Product & Application Security
Secure architecture, STRIDE threat modeling, secure SDLC, application reviews, API security, and abuse-case analysis.
Lead Product Infrastructure Security Engineer
Securing product infrastructure, cloud platforms, and AI workloads at enterprise scale.
I partner with product, application, infrastructure, and leadership teams to turn security architecture, threat modeling, vulnerability data, and DevSecOps automation into practical controls that reduce risk.
10+
Years in security engineering
35%
Production vulnerability reduction through threat modeling
72%
Lower repeat vulnerabilities and remediation costs
3000+
Users covered by privileged access cleanup
Profile
Security leader for mission-critical systems.
I specialize in full-scope product and application security reviews, STRIDE-based threat modeling, architecture risk assessments, vulnerability management, secure SDLC programs, and CI/CD security gates. My work spans cloud environments, identity platforms, WAF controls, cryptography, privileged access, and GenAI/ML workloads.
Expertise
Security domains I work across
A mix of architecture review, engineering partnership, automated security controls, and executive-ready risk visibility.
Cloud & Infrastructure Security
AWS, Azure, Prisma Cloud CSPM, infrastructure vulnerability management, compliance monitoring, and remediation governance.
DevSecOps Automation
Checkmarx, Black Duck, GitHub Advanced Security, Trivy, JFrog Xray, Jenkins gates, and Python reporting pipelines.
Identity & Zero Trust
OAuth, OIDC, SAML, JWT, PKCE, passkeys, least privilege, CyberArk, JIT access, and access governance.
Data Protection & Cryptography
AES, HMAC, HSMs, HashiCorp Vault, mTLS, certificate lifecycle management, and enterprise crypto standards.
AI & GenAI Security
OWASP Top 10 LLM, MITRE ATLAS, Databricks controls, Unity Catalog RBAC, secret management, and egress control.
Experience
Security roles and scope
Aug 2019 - Present
Lead Information Security Engineer
Mastercard | Arlington, VA
Lead product, application, cloud, AI/ML, and identity security reviews across critical technology portfolios. Drive secure-by-design adoption, DevSecOps gates, cloud posture management, zero trust controls, cryptographic standards, mTLS lifecycle management, and M&A security due diligence.
Aug 2017 - Jul 2019
Senior Security Engineer
MobileComm Professionals Inc | Richardson, TX
Performed application, API, mobile, and infrastructure assessments, including manual and automated DAST, secure code review, mobile reverse engineering, STRIDE threat modeling, and developer security training.
Feb 2017 - Jul 2017
Information Security Consultant
Tekreant Inc | Irving, TX
Delivered vulnerability assessments, application testing, POA&Ms, risk mitigation plans, SIEM validation, firewall administration support, endpoint security, and SOX and PCI control assessments.
Sep 2013 - Apr 2015
Vulnerability Analyst
Lince Soft Solutions Pvt. Ltd | Hyderabad, India
Conducted vulnerability assessments, network security audits, intrusion detection analysis, firewall reviews, penetration testing, packet analysis, and monthly risk reporting.
Impact
Selected security outcomes
Shifted risk discovery earlier
Translated STRIDE threat models into security requirements and design changes before production deployment.
Automated vulnerability visibility
Built Python reporting pipelines and Domo dashboards to track remediation progress across engineering portfolios.
Operationalized cloud posture controls
Implemented Prisma Cloud CSPM to monitor multi-cloud environments, enforce compliance, and detect misconfigurations.
Hardened AI and data platforms
Secured Databricks GenAI and ML workloads with RBAC, service principals, encrypted secrets, PrivateLink, and egress controls.
Education
Education & certifications
Master's, Computer Information Systems
California University of Management Standards, Arlington, VA
Bachelor of Technology
Electronics and Communication Engineering, Jawaharlal Nehru Technological University Kakinada
Certifications
AWS Certified Security Professional | CISSP In Progress
Contact
Let's connect on product and infrastructure security.
Based in Arlington, VA. Available for security leadership, product security, cloud security, and DevSecOps conversations.