Download PDF

Work Experience

2020to date

AWS Security Architect

Invesco
  • As a part of the AWS Proserve team, I worked as a Security Architect, reviewed existing security controls, provided recommendations based on AWS Well-Architected framework Security pillar, and worked with various teams to implement security controls.
  • Defined security requirements for the corporate EKS/Kubernetes reference architecture that incorporates best practice for security, performance, and cost optimization
  • Implemented and integrated proactive security controls using native AWS services (e.g., Security Hub, GuardDuty) and Prisma Cloud
  • Established architectural standards that enable DevOps practices such as infrastructure as code, automated continuous integration/continuous deployment (CI/CD), Blue/Green deployment, Dynamic application security testing (DAST), Static application security testing (SAST)  using Git pipelines
  • Collaborated with DevOps team in developing technical solutions and new security tools/IAM access using least privilege to help mitigate security risks and vulnerabilities and automate repeatable tasks
  • Created a logging standard to ensure all applicable EKS/container logs (CloudWatch, CloudTrail, Config) and subsequent alerting are sent to and configured within the enterprise SIEM platform (Prisma Cloud/IBM QRadar)
  • Implemented container image scanning capabilities as part of a CI/CD pipeline and against container images stored in a registry (AWS ECR/JFrog Artifactory)
  • Supported a “security-first” EKS architecture that enables incident responders to identify container vulnerabilities, malicious activity and achieve incident investigation resolution
  • Facilitated customer solution understanding through meetings, presentations, and demonstrations throughout the sales cycle
20162020

Principal Cloud Consultant

High Q, Reston, VA

Food and Drug Administration (FDA)

    • As a Principal Consultant to the Food and Drug Administration (FDA) OIMT DevOps, Innovation, Modernization, and Engineering Services (DIMES) contract developed next-generation Cloud architecture and toolsets based on AWS Well-Architected Framework to be used by FDA centers to migrate on-premise applications to AWS GovCloud in support of Cloud Smart strategy
    • Worked closely with various areas of the organization to define, architect, and enable the delivery of cloud capabilities and solutions, focusing on infrastructure and platform as “as a service” (IaaS and PaaS) models across multiple cloud vendors and geographic locations
    • Advised customers on architectures to meet industry standards such as HIPPA, FISMA High/Moderate, and FedRAMP and worked with the CISO team to obtain ATO.
    • Built security reference architectures and capabilities roadmap for all-in cloud deployments and hybrid scenarios as Infrastructure as Code (IaC) in Terraform scripts integrating with Scalr IaCP and using AWS services AWS ALB, ASG, EC2, ECS, RDS, S3, VPC Endpoints, Transit Gateway, Route53, Security Groups, Custom Route Tables, Custom NACLS  and others
    • Implemented security governance solution using AWS Organizational Units (OU), AWS Service Control Policies (SCP), AWS Trusted Advisor, AWS Guard Duty, AWS Config, AWS CloudTrail, and AWS CloudWatch.
    • Created approved services catalog using  CloudFormation,  AWS Service Catalog integrated with ServiceNow allowing users to self-provision infrastructure on the go
    • Formulated and executed the strategy, plan, and solution and lead the pre-sales functions supporting activity to prospective clients and customers while ensuring customer satisfaction

National Aeronautics and Space Administration (NASA)

    • As a technical lead in the EOSDIS team, responsible for building a solution to optimize and reduce the cost for large data set ingress using F5 LTM, AWS Step Functions, Lambda,  Terraform, and Docker
    • Defined and recommended storage solutions using AWS Storage Services such as S3, Glacier, Elastic File System (EFS), AWS Storage Gateway (SGW), and Snowball optimized for cost, availability, and performance
    • Built solutions using scripting languages (JSON, Python, Node.JS), integrating 3rd party monitoring tools, encryption tools, and best practices to enable forensics
    • Worked with finance and project management team to build cost models, migration patterns, resource model, project plan, and business cases

  US Patent and Trademark Office (USPTO)

    • Lead the Patent Examination Data System (PEDS) at USPTO, a public website for downloading patent data. Optimized the solution using AWS S3, CloudFormation, EC2, and Solr, to reduce the time it took to download large data sets
    • As an SME, I performed gap analysis, lead the security risk assessments through its development lifecycle (Devops+), and improved security control posture through policies and standards. Achieved 80% of policy conversion from traditional to cloud security practices
20092016

Solutions Architect, Vice President

JPMorgan Chase, Columbus, OH
  • Principal architect for Chase online account opening platform serving consumer bank, credit card, mortgage, auto, and commercial banking customers
  • Evaluated public cloud (AWS) and provided recommendations and migration strategies, along with implementation road-map 
  • Evaluated OpenStack as a solution to build a private cloud and provided a recommendation to CTO
  • Worked within and across Agile teams to design, develop, test, implement, and support technical solutions across a full-stack of development tools and technologies
  • Owned and executed multi-year programs to completion, some of which are
    • Introduction of free Experian credit score and report which drove a 35% increase in new credit card applications
    • Introduction of car buying service partnering with TrueCar along with an introduction of single page application which drove a 10% uptick in the auto applications and increased auto loans YoY growth by 150%
    • Introduction of a new Starbucks store card with a mobile wallet
    • Principal architect for the "lift-and-shift" project to revamp online consumer mortgage application and later re-architect the mortgage application platform
20032009

Director, Delivery Program Manager

Virtusa Inc., Westborough, MA
  • Responsible for expanding the customer service footprint, coordinated with Sales, Business Development, and Account Manager to pursue sales cycles resulting in 50% YoY growth
  • Influenced others in a matrix organization across multiple geographical locations and was responsible for managing a consulting team of 150 resources and P&L of 50 Mil USD
  • Institutionalized service offering ProductizationTM to help companies rationalize existing software assets, optimize and reuse, providing an ROI boost by 30-70%
  • Worked with clients to build the product and release roadmaps, worked closely with development teams to align their work products to the roadmap.
  • Part of the management team worked on going to market strategies which resulted in the 200% growth of the company for 4 yrs resulting in a successful IPO and listing of the company (VRTU) on NASDAQ.
20002003

Principal Software Architect

eRunway Inc., Westborough , MA
  • Conceptualized and built “MarketWorkz” a personalized e-Marketing campaign management system for Electronic bill presentment and payment (EBPP)  platform delivering a new revenue stream
  • Doubled user adoption in the first three months for online home remodeling site “Decorwalla”
  • Created technical documentation such as design and specification documents, software architecture documents, and user instructions to be used by various teams in the organization