Summary
Overview
Work History
Education
Skills
Certificates
Securitytools
Disclaimer
Timeline
Generic
Chetan Devadurga

Chetan Devadurga

Lead Information Security Architect
Bengaluru

Summary

A skilled Security Architect with 13 years of working experience in IT security, experienced in developing security solutions for Gen-AI products, Cloud Security, DevSecOps, Product Security, Secure SDLC, Supply chain security, etc. Worked in various domains across IT industry such as Retail, IT, Healthcare, Automobile, Banking. which helps in deriving suitable IT Security solutions for respective business/management.

Overview

14
14
years of professional experience
5
5
years of post-secondary education

Work History

Lead Information Security Architect

Mercedes-Benz India
Bengalore
03.2021 - Current
  • Leading group of security architects to Deliver Security architecture as Service Across Mercedes-benz Global.
  • Handled Multiple customers and contributed in providing growth rate of over 30% on year on year basis.
  • Contributed and involved in Developing Gen-AI Security solutions across MB Global.
  • Contributed in developing DevSecOps Security and Scoring Solutions across MB Global.
  • Attended team meetings to resolve technical and project issues and review project schedules.
  • Maintained strong communication with clients throughout design process to ensure alignment between their vision and final product.
  • Performed complex architectural and design assignments, applying innovative architectural design concepts and advanced professional knowledge.

Product Security Architect

GE Healthcare
Bengalore
2 2019 - 03.2021
  • Contributed to Project Teams on Developing/Maintaining Secure Software practices for there respective products/applications/solutions.
  • Contributed Projects teams on understanding security Requirements of 510k filing of product to get FDA approval
  • Derived Privacy Impact assessment based on GDPR for European based customers and applications.
  • Performed SOUP (software of unknown provenance) & 3rd party software analysis
  • Managing external and internal Security testing of products.
  • Integration of external products and ensuring Industry standard security solutions(NIST, GDPR, ISO27001, SOC2, etc) around it.
  • Tracking, exception management, monthly knowledge sessions/training etc
  • Overall product security assessment status and representation to business on regular basis.

Product Security Specialist

Philips Innovation Campus
Bengalore
11.2015 - 02.2019
  • Performed Architecture/Design review of various healthcare Products based on HIPPA compliance
  • Established Requirement analysis and assessment for Healthcare products based NIST and STIG standards.
  • Performed Privacy review of applications, products, services and solution (Privacy Impact assessment)
  • Ensured Periodic Product health checks and updates on security on customer environment
  • Ensuring Exception management and third-party issue management.
  • Managed Security Testing and Code Review for Project teams, which results in increased productivity and cost saving by 10%.
  • Educating, training Dev team, management team, Operation team, and Production unit on security measures and implementing methods.

Sr Information Security Engineer

Mindtree Limited
Hyderabad
01.2014 - 11.2015
  • Managing and providing technical expertise in fortify implementation and process development, resulting in increased code security awareness across Microsoft India and developing secure software solutions.
  • Performed Microsoft application security Control based security assessment of applications
  • Involved Azure Cloud Applications Security configurations checks
  • Performed Verification of Microsoft standards Cloud Security policies for application
  • Performed Threat modelling, Design review educating Dev team to create threat model of CRM, cloud, enterprise applications using Microsoft Threat Modelling Tool
  • Supported in Security scenario development (WCF Security, Authentication to Windows Mobile, and secure connection to Azure cloud to on premise application)
  • Performed Security Code review of various IT applications on technologies like .Net, TSQL, Java Script.

Software Engineer

Oracle Corporation
Bengalore
4 2012 - 12.2014
  • Security assessments Oracle banking product (Flexcube and subcomponents)
  • Performed Product security vulnerabilities monitoring, maintaining exceptions and remediation strategies
  • Performed Vulnerability assessment of banking applications based on internal and external client requests
  • Verified Pre-production deployment security Review and security compliance checks
  • Handling fortify Deployment team in Oracle banking application
  • Performed Fortify scanning, Optimizing, maintain, training
  • Helped development teams in Integrating security tools across CI/CD environment.
  • Performed Application Delivery Checklist Verification based on ORACLE Standard
  • Training to Dev team to create awareness about security, and Secure coding, fortify
  • Ensuring bug closure, and release criteria verification.

Associate Software Engineer

Accenture Services Pvt. Ltd. Bangalore
Bengalore
08.2010 - 03.2012
  • Learning and Performing Secure code review (Automated and manual) Fortify.
  • Performed Threat Modelling activities in Identifying possible threats and updating mitigating factors.
  • Learned and performed IBM APP scan and false positive analysis for applications.
  • Learned and performed Application, Security Checklist verification.
  • Ensured Share point, Reporting, Documentation & Dashboard Maintenance.
  • Involved in performing Best buy coding standard verification on retail applications
  • Ensured Exception management, client reports, ensuring tracking of active bugs in applications of Minneapolis based Dev team.

Education

Bachelor of Engineering (E&C) - Electronics & Communications

Visvesvaraya Technological University (VTU)
Bengalore
06.2005 - 12.2009

Skills

Developing Security Activity as Service

Managing Group of Security Architects

Security Architecture

Cloud Security Solutions

Gen-AI Security

Threat Modelling using Gen-AI and Other Various tools

DevSecOps

Industry Compliances (HIPPA, ISO27001, SOC2, NIST, Etc)

Supply chain Security

Third party Security

Authentication & Authorizations

Code Review

Application Security Testing

Certificates

CISSP, OSCP, CEH

Securitytools

  • Fortify (Advanced)
  • IBM Appscan
  • Microsoft SDL Threat Modelling tool
  • Nessus
  • Wireshark
  • Checkmarks
  • Burp suite
  • Fiddler

Disclaimer

I hereby declare that all the above stated information is true to the best of my knowledge.

Timeline

Lead Information Security Architect

Mercedes-Benz India
03.2021 - Current

Product Security Specialist

Philips Innovation Campus
11.2015 - 02.2019

Sr Information Security Engineer

Mindtree Limited
01.2014 - 11.2015

Associate Software Engineer

Accenture Services Pvt. Ltd. Bangalore
08.2010 - 03.2012

Bachelor of Engineering (E&C) - Electronics & Communications

Visvesvaraya Technological University (VTU)
06.2005 - 12.2009

Product Security Architect

GE Healthcare
2 2019 - 03.2021

Software Engineer

Oracle Corporation
4 2012 - 12.2014

Similar Profiles

  • Yogeshwaran D

    Yogeshwaran DYogeshwaran D

    Senior technical lead (QA) at Mercedes Benz India Pvt LtdSenior technical lead (QA) at Mercedes Benz India Pvt Ltd

    View Profile
  • Kongara Vamshi Krishna

    Kongara Vamshi Krishna Kongara Vamshi Krishna null

    Sales and Business Development Professional at Mercedes-Benz India Pvt LtdSales and Business Development Professional at Mercedes-Benz India Pvt Ltd

    View Profile
  • Priya Mandar Kangle

    Priya Mandar KanglePriya Mandar Kangle

    Service Contracts and Recall Manager at Mercedes-Benz India Private LimitedService Contracts and Recall Manager at Mercedes-Benz India Private Limited

    View Profile
Chetan DevadurgaLead Information Security Architect