Sep 2021 – Nov 2023 · 2 yrs 2 mos · Bangalore Urban, Karnataka, India

• Strategic planning and execution of the enterprise-wide Cloud Security Posture Management (CSPM) program to integrate security misconfiguration management into DevOps activities.
• Pivot the CSPM learnings into preventive Zero-Trust cloud blueprints or into the architectural runway, striving for “day-1 secure” posture to strengthen the cloud landing platform.
• Formulate and drive a holistic Secure SDLC program across business domains whose software development vary drastically patterns.
• Analysed maturity of Secure SDLC practices across businesses, identified gap and prioritised developer training platforms and threat modelling education. Presently, instilling the two services company-wide.
• Develop Proof-of-Concept security solutions that operate at scale and are completely codified (e.g. Terraform, CloudFormation etc.), get stakeholder buy-in and lead engineering to delivering the production solution.

Oct 2020 – Sep 2021 · 11 mos

• Create the brand identity for the “green team” by delivering cyber security evangelism, influence security mindset in application development programs (~1500 applications) across all phases of SDLC and application delivery paradigms.
• Drive security rigour to the next level of maturity by building products that offer intelligence on application weak spots, authoring content such as blogs, code snippets to tackle specific security issues and offer consulting on remediation efforts.
• Transform the team into developing expertise and deliver consulting in strategic areas of cyber security across the organisation (cloud and ICS security), identify endemic security issues across the company.
• Built a revenue generating business model of Information Security Architects (ISA) by nurturing nascent talent within the team who promote cradle-to-grave secure application architecture in the company.

Jan 2017 – Oct 2020 · 3 yrs 9 mos

• Architect and developer of the DevOps-ready, Enterprise Bring-Your-Own-Key (BYOK) solution for the adoption of data-at-rest encryption in public clouds across Azure, AWS and IBM. Plan product features as per demands from consumers and liaise with service delivery teams to ensure customer satisfaction.
• Expanded the SALM (Security Audit Log Management) program to public clouds (Azure and AWS) by architecting cloud event logs ingestion into SALM, author incident detection use-cases across control and data plane.
• Cyber forensics specialty during incident response of cloud workloads, establish and report attack-paths. Issue hardening checklists for cloud workloads.

Mar 2014 – Dec 2016 · 2 yrs 9 mos · Hyderabad Area, India

• Security consultant on strategic, infrastructure and operational security aspects for Microsoft China and Hong Kong Online Store. Additionally, played the role of a security consultant in the migration of the store infrastructures to Microsoft Azure.
• Support the security maturity program of Microsoft Azure services by dogfooding new services from private preview phases onwards through to customer adoption phase.
• Conduct infrastructure security assessments for MSIT projects to ensure secure design and adherence to Microsoft standards.
• Program manager of the Production Web Application Security (ProWAS) program which aimed at detecting and remediating security vulnerabilities in production environments of web applications of Microsoft. Led a team of software developers to deliver the ProWAS’s platform to teams across the company.
• Deliver Executive Briefing Centre (EBC) sessions to senior management/C-level executives of enterprise customers of Microsoft on secure engineering of applications based on Microsoft products.

Oct 2013 – Mar 2014 · 5 mos · Bengaluru Area, India

• - Oversee the information security and compliance of vendors and partners of ANZ based in India.

Mar 2012 – Oct 2013 · 1 yr 7 mos · Bangalore, INDIA

• - Responsible for delivery of information security programs for Société Générale Global Solutions Centre (SG GSC).

Jun 2010 – Mar 2012 · 1 yr 9 mos · Bangalore, India

• - Solutions architect and service delivery of the Privileged Identity Management solution based on Cyber Ark PAM.

Feb 2010 – May 2010 · 3 mos · Hyderabad Area, India

• Deployment and support of Apere IMAG500 (Identity Management and Access Gateway) identity management appliance.
• Build internal platforms to test enhancements and patches prior to customer site deployment.
• Developed custom connectors for proprietary application using Automation Anywhere.

Oct 2007 – Jul 2008 · 9 mos · Hyderabad Area, India

• Researcher on grid security and manager of the grid computing infrastructure.
• PKI deployment and management for the Hyderabad test computational grid.