detections and self-healing system. Expanded CT’s footprint to 7 regions maintaining lean team managing entire operations with highly automated operations
• As a result, after many years of incorporation, ColorTokens was noticed and awarded at various industry forums winning 5 Gold awards from Cyber Defense Magazine including ‘Security company of the year’ during RSA-2019 and Cyber Security excellence awards during RSA-2020 including 1 Gold and 4 silver.

Feb 2007 – Apr 2017 · 10 yrs 2 mos

• Led 80+ people cross-geo, cross-functional teams including development, test and security research for Security Business Unit at Juniper. As part of my product portfolio, I owned NGFW product line, DPI, SSL and other key technologies across Juniper. I also owned Juniper Router Services - CG-NAT & IPSec that were Top-2 SW services in Juniper. My teams had direct ownership of multi-100 million US$ annual SW subscription revenues.
• Led team to deliver first product completely architected and built from Bangalore IEC center in 2007-2008.
• Architected world’s first 10Gbps IPS appliance - Juniper IDP-8200. Product won Information Security Magazine Readers’ Choice Award in 2009 & 2012. Juniper came from behind and became first major IPS vendor to crack 10Gbps IPS market beating Cisco/McAfee/IBM-ISS and Tipping point.
• My team was key contributor in World’s Fastest Firewall Juniper’s SRX-5800 of it’s time. This product captured more than 50% of the data-center FW market and maintained market dominance for 5+ years.
• My team turned-around Juniper’s SRX ratings at industry renowned NSS labs test for NGFW & IPS from cautious to recommended & among TOP-3 in industry in Security Coverage (NSS Labs Security Value Map 2015 onwards). We maintained the leadership position while delivering daily updates to Juniper’s wide customer base.
• Turned-around IPS product quality in less than a quarter and made internal record of zero P1 escalations for continuous period of 13 quarters. With innovative Test methodology, we reported 15+ memory corruption issues in OpenSSL and submitted fixes to the community.
• Redesigned Juniper DFA pattern match algorithm and improved it’s performance by a factor of 3x. Worked on industry well known Hyperscan pattern engine (acquired by Intel) and won appreciation by authors for very exhaustive technical evaluation and constructive feedback provided to them to further improve Hyperscan performance.

Jun 1996 – Jan 2007 · 10 yrs 7 mos

• One of the key architect to develop Single Pass Inspection Engine at iPolicy Networks to process multiple security services in a single pass of the packet in 1999-2000. Architected many other algorithms and extended well known Boyer Moore pattern matching algorithm to work across multiple patterns in single iteration. Filed multiple patents for the work.
• Architected innovative TCP Proxy solution in Linux kernel replacing Linux’s TCP/IP stack. The proxy had many intelligent features for ultra high performance like session interjection (hijack) in the middle of established TCP session, ability to short-circuit from user-plane process post evaluation of the session to eliminate cost of packet data copy across user and kernel planes.
• Built L7 DPI protocol parsers for HTTP, FTP, SMTP, DNS, H323, NetBios and modules handling NAT, ALG and DMZ processing.
• In the initial part of my career, I worked on MPLS, TE-RSVP, LDP/CR-LDP protocol stack development projects.