Summary
Overview
Work History
Education
Skills
Certification
Interests
Timeline
Generic
Shantanu Panda

Shantanu Panda

Pune

Summary

Principal Security Cloud Engineer with 14 years of experience architecting secure, hyperscale cloud platforms. Proven track record of defining long-term security strategies and driving architectural direction across distributed systems. Expert in AWS Security, Infrastructure-as-Code (IaC), and Policy-as-Code, with a focus on balancing high availability, performance, and rigorous security standards. deeply experienced in influencing senior engineering leadership, mentoring cross-functional teams, and implementing AI-driven security automation to solve complex, ambiguous challenges in enterprise environments.

Overview

14
14
years of professional experience
4
4
Certifications

Work History

Principal Security DevOps Engineer

Snowflake
Pune, MH
06.2021 - Current
  • Engineered hyperscale Security Data Lake by automating security log ingestion into Snowflake using DBT, facilitating high-fidelity analytics for threat hunting and compliance.
  • Directed strategic planning and lifecycle management of critical security platforms for Incident Response (IR), Threat Detection (TD), and Red Teams.
  • Developed custom IAM management layer integrating Okta and AWS, employing device mTLS and OIDC claims to implement stringent, context-aware access controls throughout organisation.
  • Established robust CI/CD framework for security infrastructure on GitLab, implementing isolated, security-focused runners on AWS EKS to guarantee segregation of duties
  • Implemented stringent SAST/DAST merge gates for IaC through Checkov, averting misconfigurations prior to deployment.
  • Implemented supply chain protections through Endor Security (vulnerability scanning) and Entro (secrets scanning) in the pipeline.
  • Engineered and implemented automated workflows utilizing Tines for evidence analysis, preservation, and environment isolation, significantly minimising manual intervention during security incidents.
  • Formulated comprehensive observability standards for security log ingestions and backend systems, implementing monitoring to ensure data completeness and pipeline health.
  • Pioneering development of AI-Driven 'Self-Healing' IaC Guardrails, automating remediation for misconfigurations to ensure continuous assurance without hindering developer velocity.
  • Facilitate security architecture reviews and threat modelling sessions for high-risk services, integrating security early into design lifecycle.
  • Guiding senior engineers and cultivating a "security-first" culture, elevating technical standards for cloud security practices across organisation
  • Oversaw global security platforms and coordinated secure CI/CD pipelines, guaranteeing seamless code deployments across multi-region AWS environments.
  • Established guardrails and design patterns ensuring compliance with industry standards (SOC2, ISO 27001) while enhancing operational efficiency.
  • Designed an EDL solution with AWS Lambda and S3 to automate blacklisted IP/domain handling.
  • Spearheaded vulnerability scanning in supply chain, detecting zero-day vulnerabilities in connectors.

Lead Software Engineer

Siemens Technology and Services Pvt Ltd
Pune, MH
04.2018 - 06.2021
  • Developed fully automated serverless architecture on AWS, achieving 90% reduction in infrastructure costs.
  • Engineered GitLab CI/CD pipelines to automate deployments, eliminating manual server management.
  • Utilized AWS CloudFormation for managing digital applications, ensuring 100% reproducibility and resilience.
  • Guided cross-functional teams in integrating security practices throughout SDLC, enhancing application security posture.
  • Designed scalable frameworks prioritizing performance for supporting large-scale digital transformation initiatives.
  • Led teams in managing build/release cycles, ensuring timely and high-quality deployments.
  • Collaborated with stakeholders to align cloud solutions with business objectives, enhancing operational efficiency.

Senior System Engineer - Devops

Zensar Technologies
Pune, MH
04.2016 - 04.2018
  • Oversaw backend infrastructure for client applications on AWS Cloud, ensuring reliability and scalability.
  • Transformed infrastructure maintenance through DevOps practices and tools, enhancing operational efficiency.
  • Automated deployment processes, minimizing downtime and improving application performance.
  • Guided projects from inception to execution, aligning with client goals and expectations.
  • Led Proof of Concept initiatives for new projects, implementing advanced monitoring solutions.
  • Managed backend infrastructure for business-critical applications, ensuring high availability and security.
  • Developed CHEF cookbooks for configuration management, automating deployment processes.
  • Coordinated with offshore teams to validate project requirements and deliverables.

Devops Engineer

Talentica Software
Pune, MH
11.2015 - 03.2016
  • Deployed applications on AWS cloud utilizing Continuous Delivery and Integration tools such as Wercker and CircleCI.
  • Designed and maintained infrastructure for applications hosted on AWS. Ensured security and autoscaling of Docker environments on AWS ECS.
  • Automated server deployment and configuration management with Chef cookbooks.
  • Established monitoring systems for infrastructure using Datadog and Nagios.
  • Led DevOps team by assigning daily tasks, conducting standups, and providing necessary support.

Senior Systems Engineer

Infosys
Pune, MH
12.2011 - 11.2015
  • Automated installation of infrastructure features on Windows and Linux using Chef cookbooks.
  • Designed effective management solutions including patching, monitoring, and proxy systems.
  • Generated bash scripts for resource deployment (VPCs, subnets, NACL rules, security groups) through Cloud Formation.
  • Managed AWS environments using both command line and console methods. Provided comprehensive automated provisioning for infrastructure components and standalone setups.
  • Created documentation to ensure clarity in future operations.

Education

Bachelor of Engineering - Computer Science

RKDF Institute of Technology And Sciences
Bhopal, MP
06-2011

Skills

  • Security architecture and threat modeling
  • Cloud computing and AWS services
  • CI/CD automation and infrastructure automation - terraform, Chef
  • Vulnerability scanning and management
  • Agile methodologies and DevSecOps
  • Python programming
  • Identity management
  • Cross-functional collaboration
  • Team leadership
  • Shell Scripting
  • Docker
  • Kubernetes
  • Git
  • Linux administration
  • System reliability

Certification

AWS Certified Solutions Architect

Interests

  • Reading
  • Riding
  • Collectibles gathering

Timeline

Principal Security DevOps Engineer

Snowflake
06.2021 - Current

Lead Software Engineer

Siemens Technology and Services Pvt Ltd
04.2018 - 06.2021

Senior System Engineer - Devops

Zensar Technologies
04.2016 - 04.2018

Devops Engineer

Talentica Software
11.2015 - 03.2016

Senior Systems Engineer

Infosys
12.2011 - 11.2015

Bachelor of Engineering - Computer Science

RKDF Institute of Technology And Sciences

Similar Profiles

  • Edward Hart-LorenzettiEdward Hart-Lorenzetti

    Principal Security Engineer (Security Architecture / Automation / Platform) at BusinessPrincipal Security Engineer (Security Architecture / Automation / Platform) at Business

  • SHAHNAWAZ SIDDIQUISHAHNAWAZ SIDDIQUI

    Principal - Security, Risk & Mgt at Verizon WirelessPrincipal - Security, Risk & Mgt at Verizon Wireless

  • Ali A. AqelAli A. Aqel

    Principal Cloud Security Architect at Centene Corporation, Inc.Principal Cloud Security Architect at Centene Corporation, Inc.

  • JAMES OBENGJAMES OBENG

    Senior Cybersecurity Engineer | Cloud Security Engineer | ISSO | ISSE | NASA at TELTRIUM INCSenior Cybersecurity Engineer | Cloud Security Engineer | ISSO | ISSE | NASA at TELTRIUM INC

CREATE PROFILE
Shantanu Panda