Kirkland, Washington, United States
All things AWS & Kubernetes security.
Lead security engineer for cloud (AWS, GCP, and GSuite) security projects focused on directive, preventative, detective, and responsive controls. Led the transformation of Uber Cloud Security from an operations-focused to an engineering-driven team. Envisioned and led projects to build multi-cloud security monitoring & response automation platform, identity & access management, threat detection, and provisioning. Built and driving cross-industry partnership with Dow Jones for Hammer. Helped the Vulnerability Management, Threat Detection, Incident Response, and Compliance teams to successfully adopt the cloud by authoring engineering solutions and consultation. Performing security engineering reviews including threat models, architecture reviews, and providing security guidance for cloud initiatives.
In this role, I participated in all phases of the cloud service lifecycle which includes design, development, deployment, monitoring, and maintenance. I worked with third party vendors to integrate their services into the Microsoft cloud to ease customer pain points and provide seamless experiences. I owned ‘App Service Certificate’, ‘App Service Domain’ and components of ‘App Service’ Platform and Azure Server-less offering i.e. ‘Azure Functions’.
As part of this role, I performed security design reviews, code reviews, threat modelling, penetration testing, security breach detection and reactive security engineering on various cloud services and products in Azure organization. It also included developing security features, proofs of concepts and security services for first party Azure services.
Worked on a password security project under the Consumerization of IT (CoIT) initiative in collaboration with Microsoft Research. In this project, we analyzed the threat to corporate password security due to CoIT from both, theoretical and practical perspectives. In addition to managing it, I also developed all the tools required for this initiative.
Worked as a student developer for Google during Google Summer of code 2009 to develop Freesite (websites hosted in Freenet) filters for Freenet which is a decentralized, censorship-resistant P2P network with a distributed dataset. I created white list based filters for HTML5, CSS2, SVG and BMP.