Summary
Certification
Overview
Accomplishments
Work History
Education
Skills
Hi, I’m

Ashutosh Mohanty

Bengaluru,KA
Ashutosh Mohanty

Summary

Cybersecurity leader with 20+ years delivering enterprise cyber defense and application security across regulated BFSI, multi-cloud, and Kubernetes environments. Leads DevSecOps and risk-based vulnerability management (RBVM) to reduce exploitable risk and accelerate remediation; scales secure-by-design and policy-as-code across the SDLC. Drives cloud security and governance—CSPM/CWPP (Prisma Cloud), zero trust and microsegmentation (Illumio), and continuous assurance of Blueprint-certified cloud services from build to run. Builds high-performing teams, simplifies the path to production, and provides executive visibility.

Certification

CCSP – Certified Cloud Security Professional

CISSP – Certified Information Systems Security Professional

CKA – Certified Kubernetes Administrator

AWS Solution Arch(asso)

RHCE RedHat

IBM CyberSecurity AI Engineer

ITIL V3

Overview

22
years of professional experience
8
Certification

Accomplishments

  • Led the pilot run of a DevSecOps champion program, achieving a 35% reduction in Mean Time to Detection (MTTD) through streamlined processes and team training.
  • Built a high-performing team of Cyber Security Engineers in the Global Capability Center (GCC), while establishing an early tool pool to accelerate adoption of cutting-edge security technologies.
  • Presented and piloted an AI-based microservices vulnerability management initiative.
  • Achieved a 43.5% reduction in overall microservices vulnerabilities during the initial phase.
  • Implemented Vulnerability Exploitability eXchange (VEX) and Exploit Prediction Scoring System (EPSS) in microservices application vulnerability management, shifting from a "fix everything" approach to prioritizing "fix what is required" for optimized risk mitigation.

Work History

ANZ Operation & Technology

Cyber Defence Leader
06.2017 - Current

Job overview

  • Lead enterprise-scale cyber defence, application security, and risk-based vulnerability management (RBVM) across multi-cloud and containerized platforms. Embedded DevSecOps into the SDLC, strengthened cloud controls & zero-trust, and delivered measurable resilience while mentoring high-performing security engineering teams and aligning stakeholders on risk, velocity, and outcomes.
  • Enabled secure, scalable cloud adoption by deploying compliant, Blueprint-certified services, simplifying the path to production for cloud consumers, and ensuring continuous assurance and resilience for critical workloads.
  • Scaled DevSecOps across product teams — launched a DevSecOps Champion Program that boosted SecOps adoption -35%, reduced vulnerabilities, and burned down security tech debt via policy as code, secure-code collaboration, and developer enablement.
  • Operationalized RBVM with VEX/SBOM — prioritized exploitable risks and cut remediation cycle time -40% by integrating SAST/DAST/SCA signals into unified executive dashboards (Splunk/Qlik).
  • Hardened cloud-native security — deployed Prisma Cloud (CSPM/CWPP) to scan and protect workloads on OpenShift/AWS, adding automated guardrails in CI/CD and reducing misconfigurations and exposure.
  • Reduced attack surface (Zero Trust) — rolled out micro segmentation in legacy environments, achieving rapid implementation and stronger east-west isolation/zero-trust controls.
  • Improved availability & resilience — established multi-layered DDoS defenses for APIs and advanced real-time security metrics (e.g., ASHI), minimizing downtime and supporting business continuity for critical journeys.
  • Accelerated detection & response — integrated automated threat-intelligence feeds and orchestrated rapid IR workflows, strengthening real-time detection and containment of emerging threats.
  • Built & mentored high-performing teams — hired, coached, and grew a security engineering group; embedded agile ways of working, career paths, and a culture of secure-by-design and measurable delivery.
  • Optimized platform cost & vendor outcomes — led roadmaps, licensing negotiations, and tool integrations, simplifying the stack and delivering.

