Umesh Pawar

Product Manager

Bengaluru, Karnataka, India11 yrs 6 mos experience
Most Likely To Switch

Key Highlights

  • Expert in driving secure-by-design practices.
  • Proven track record in reducing vulnerabilities.
  • Strong focus on scalable security in complex systems.
Stackforce AI infers this person is a Security Architect specializing in secure software development across healthcare and industrial sectors.

Contact

LinkedIn

Skills

Core Skills

Secure SdlcProduct SecurityApplication SecurityThreat And Vulnerability Management

Other Skills

Privacy ComplianceOWASPThreat ModelingArchitecture ReviewsVulnerability ManagementSecurity AutomationSecure Architecture DesignRisk AssessmentContainer SecuritySecure by DesignCloud Security Posture ManagementDocker SecurityKubernetes SecurityIECGeneral Data Protection Regulation (GDPR)

About

I’m a Staff Product Security Architect focused on building secure, resilient products at scale. I work closely with engineering and product teams to embed security into the design and development process, ensuring risks are addressed early and continuously across the lifecycle. My work goes beyond identifying vulnerabilities. I drive secure-by-design practices, influence architecture decisions, and help teams ship software that is both scalable and secure without slowing delivery. At a Staff level, I focus on: Leading and scaling Secure Software Development Lifecycle (SDLC) practices across multiple teams and products Driving threat modelling and architecture reviews for complex, distributed systems Partnering with engineering leadership to integrate security into product and platform decisions Establishing risk-based security strategies aligned with business priorities Building and improving security processes, tooling, and automation Supporting compliance while keeping engineering velocity high I bring deep expertise across application, cloud, and industrial environments, with a strong focus on practical, engineering-driven security.

Experience

11 yrs 6 mos
Total Experience
2 yrs 3 mos
Average Tenure
2 yrs 8 mos
Current Experience

Stryker

Staff Security Engineer

Oct 2023Present · 2 yrs 8 mos · Bengaluru · Hybrid

  • I’m a Staff Product Security Architect focused on helping organisations build secure, resilient products at scale.
  • I work closely with engineering and product teams to embed security into the software development lifecycle, ensuring risks are addressed early and continuously rather than late in the release process. My approach is practical and engineering-driven. Security should enable teams, not slow them down.
  • My work includes leading threat modeling, driving secure architecture reviews, and establishing scalable Secure SDLC practices across multiple teams and products. I focus on influencing design decisions, improving security posture through automation, and aligning security strategy with business goals.
  • Reduced critical vulnerabilities across products through scalable security practices
Privacy ComplianceOWASPSecure SDLCProduct Security

Abb

Senior Product Security Engineer (R&D)

Nov 2021Oct 2023 · 1 yr 11 mos · Bengaluru

  • I’m a Product Security Architect who partners with engineering leadership to build secure-by-design products and platforms.
  • My focus is on scaling security across organizations. I define and drive Secure SDLC practices, influence architecture decisions, and help teams integrate security into how they design, build, and operate software.
  • I lead threat modeling and architecture reviews for complex, distributed systems, and work closely with product and engineering teams to prioritize risks based on real business impact. I also drive security automation and vulnerability management strategies that improve security without impacting delivery speed.
  • My experience spans cloud-native environments, application security, and ICS/OT systems. I work with industry frameworks including MITRE ATT&CK, NIST, IEC 62443, UL 2900, PCI DSS, and HIPAA.
Product SecurityThreat ModelingSecure SDLC

Baxter international inc.

Product Security Engineer

Apr 2020Nov 2021 · 1 yr 7 mos · India

  • I’m a Product Security Engineer with a strong focus on application and cloud security in complex, distributed systems.
  • I specialise in threat modelling, secure architecture design, and the implementation of scalable security practices within the Secure Software Development Lifecycle. I work hands-on with engineering teams to identify risks early, design secure systems, and implement practical, effective controls.
  • My work includes vulnerability management, failure mode analysis, and securing cloud-native and containerised environments, as well as deep involvement in ICS/OT security.
  • I have experience applying frameworks and standards, including MITRE ATT&CK, CVSS, NIST, IEC 62443, UL 2900, PCI DSS, and HIPAA, to real-world engineering challenges.
Product SecurityThreat ModelingSecure SDLCApplication Security

Mindtree

Information Security Consultant

Mar 2018Apr 2020 · 2 yrs 1 mo · Pune/Pimpri-Chinchwad Area

  • Hands on experience in malware analysis (static and dynamic).
  • Application Security, API Security.
  • Experience in Threat and Vulnerability Management program(with open source and commercial tools).
  • Threat Modeling and Attack Surface Analysis
  • Hands on experience in thin/Thick Client Application Security.
  • Well versed with Threat Hunting, Threat Intelligence.
  • Attackers methodologies (Kill chain, Dimond Model).
Threat ModelingRisk AssessmentThreat and Vulnerability ManagementApplication Security

Wipro technologies

2 roles

Associate Consultant

Promoted

Nov 2016Mar 2018 · 1 yr 4 mos

  • Vulnerability management (Qualys) design , deployment and support. HLD/LLD , SOP and SMTD.
  • Application Security DAST, SAST.

Security Analyst

Nov 2014Oct 2016 · 1 yr 11 mos

  • Endpoint/Data/Application/Network Security.
  • Incident Response
  • Malware Analysis.
  • Vulnerability Management

Education

Savitribai Phule Pune University

Master of Science (MSc) — Computer Science

Jan 2011Jan 2013

Stackforce found 100+ more professionals with Secure Sdlc & Product Security

Explore similar profiles based on matching skills and experience

BS

Bilal Shaikh

IT Security Engineer

at Perseus Group, Constellation Software

Pakistan4 yrs 2 mos exp
Penetration TestingVulnerability AssessmentApplication SecurityCybersecurity
SS

Surendra Nath Reddy Satti

Principal Engineer

at Unacademy

Bengaluru, India8 yrs 9 mos exp
CybersecuritySecurity ArchitectureApplication SecurityVulnerability Assessment
DG

Dhwani Girwalkar

Senior Cyber Defense Analyst

at PayU

Bengaluru, India7 yrs 9 mos exp
Aimar Sechan Adhitya

Aimar Sechan Adhitya

Lead Security Researcher

at HYPERHUG

Bali, Indonesia1 yr 10 mos exp
CybersecurityPenetration TestingMobile SecurityVulnerability Assessment
Somesh Jaiswal

Somesh Jaiswal

Senior Application Security Engineer

at Twilio

Bengaluru, India7 yrs 6 mos exp
Anand Prabhat

Anand Prabhat

Principal Cloud Security Engineer

at Autodesk

Bengaluru, India7 yrs exp
Cloud SecurityInformation SecurityIdentity & Access Management (IAM)Cyber-security
Soroush Dalili

Soroush Dalili

Principal Application Security Engineer

at Bentley Systems

Worcestershire, United Kingdom20 yrs 1 mo exp
Application SecurityCybersecurityVulnerability AssessmentPenetration TestingVulnerability Research
Gaurav Gugnani

Gaurav Gugnani

Data Governance Architect

at Nokia

Noida, India18 yrs 6 mos exp
Cloud MigrationTechnical Program ManagementSolution ArchitectureCloud MonitoringData Analysis
Umesh Pawar - Product Manager | Stackforce