Jan 2023 – May 2024 · 1 yr 4 mos · Bengaluru, Karnataka, India · Hybrid

• Lead feature development on Cloud Native Cisco Umbrella (Cisco SASE) SWG (Secure Web Gateway) for FedRAMP program. The program aims to get FedRAMP certification for all Cisco Cloud Security products.
• As a technical leader, owned Dataplane components/services (NGINX based Forward Proxy), lead the migration of these services to AWS (Gov-Cloud) from Cisco private data center.
• Lead development activity to achieve operational maturity (Scalability, High Availability, Data Backup, Fault Tolerance, Business Continuity and Disaster Recovery (BCDR)) of Cisco Umbrella SWG product.
• Lead vulnerability management activity to remediate/mitigate vulnerabilities across all the services of SWG. Anchore tool was used for container vulnerability scanning.
• Lead development activity to implement CIS (Centre for Internet Security) Amazon EKS benchmark recommendation to all the services of SWG . The activity involved identifying CIS Gatekeeper violations in SWG Kubernetes services and remediating the violations.

Sep 2017 – Feb 2022 · 4 yrs 5 mos

• Developed content scanners for Cisco Secure Email Gateway(ESA) and Secure Web Gateway(WSA). Content scanning mainly involved Advanced Malware Protection, Phishing Protection and URL protection.
• Developed features on the Advanced Malware Protection(AMP) Engine of Cisco Secure Email Gateway(ESA). AMP engine primarily scanned file attachments of email and internet traffic for malware. It typically involved file reputation, static analysis, and dynamic analysis/sandboxing of file content using both open source libraries such as ClamAV and Cisco’ proprietary threat intelligence.
• Developed Cisco Secure Awareness(CSA) feature for Cisco ESA which is considered as a good addition to the Cisco security portfolio. The feature involved identifying vulnerable repeat clickers who would get trapped in phishing attacks using simulated phishing attacks and applying stringent policies to these repeat clickers for email receptions.
• Revamped ESA email quarantine design to address critical customer escalations. Revamped ESA file reputation system retry design to address critical customer escalations..
• Developed Advanced Phishing Protection feature on ESA which was a critical portfolio addition to the product. With this ESA efficacy was greatly improved to identify phishing attacks for
• email traffic.
• Worked on major integrations of Cisco Email Gateway with other products of Cisco Partners to improve the efficacy of the product in phishing protection and to provide greater security for email traffic.
• Worked on integrations of Cisco ESA and WSA with third party products from Cisco Partner organizations (Agari, Terranova) to improve the efficacy to provide better security for email traffic.
• Migrated legacy software components of Cisco Secure Email Gateway from python2.x to python3.x.

Sep 2015 – Sep 2017 · 2 yrs

• Developed a high performance WSA(Web Security Appliance) feature where content scanning engines were scaled to deliver 2x performance.
• Worked on enhancement of WBRS(Web Reputation Score) Engine of Cisco WSA which is responsible for URL Filtering feature,. Worked on Encapsulated URL protection feature of Cisco WSA (Web Security Appliance) which provided URL filtering for translated URLs (Google Translate etc)
• Worked on features of ESA and WSA products end to end where code changes were spread across various components of the product such as Configuration, CLI, GUI, reporting, tracking and
• Scanning engines, Quarantine etc.

Oct 2010 – Jan 2015 · 4 yrs 3 mos

• Worked on Small Cells technology-Trusted wireless Access to Evolved Mobile Package Core(EPC), authentication protocols (RADIUS, EAP, DIAMETER), tunneling protocols (EoGRE, IPoGRE). Developed authentication modules using EAP open source library for Trusted wireless Access to EPC.
• Developed protocol stacks on platform simulator which simulated high performing clients and servers using event loops and event notification libraries such as libevent.

Feb 2022 – May 2023 · 1 yr 3 mos · Bengaluru, Karnataka, India

• Developed features(SELinux implementation) to secure the components of Pulse Secure VPN gateway using SELinux.

Aug 2009 – Aug 2010 · 1 yr · Bengaluru, Karnataka, India

• Worked on IMS (IP MultiMedia subsystem) technology specifically on IMS UEs and IMS core gateways.
• Worked on protocol stacks of SIP, SDP, RTP and RTCP. H.323, H.245 and H.225 for IP Multimedia Subsystem (IMS) technology.