Amit chaubey

DevOps Engineer

Noida, Uttar Pradesh, India15 yrs experience

Highly Stable

Key Highlights

Over a decade of experience in cybersecurity.
Expertise in implementing cloud security strategies.
Strong advocate for Shift Left security practices.

Stackforce AI infers this person is a Cybersecurity expert specializing in Cloud Security and Risk Management.

Contact

amit_chaubey123@yahoo.co.in LinkedIn

Skills

Core Skills

Cloud SecurityProduct SecurityDevsecopsIamCyber Security RiskZero Trust

Other Skills

AWSActive DirectoryAgile & Waterfall MethodologiesAmazon Web Services (AWS)Analytical SkillsAntivirusApplication Security ArchitectureArchitectural DesignArchitectureAzure Active DirectoryBack-End Web DevelopmentBurp SuiteBusiness AcumenBusiness AnalysisCCNA

About

With over a decade of experience in cybersecurity, including recent contributions at Stem, Inc., the focus has been on implementing robust cloud security strategies and fostering a culture of Shift Left practices. The role emphasizes secure architecture reviews, threat modeling, and the integration of advanced CI/CD security tools like SAST, DAST, and SCA to enhance organizational resilience. Expertise in IAM, zero-trust architectures, and runtime security enables the team to address evolving challenges in securing cloud-native and on-prem infrastructure. Previously at Gartner, contributions spanned designing Zscaler web proxies, implementing WAFs, and establishing CASB solutions to enhance compliance and mitigate risks. A collaborative approach drives success, ensuring data protection through encryption, DLP workflows, and vulnerability management programs. At Stem, Inc., the mission remains clear: advancing secure, scalable, and compliant cloud ecosystems to empower seamless innovation while safeguarding critical assets.

Experience

15 yrs

Total Experience

2 yrs 9 mos

Average Tenure

1 yr

Current Experience

Zinnia

Manager, Security Architecture and Automation

Jun 2025 – Present · 1 yr · Noida, Uttar Pradesh, India · Hybrid

Security leader driving enterprise-wide programs in security architecture, cloud security, and product security. I build high-performing teams, scale security capabilities, and translate complex risks into business-aligned strategies.
Known for transforming early-stage security functions into automated, proactive, and measurable programs, I focus on safeguarding both infrastructure and products without slowing innovation.
Key highlights:
Leading multidisciplinary security teams spanning cloud security, product security, and platform engineering.
Driving end-to-end product security programs — secure SDLC design, code review strategy, scalable SAST/DAST/IAST, dependency governance, and coordinated penetration testing for critical apps.
Establishing offensive security initiatives such as red team exercises, threat modeling, and risk-based pentest prioritisation to validate defenses continuously.
Delivering cloud security at scale through secure landing zones, automated guardrails, CSPM/CIEM deployment, and workload protection for multi-cloud environments.
Building security automation pipelines that integrate with CI/CD to enforce policy-as-code, remediate vulnerabilities, and accelerate developer adoption of secure practices.
Championing Zero Trust, least privilege, and secure-by-default design principles across infrastructure and applications.
Partnering with senior leadership to ensure security strategy aligns with product and cloud roadmaps, influencing enterprise-level priorities.
I thrive at the intersection of technical depth, leadership, and business strategy, consistently delivering results that protect the enterprise while enabling faster, more secure innovation.

Strategic LeadershipProduct SecurityCloud SecurityIT AutomationTeam Management

Stem, inc.

Sr Principle Engineer/ Sr Security Architect

Dec 2024 – May 2025 · 5 mos · Gurugram, Haryana, India

Cloud Security: Expertise in CSPM, CIEM, DSPM, runtime security, and container security. Strong advocate for Shift Left
Security practices.
Security Architecture & Design: Conduct secure architecture reviews, threat modelling, and security best practice
implementation.
CI/CD Security: Secure DevSecOps pipelines, integrate SAST, DAST, and SCA tools, and enforce secure coding standards.
Infrastructure Security: Secure cloud-native & on-prem infrastructure, network segmentation, and zero-trust
implementation.
Identity & Access Management (IAM): Enforce least privilege access, role-based access controls (RBAC), and identity
governance.
Data Security & Compliance: Implement encryption, data loss prevention (DLP), and regulatory compliance (GDPR, SOC2,
CMMC etc.).
Incident Response & Threat Management: Develop security monitoring, detection, and response strategies for cloud
environments.
Container & Kubernetes Security: Enforce Kubernetes RBAC, image scanning, runtime protection, and policy enforcement.
Worked closely with cross-functional teams to support audit readiness for frameworks like SOC2 and ISO 27001, focusing on
security control design and implementation.
Authored and reviewed technical documentation including security procedures, policy updates, and architecture diagrams
to support compliance goals.
Actively engaged with global stakeholders to drive follow-the-sun incident response strategy and align security operations across geographies.