ANZ Operation & Technology

Global Storage and Backup Manager
06.2013 - 06.2017

Job overview

  • PoC, Design and Deliver DDVE (DELL EMC) product for remote country backup & storage utilization.
  • Actively engage in the whole lifecycle (inception to decom).
  • This migration activity resulted saving operational cost up to -AUD$ 350 -400K.
  • Worked with regulatory statutory authorities & External Auditors for compliance requirement.
  • Integration of Oracle DB backup with Data Domain (DELL EMC), saving disk space 35% for non-encrypted backups.
  • Key Contribution: Design and Implementation of self-service portal to avoid traditional request mechanism in turn saving operational cost up to -AUD$ 400K.

LAZU Pty Ltd

Senior Technical Consultant
06.2011 - 06.2013

Job overview

  • NetApp Cluster-mode mode migrations using 7-MTT
  • Large scale Data Migration Planning and Execution.
  • Capacity Planning to forecast storage along with Performance management and analysis.
  • Security vulnerability assessment and planning patch and upgrade planning.
  • Key Contribution: A Cost-effective design and Implementation of Core-Banking infrastructure for Pacific Countries.
  • RPO reduced from 24-hours to 15-mins.

EMC Data Storage System

Storage Consultant @Goldman Sachs
02.2005 - 06.2011

Job overview

  • Manage and maintain NetApp/EMC Storage Area Network/Network Attached appliances with regards to Data Centre operations.
  • Working with Team to certify product version suitable for environment.
  • Prepared Design & Build document for the build team to work.
  • Wrote SOP (Standard Operating Procedure) for BAU team to execute.
  • Large scale Data migrations & storage life cycle.
  • NetApp ONTAP migrations, Symmetrix to VMAX migrations.

ORACLE India Pvt Ltd

Technology Leader
12.2004 - 12.2015

Job overview

  • Handling Administration in different flavors of Linux systems vis-a-vis (SUSE, RedHat, FreeBSD, and Fedora) at ZEDO data centres at savvis, 365main, Live365.
  • Setting of Log servers, Ad servers, which are based on Apache with ZEDO proprietary modules.

ZEDO

System Engineer
05.2004 - 12.2021

Job overview

  • Supported hundreds of filers for Oracle’s On-Demand handling terabytes of data.
  • Working with storage team and involved activities in NetApp software/Hardware upgrading, Filer decommissions, storage space clean and working on alerts.
  • Migrated hundreds of servers to SunX4100 and Dell R900 /1950 to save rack space and power consumption.
  • Produced and maintained documentation to controlled standards, including project plans and status.

DREAM QUEST

Facilities Engineer
05.2004 - 12.2004

Job overview

  • Provided BAU support for Postfix and Send mail for mass invitations, relaying, optimizing with optout.
  • Monitoring the system instances like HTTP, ICMP Connection, SSH, Telnet, disk, messages and proc through Big Brother and Nagios monitoring tool.

Education

Utkal University

Master from Computer Applications
01.2002

Skills

  • DevSecOps
  • Vulnerability Governance
  • Microservices Security
  • Infrastructure as Code (IaC) Security
  • Risk-Based Vulnerability Management (RBVM)
  • Continuous Assurance of Cloud Workloads
  • Zero Trust & Microsegmentation
  • Endpoint Protection
  • NIX Systems Administration
  • Cloud & Platforms: VMware, AWS, GCP, OpenShift (OCP), Kubernetes Orchestration (OpenShift, GKE, EKS)
  • Cloud Security & Governance: CSPM (Cloud Security Posture Management), CWPP (Cloud Workload Protection Platform), Blueprint-Certified Cloud Services, Prisma Cloud (CSPM/CWPP)
  • Security Tools: BlackDuck, Illumio, Checkmarx, Tenable, Code Dx, Microsoft Defender (MDI), Imperva WAF
  • Backup & Storage: NetWorker, DDVE
  • Leadership & Management: Collaboration, People Management, Stakeholder Management, Vendor Management, Technology Product Management, Communication

Similar Profiles

CREATE PROFILE
Ashutosh Mohanty