Featured Projects

A showcase of key projects that demonstrate my expertise in building scalable, secure cloud infrastructure, DevSecOps practices, governance initiatives, and comprehensive security automation solutions.

Governance & Compliance
Technical Implementation
Security Standards Review & Update Initiative
Delegate & ContributorSummer 2025

Led enterprise-wide security policy modernization initiative as Cloud Security Engineer, serving as both Delegate and Contributor for 5+ core security policies. Collaborated cross-functionally to align 24+ policies with cloud-native practices, regulatory frameworks, and evolving business needs.

Key Features & Contributions:

  • Led Access Control Policy updates for cloud-native IAM and federated identity
  • Contributed to Vulnerability Management, Logging, and Network Security policies
  • Aligned policies with NIST, ISO 27001, and SOC 2 compliance frameworks
  • Implemented cloud security controls for AWS GuardDuty and Azure Defender integration
NIST 800-53
ISO 27001
CIS Benchmarks
AWS
Azure
Okta
CloudWatch
Multi-Cloud Security Platform

Designed and implemented a comprehensive multi-cloud security platform with zero-trust architecture, automated threat detection, and compliance monitoring across AWS, Azure, and GCP. Features centralized security orchestration and automated incident response.

Key Features & Contributions:

  • Zero-trust network architecture implementation
  • Automated threat detection and response across clouds
  • Centralized compliance monitoring and reporting
  • Security orchestration and automated remediation
AWS Security Hub
Azure Security Center
Terraform
Kubernetes
Prometheus
Python
DevSecOps Pipeline Automation

Built comprehensive DevSecOps pipelines with integrated security scanning, vulnerability assessment, and automated compliance checks. Implemented security gates at every stage of the development lifecycle with automated rollback capabilities.

Key Features & Contributions:

  • Automated SAST/DAST security scanning integration
  • Container image vulnerability assessment
  • Infrastructure security compliance checks
  • Automated security incident response and rollback
Jenkins
Docker
SonarQube
Snyk Code
OWASP ZAP
Trivy
Kubernetes
Cloud Security Monitoring Suite

Implemented end-to-end cloud security monitoring and observability stack with threat intelligence integration, automated alerting, and security analytics. Provides comprehensive visibility into multi-cloud security posture and compliance status.

Key Features & Contributions:

  • Real-time threat detection and intelligence correlation
  • Automated security incident escalation and notification
  • Cloud security posture management and drift detection
  • Compliance reporting and audit trail automation
AWS GuardDuty
Azure Sentinel
Prometheus
Grafana
ELK Stack
Python
Secure Infrastructure as Code Framework

Developed a comprehensive secure IaC framework with built-in security policies, compliance checks, and automated security hardening. Includes security-first modules for common cloud patterns and automated security testing.

Key Features & Contributions:

  • Security-hardened infrastructure modules and templates
  • Automated security policy enforcement and compliance checks
  • Infrastructure security scanning and vulnerability assessment
  • Multi-cloud security configuration management
Terraform
Ansible
AWS Security Hub
Azure Security Center
Python
Go

Project Impact

24+

Security Policies Modernized

5+

Cloud Platforms Secured

99.5%

System Uptime Achieved