Penetration TestingCloud SecurityZscaler Zero Trust ExchangeSolution ArchitectureDevSecOpsStrategic Leadership+2

Gartner

Lead Security Engineering

Jun 2015 – Dec 2024 · 9 yrs 6 mos · Gurgaon, India

Cloud Security: DevSecOps, CSPM, DSPM, IAM.
Web Proxy/Direct internet access: Designing and implementing of Zscaler web Proxy, Bluecoat web proxy.
Web Application Firewall: Implementation and management of WAF in AWS and Azure.
Cloud Access Security Broker (CASB): POC and Implementation of inline and out of band CASB with DLP, Malware detection
capability, Cloud Risk management and auditing.
Data loss prevention: Implementation of product, workflow designing, workflow implementation to improve user
experience to address various security compliance (ex. HIPA, GDPR, CUI, FDI, FODO).
Vulnerability Management: Implemented effective vulnerability management programs, reducing exposure to potential
threats and ensuring continuous compliance with industry standards.
Web Application security: Burp Suit, OWASP ZAP, Qualys.
Cloud Security: Cloud security posture management, micro segmentation, vulnerability management and WAF.
Zero trust security architecture: Designed and implemented architecture based on Zero trust model (ex. ZPA, Azure cloud
security).
DevOps tools: Terraform, Jenkins, Git etc
Cybersecurity Strategy: Developed and executed proactive cybersecurity strategies aligned with organisational goals,
resulting in enhanced overall security.
Team Leadership: Proven ability to lead and mentor teams, fostering a culture of continuous learning and staying abreast
of the latest cybersecurity trends and technologies.
Supported internal and external security audits by providing evidence for compliance controls, leading to successful audit
outcomes.
Aligned security practices with SOC 2, GDPR, FedRAMP and CMMC data protection requirements in collaboration with
compliance and legal teams.
Conducted periodic risk assessments and proposed remediation strategies to reduce the attack surface in cloud and on-
prem environments.

Data PrivacySecurity EngineeringCloud SecurityDLPProgram ManagementTeam Management+7

Hcl technologies

Security Specialist

Apr 2014 – May 2015 · 1 yr 1 mo · Noida Area, India

Role and Responsibility:
 TAC/TAM: Handled 5 account simultaneal and provided technical consultation and monthly account review
ð Address all security related issues & device management such as Cisco ASA, Checkpoint, SonicWALL, IPS.
ð Configuration management for account have presence in Cloud.
ð Assessment of threats, attack, variability and share reports with clients.
ð Provided security guidance and driving infrastructure decisions in collaboration with other technical and manageme nt stakeholders, ensuring Security principles are being upheld and no violations of Security Policy is taking place.
ð Possess an understanding of security monitoring products across IT platforms (Log Management analysis, Intrusion Detection analysis, Vulnerability Scanning/analysis,).
ð Worked face-to-face with multiple stakeholders interviewing, planning as per upcoming requirement

Wipro infotech

Network Security Administrator

Dec 2011 – Nov 2013 · 1 yr 11 mos · Mysuru Area, India

Wipro (First Gulf bank) (January 2012 – NOV 2013)
Role and Responsibility:
ð Configure Management: I was responsible for the management of security devices (like Cisco (ASA, FWSM), checkpoint, Juniper, SonicWALL) for client locations like Abu-Dhabi, Dubai, Singapore, Qatar, Hong Kong, Mumbai, Mysore, etc.
ð Managed VPN tunnels connecting to all international locations.
ð Proxy management: I was responsible for managing Websense for URL filtering and whitelisting and block listing of
URLs as per the business requirement.
ð PEM solution: I was responsible for managing Password auto repository (PAR) for providing passwords to the User fo
r different servers.
ð End point protection: I was responsible for managing All Laptop and desktop protection for viruses, threads, defining l
ocation of users, different access like USB, CD-ROM through Symantec Security Solution.
ð Email gateway: Scanning and blocking suspicious emails and releasing on-demand through mail gateway (Proof point)
ð Used RSA-authentication manager for authentication, authorization.
Wipro (UIDAI: Aadhaar card) (December 2011- December 2012) Role and Responsibility:
ð Different network devices and security Devices monitoring on monitoring tool Nagios.
ð IPS alert Analysis and attack analysis alert generated from other devices.
ð Troubleshooting with packet analysis tools like Wireshark, if required.
ð Change management (which included device Cisco, Fortigate, IPS).
ð Image migration/updating on devices like Cisco ASA and IPS, Fortigate Firewall to keep the devices bug free.
ð Coordination with client and internal team and resolve the issue with in SLA.
ð Prepared/discussion, different network/security service availability report and Device availability.

Omsys computer & communication

Network Security Engineer

Aug 2010 – Sep 2011 · 1 yr 1 mo · New Delhi Area, India

Role and Responsibility:
 Manage LAN and WAN related issue, Network devices: Router installation and management.
 Network infrastructure monitoring and take appropriate action in case of any event.
 Ticket management, incident management.
 Antivirus, Proxy management/troubleshooting.