Security Engineer Architect
Send a job offer directly to this candidate
I am an accomplished cyber & digital security expert with a proven track record of 20+ years in safeguarding multiple Cloud and Enterprises environments example Azure, GCP, AWS and Alibaba from various security threats and vulnerabilities. Worked in multiple Security domain includes IAM, Cloud, AppSec, Data, Information and network with multiple Industries domains like airways, banking, medical, retail and semiconductors etc. My extensive experience includes successful threads analysis, risk evaluation and implementation of robust security controls and advanced threat monitoring solutions.
I am driven to utilize my expertise in guiding the company's IT security strategy and vision, brings a talent for identifying and resolving cybersecurity engineering, operational challenges to enhance privacy and protection.
I am an accomplished cyber & digital security expert with a proven track record of 20+ years in safeguarding multiple Cloud and Enterprises environments example Azure, GCP, AWS and Alibaba from various security threats and vulnerabilities. Worked in multiple Security domain includes IAM, Cloud, AppSec, Data, Information and network with multiple Industries domains like airways, banking, medical, retail and semiconductors etc. My extensive experience includes successful threads analysis, risk evaluation and implementation of robust security controls and advanced threat monitoring solutions.
I am driven to utilize my expertise in guiding the company's IT security strategy and vision, brings a talent for identifying and resolving cybersecurity engineering, operational challenges to enhance privacy and protection.
Working as Sr.
Engineer- architect role, focusing on manage security tooling, identify and mitigate risk, perform security assessment, review for AppSec and Cloud Security to define and monitor security posture, detect, prevent and enforce policies for the secure operation, and continues improvement including design, review and secure cloud architectures across public and hybrid Cloud workloads, onboard best security tools aligning with NIST 800-53, CIS Benchmarks, OWASP TOP 10, ISO 27001 to meet regulatory and enterprise risk objectives.
Conduct vulnerability assessments using tools like Azure CSPM, AWS Inspector, Threats modeling with STRIDE, maintain and update workload protections with servers, containers, AI services, APIs etc.
DevSecOps pipeline to embedded security controls into CI/CD workflows using IaC tools like Terraform, GitHub Actions, and Azure DevOps. Enforce SAST, DAST, and SCA scanners into building pipelines. Having scripting and automation skills in PowerShell, Python with cross-functional collaboration with engineering, IT, and application teams.
Implement multi-layer security controls including Cloud Security-CSPM, WAFs, and AppSec Tools, Security Frameworks & Compliance include applied security-by-design principles using leading frameworks such as NIST CSF, COBIT 5, MITRE ATT&CK, and OWASP to govern architectural decisions and control implementations.
Collaborate with Identity & Access Management (IAM) team on Azure AD, and Okta with RBAC, ABAC, SAML, OAuth2.0, and SCIM provisioning protocols. Engineered enterprise PKI and certificate lifecycle automation for secure service and workload communications. Guide and train SOC operations in threat detection, ensure pipelines using SIEM/SOAR platforms (e.g., Microsoft Sentinel, Cortex XSOAR) with custom detection rules, Logic apps for alert triage workflows, and real-time correlation engines to enable proactive monitoring and rapid response.
