Developer led the design and development of the Privileged Access Management (PAM) product catered to critical administrative users

The PAM solution features a robust password vault and sophisticated workflow user management capabilities

It integrates seamlessly with prominent platforms such as LDAP, AWS, Azure, and various network and database tools

Strategically designed and migrated on-premises system to AWS validating system's functionality

Deployed the CIS benchmark standards enhancing the AWS monitoring services

Included services such as CloudTrail, CloudWatch, Security Hub, and the web application firewall (WAF)

Executed the integration of DevSecOps using CD/CI Jenkins pipeline

Deployed CheckMarx, Black Duck, OWASP ZAP, Nessus, and PrismaCloud for implementing SAST, DAST, container scan, network scan, and vulnerability management within the Business As Usual framework

Worked closely with the development team to proactively address and resolve key vulnerabilities

Spearheaded the creation of microservices policies, DevSecOps tooling standards, and security incident management, and successfully integrated GCP Security Command Center with Jira.

Implemented Lacework for threat detection and compliance monitoring, and deployed SonarQube for code quality assessment; also managed third-party library scans through Graye and implemented Reblaze's WAF technology.

Managed log data with DataDog for monitoring and incident response, and showcased proficiency in managing GRC and ISO27001 controls for regulatory compliance.

Oversaw operational security for platforms including Datadog, GCP security command center, and SonarQube

Executed ISO 27001 implementation and proficiently managed risk assessment and mitigation

Contributed to diverse projects integrating DevSecOps tools and vulnerability in the CI/CD pipeline, conducting comprehensive code reviews using SonarQube and manual tests with Burp Suite

Automated integration of vulnerability sources into a central repository and implemented automation via the Jira ticket system for risk-based vulnerability management project

Collaborated with client risk management for establishing mapping, identified control weaknesses through this mapping and prioritized vulnerabilities based on risk assessment

Ensured compliance with company policies and worked with asset owners and cross-functional teams to remediate vulnerabilities

Established and managed a GitHub repository as a centralized location for project’s source code and configurations, also controlled developer access permissions.

Integrated a CI/CD pipeline using GitHub Actions, setting up distinct workflows for development, testing, and production while upholding code quality and reliability.

Utilized Google Cloud Platform services for project integration, using GCP Cloud Run for deployment and scaling of applications and GCP Cloud Build to automate processes, along with an engineered approval workflow for controlled code promotion.