Details
Bachelor of Engineering in Computer Science
• Guided and mentored 20+ architects, individual contributors, QA testers, and managers on secure design/development practices, promoting culture of security awareness across the organization. Established a Technical Advisory Committee, reducing pre-release security defects by 25%.
• Championed the productization of software to oversee security compliance (CIS, NIST, STIG) throughout the lifecycle for both Cloud and On-Prem infrastructure infused with AI/ML capabilities, to achieve 80% improvement.
• Attained CSA STAR compliance for S/4 HANA PECDC cloud offering on HPE Greenlake, ISO27001 in progress.
• Created and implemented frameworks and automated tools for Code Scan, Code Sign, Malware Scan, and Build System Scan to ensure secure development and deployment practices, increasing overall security by 25%. Implemented open-source security compliance checks, resulting in a 15% decrease in vulnerabilities from third-party components.
• Spearheaded the vulnerability management program by onboarding Software Bill of Materials (SBOM) into the vulnerability tracking tool, implementing a daily vulnerability review process, and reducing the time to address critical vulnerabilities from 15 days to 5 days. Managed lifecycle of CVEs, ensuring timely.
• Proactively released patches and advisories for affected products, mitigating risks for 20,000+ customers and reducing security incidents by 30% within one year.
• Monitored and analyzed security alerts and vulnerability reports, providing actionable insights to senior management and stakeholders, improving decision-making speed by 30%. Created and maintained detailed documentation for security processes, vulnerability assessments, and remediation activities, improving audit scores by 20%.
• Led a team of senior technologists and architects in designing, documenting, and delivering enterprise architecture solutions. Collaborated with cross-functional teams to develop and execute remediation plans, achieving 100% compliance with internal and external security policies.
Skills
Project / Program / Budget / Risk Management | Problem-Solving Skills | Technical Engineering | Critical Thinking | Design | Communication Skills | Resource Prioritization | Cross-team Collaboration | Strategic Planning
About
Dynamic and experienced Manager of Cloud Infrastructure with a proven track record in security, dedicated to managing and enhancing the security infrastructure of high-performing engineering firms. Adept at leading the development of secure environments from the ground up, utilizing infrastructure as code. Possesses extensive experience with IT security risks, threats, and vulnerabilities. Demonstrates strong leadership skills, effectively managing and motivating DevOps and IT teams. Skilled in explaining complex security issues to non-technical stakeholders and ensuring compliance with IT security legislation and standards. Partnered with engineering and product teams to develop and execute short- and long-term security strategies, defining OKRs and KPIs. Ensured uninterrupted operations and met SLA requirements for security systems. Led the design and implementation of services to improve cloud and infrastructure security posture. Engaged in technical design and architecture discussions, making data-driven decisions to improve security solutions.
Profile Photo
