Feb 2014 – Oct 2017 · 3 yrs 8 mos · San Jose, CA

• At Verizon Labs in the IPTV Services group, we are developing an end-to-end IPTV solution for content delivery and video streaming. This solution includes IPTV clients, web services platform and video ingestion/distribution pipelines. As a Security Architect and manager of the security team, I am responsible for the security of the overall architecture and various aspects of the solution which include the following:
• Architecting the solution to prevent theft of service, theft of content and to ensure user privacy.
• Ensuring content security throughout the content lifecycle starting at content ingestion all the way to consumption on various clients. DRMs like Play Ready, Widevine and FPS are used to protect the content and enforce content restrictions.
• Client Security of the 1st party client hardware developed at Verizon using methods such as Secure Boot, Chain of trust rooted at the hardware, Hardened OS, etc. I evaluated the security mechanisms offered by various SOCs to confirm that they would meet the security needs of the platform before we picked one for the client hardware.
• Security of the mobile applications using TRS tools for resistance to debugging, reverse engineering, tampering, cloning, etc.
• Securing the web services platform from the numerous online threats while enabling highly available, highly reliable video streaming platform.
• My team’s responsibilities also include interfacing with internal corporate teams to ensure proper secure software development processes are implemented and secure SDLC is being followed. I am deeply involved with internal security audits and risk assessments while also driving 3rd party security audits of the various projects.

Feb 2012 – Feb 2014 · 2 yrs

• Intel Media was a division within Intel that grew out of the Digital Home Group (DHG). Its mission was to create an IPTV platform that could be used to deliver Live and VOD content over the internet to end-consumer devices such as IPTV STBs, Laptops and Mobile devices. Intel Media was later acquired by Verizon.
• At Intel Media, I started as a Security Architect with a focus on device security. My primary role was to ensure that the 1st party client devices designed and developed at Intel were highly secure and offered the necessary content protection to enable them to securely play premium content. This role later expanded to cover the security of the mobile applications being developed in the group as well as the server side security of the IPTV platform. My responsibilities also included obtaining security approvals from various internal product review boards and performing “house keeping” tasks related to corporate security procedures.

Aug 2000 – Feb 2012 · 11 yrs 6 mos

• Embedded Software/Firmware development (mostly using C) on various operating systems. In the Digital Home Group, I started out developing Media software and drivers for the Media Processors and then contributed to the security elements of the TSD. I later took on more security focused roles and took one of the Intel Media processors through the Nagra NOCS certification process. I was also routinely helping DHG customers design platform security elements that took advantage of the security features of the media processors. This role later transitioned into the security architect position at Intel Media when that group was later created to implement the vision of the ideal OTT IPTV platform.
• Some of the other technologies I worked on during my 14 years at intel included the following:
• Development of firmware for Intel's Wireless USB solution over the Ultra Wide Band radio technology. Here, I was one of the primary firmware developers and responsible for ensuring protocol compatibility and device certification. I also contributed in a small way to the WUSB standards.
• Development of firmware for the Intel Active Management Technology components embedded on the servers.
• Developing device drivers and prototype software. I Developed one of the industry’s first Serial ATA (SATA) device drivers for a SATA controller (GD31244) developed at Intel.
• Developed prototypes for consumer grade network storage devices to highlight capabilities of the intel IO Processors before NAS became a common buzz word.