

Experienced Cybersecurity Architect with 9 years of expertise in Application Security, Cloud Security, Secure SDLC, and DevSecOps automation, driving risk reduction and compliance across large enterprise and financial services environments.
Proven success in integrating SAST, DAST, SCA, and container security tools into CI/CD pipelines, leading threat modeling (STRIDE), secure SDLC, and implementing encryption (AES, RSA, TLS/SSL) & cryptography to safeguard data in transit and at rest.
Expert in designing secure by design architectures across cloud-native and enterprise environments aligned with RBI, ISO 27001, and PCI DSS compliance for BFSI and SaaS environments. Experienced in collaborating with global clients to design secure cloud-native architectures and advise on Cloud Security Posture Management (CSPM), IAM, and zero-trust implementation.
Secure Code Review (Auth, Crypto, OWASP)
,Firewall & Infra Security (WAF, IDS/IPS)
,Secrets & Key management (Azure Key Vault, AWS KMS)
,OWASP Top 10 (Web, API, Cloud, LLM)
,Zero Trust Architecture
,Risk & Compliance (PCI-DSS,ISO 27001)
,Data Protection & Encryption (AES, SSL/TLS, Key vault)
,Incident Response & Threat Detection(SIEM,NIDS,EDR/XDR)
,Identity & Access Management (IAM, SSO, MFA),API & Cloud Security (Microsoft Purview, AWS CloudTrail)
,Vulnerability Management & Penetration Testing
,DevSecops & CI/CD Security (SAST,DAST,SCA)
,Python & Powershell scripting
,Threat Modeling (STRIDE, MITRE ATT&CK)
,Secure by Design Architecture
CISSP - In Progress