About
I'm a Security Engineer at Cyera focused on building secure, resilient systems and infrastructure. With a strong foundation in cloud security, I specialize in hardening AWS environments, implementing containerization best practices, and automating security workflows.
My expertise spans across DevSecOps, infrastructure as code (Ansible/Terraform), and container security. I'm passionate about integrating security throughout the development lifecycle and creating efficient, scalable solutions that protect sensitive data while enabling innovation.
Outside of my professional work, I contribute to open-source security projects and continuously explore emerging technologies in cloud security, AI integration, and secure software engineering.
Work Experience
Security Engineer
Worked on securing the Cyera Infrastructure and Application using various open-source tools and technologies. Key accomplishments:
- Built and containerized a security bot on GCR to automate security tasks and detections, significantly reducing routine manual work for engineers and saving money
- Designed and implemented an AWS RDS PostgreSQL database with encryption at rest and in transit to protect sensitive data, ensuring compliance with best data protection standards
- Developed and maintained tools, scripts, and platforms for enhanced security observability and control
- Proactively fortified container security by systematically updating Docker images to the latest stable versions and remediating critical/high/moderate CVEs in alignment with CIS Benchmarks and OWASP best practices
- Strengthened application security posture and ensured compliance with stringent security frameworks across repositories and infrastructure
- Developed secure authentication patterns using TypeScript, TailwindCSS and ShishCN
- Implemented least-privilege principle for security automation using GitHub Actions
Open-Source Contributor
Contributed security-focused improvements to open source projects. Key accomplishments:
- Developed a CI/CD pipeline for an open-source application, ensuring builds are tested across Linux, Mac, and Windows platforms, enhancing efficiency and reliability
- Contributed to PearAI's Server and Submodule, integrating key features like Anthropic support, Gemini support, and applying Secure Software Engineering practices. Integrated ML fail-safe measures to ensure sleek user experience
- Performed code reviews and maintained best practices for managing a large GitHub repository, ensuring robust and secure coding standards
- Integrated secure Terraform deployment patterns for AWS infrastructure
- Implemented secure API integrations for Google Gemini
Information Security Intern
Implemented secure infrastructure automation practices for AWS deployments. Key accomplishments:
- Automated end-to-end deployment utilizing Ansible and Terraform to deploy AWS infrastructure using GitHub Actions, implementing robust security through AWS Security Groups and using GitHub Actions secrets management
- Led the migration of a Hack app from development to production using IaC, ensuring optimal performance, scalability, and security that showcases production-ready configurations
- Implemented Security Stack monitoring dashboard utilizing scheduled GitHub Actions workflows that refreshed Docker Soaker dashboard using Python scripts
- Deployed OpenCTI using Docker, GCP, and Ansible, with seamless integration of CI/CD pipelines
- Expert in sourcegraph, shared components, file cryptography and Ready to enhance threat intelligence
- Proven ability to design scalable, reliable, and secure cloud infrastructure while automating deployment processes for optimal efficiency