Aug 2021 – Nov 2022 · 1 yr 3 mos · Bangalore Urban, Karnataka, India · Hybrid

• Creating Azure Security Policies on Containers, AKS, Data Security, IAM/PKI for Honeywell Connected Enterprise.
• Performing product security assessment for all the products under a release train for Honeywell Connected Enterprise.
• Manage a team of Cyber Security Architects to review the cyber security posture for their respective product lines and unblock any potential roadblocks.
• Creating Threat Model, Network Diagram, and Data Flow to accurately determine the security gaps and identify security controls to mitigate the vulnerabilities
• Identifying security requirements for a product line and prioritization input for the business to manage the release plan, which aligns with market needs.
• Creating a security architecture runway for products
• Helping DevSecOps in identifying and implementing security policies for Azure to enable auditing and monitoring.
• Performing RMF, Vulnerability Assessment, and review activities for self and various projects managed.
• Implementing and auditing Container, Kubernetes security principles as per NIST and CIS benchmarks.
• Hardening of Host/Guest/Application/Network/Container/Kubernetes for on-premise and cloud infrastructure.
• Help improve the audit and review process of SecOps managed by the team.
• Help management in hiring the right talent in the Cyber Security space.
• Mentoring new talents in the security space and moderating the Security CoE.
• Improve the security posture of products owned within and across BU's.
• Implementing hardening principles in IaaS, PaaS, and SaaS.

Apr 2020 – Jul 2021 · 1 yr 3 mos

• Help management in hiring the right talent in the Cyber Security space
• Mentoring new talents in the security space and moderating the Security CoE
• Improve the security posture of products owned within and across BU's
• Prepare and review security design proposals and conduct security architectural runway
• Implementing hardening principles in IaaS, PaaS, SaaS, and monitoring
• Designing mock services for API integration tests and verifying OAuth workflows
• Performing RMF, Vulnerability Assessment, and review activities for self and various projects managed
• Designing log aggregation, monitoring, and alerting using Prometheus, AlertManager, and Grafana dashboards for VM and Platform
• Implementing and auditing Container, Kubernetes security principles as per NIST and CIS benchmarks
• Hardening of Host/Guest/Application/Network/Container/Kubernetes for on-premise solutions
• Implementing DevSecOps principles for identifying and mitigating security risks early
• Overall security and privacy risk management
• Preparing proposals for an external pen testing lab for testing in-house products developed
• Performing security Hackathons and designing solutions
• Tech talks within the organization on security trends and other problem statements

Mar 2019 – Apr 2020 · 1 yr 1 mo

• Security Risk Assessment, Incident Management, Risk Management, Information Security, Privacy, Ethical Hacking, Cloud Services Security Assessment (IaaS, PaaS, SaaS), Cloud Deployment Security Assessment (Private, Public, Hybrid), Application Security scaling from IoT, Web Services, Thick Client, Thin Client, Secure Development Life Cycle, Server/Container/Kubernetes Hardening & Auditing, IAM, OAuth 2.0, OpenID Connect, JWT, PKI, PKCS

Nov 2017 – Mar 2019 · 1 yr 4 mos · Bengaluru Area, India

• Security Risk Assessment, Incident Management, Risk Management, Information Security, Privacy, Ethical Hacking, Cloud Services Security Assessment (IaaS, PaaS, SaaS), Cloud Deployment Security Assessment (Private, Public, Hybrid), Application Security scaling from IoT, Web Services, Thick Client, Thin Client, Secure Development Life Cycle, Server/Container/Kubernetes Hardening & Auditing, IAM, OAuth 2.0, OpenID Connect, JWT, PKI, PKCS

May 2013 – Oct 2017 · 4 yrs 5 mos · Bangalore · On-site

• Design and develop security solutions for
• Tizen phone, automating testing procedures
• Reducing the memory footprint of applications developed
• Developing TrustZone applications for MasterCard, VISA, and Amex for Samsung Pay on SmartWatch (US Market)
• Performing Security Risk Assessment and Management
• Conducting Cloud Services Security Assessment (IaaS, PaaS, SaaS)
• Inspecting and verifying Cloud Deployment Security Assessment (Private, Public, Hybrid),
• Secure Development Life Cycle and Hardening of Server/Container/Kubernetes
• Integration of Auditing, IAM solutions supporting OAuth 2.0, OpenID

Apr 2012 – May 2013 · 1 yr 1 mo · EPIP Zone, ITPL, Bangalore

• Design & Develop On Board Diagnostics module, integration with other modules where communication is achieved through inter process communication techniques. Participate in design and review of other dependent modules, developing automated testing procedures to independently validate the interactions between module.

Jun 2006 – Mar 2012 · 5 yrs 9 mos · Bangalore

• Served as Team Lead in HP, India.
• Projects worked Involved: Virtualization, PKI, PKCS, Pluggable Authentication Module, C, C++, Inter-Process Communication, N/W Programming (TCP/IP, UDP), Java, SOAP, Web Services, Continuous Integration, HP Calculators, Server Hardening, Unix Administration (RHCE), Code Signing, Cryptography, HSM management, Secure Application Development, Security Testing, Vulnerability Assessment, and Management.

Aug 2004 – May 2006 · 1 yr 9 mos