Highly accomplished Lead Product Security Engineer with 17.5 years of IT experience in the financial services industry.
Recognized CNCF Kubestronaut, a title awarded to individuals who have successfully passed all 5 CNCF Kubernetes certifications (CKA, CKAD, CKS, KCNA, KCSA), demonstrating deep expertise in Cloud & Container Security, SRE, DevOps, Production Engineering, and Solutions Architecture.
Currently leading product security initiatives, including the development of an automated threat modeling tool to proactively identify and mitigate security vulnerabilities throughout the software development lifecycle.
Actively building a solution to validate security controls of software components within the pipeline, ensuring compliance through a shift-left approach.
Serving as a trusted Cloud & Container Security Advisor across Corporate and Retail Banking domains, driving secure cloud adoption aligned with the bank's Agile, Digital transformation, and Cloud-first strategy.
Possesses hands-on technical skills in Kubernetes, Red Hat OpenShift, Azure, and AWS platforms.
Experienced in ensuring the stability, 99.99% application availability, blue-green deployments, and overall resiliency of containerized components as a Certified Kubernetes Professional and System Reliability Engineer.
Overview
18
18
years of professional experience
4
4
years of post-secondary education
17
17
Certifications
Work History
Lead Product Security Engineer
Standard Chartered Global Business Services Sdn.Bh
07.2024 - Current
Engineered and implemented an in-house solution for automated security control validation within the software pipeline, ensuring continuous compliance and fostering a shift-left security approach.
Designed and developed an automated tool for threat modeling, improving early detection and mitigation of security risks in software development.
Architected and deployed a secure jump host solution to enable privileged activities within data center foundation services, strengthening overall infrastructure security posture.
Provided expert guidance and architectural oversight to ensure secure integration of security principles within product development initiatives.
Contributed to the establishment of secure development practices by building and implementing tools for pipeline security and compliance.
Collaborated with development and operations teams to embed security seamlessly into the software development lifecycle.
Principal Cyber Security Consultant
Standard Chartered Global Business Services Sdn.Bhd
12.2020 - 06.2024
As part of Bank's Agile, Digital transformation and Cloud first strategy, acting as Cloud & Container Security Advisory across Corporate banking and Retail Banking Domains to securely migrate solutions onto public Cloud and Container platforms
Responsible for Cloud workload security assessments, internal process audits, Cloud platform level operational risk assessments, streamlining Cloud security governance, Security review of Technical Implementation Procedures of newly on-boarded cloud and container services with Bank wide ICS governance policies
Setting up Runbook and patterns for IaaS / Container solution security reviews
Implementing DevSecOps practices to secure Infrastructure as Code pipelines, Container deployment pipelines, defence-in-depth container security Implementation
Threat Modelling of applications and Cloud services that are on-boarded using MITRE ATT&CK framework
Security Monitoring Detective, Preventive and Corrective controls Implementation and proposals for Public cloud and Container platforms and applications
Cloud solutions Risk assessment using Bank wide Operational Risk assessment, GRAM scale rating by considering threat likelihood and financial loss incurred
Management reporting on overall security posture, Stakeholder management with Internal 2nd Line of Defense HICS , BSO, CISRO, internal audit teams and External Cloud Service Providers.
Site Reliability Engineer
Standard Chartered Global Business Services Sdn.Bhd
09.2016 - 11.2020
Developed automation self-healing scripts in Talend, shell & python to maintain application resilience
Manage stability, operation, capacity ,DR capability and resilience of API Banking Application
Responsible for configuring monitoring for all application components
Developed single end to end dashboard to detect anomalies in application
Analyzing the data on Kibana, Grafana and ITRS and deriving performance of the products
Stabilizing the servers
Responsible for setting up ELK platform, parsing unstructured logs using regular expressions to structured JSON format
Identify the root cause of various system alarms/alerts
Recommend changes to avoid their recurrence
Review of application architecture on every release in terms of resilience, capacity and application high availability
Production Support Engineer
Scope International Ltd
03.2013 - 08.2016
Resolving high Severity Incidents
Performed root cause analysis and implemented corrective actions
Discuss all production support aspects with application development management
Interact with infrastructure, release management, change management, DBA and application teams
Provide regular status reports to management on application status and other metrics
Prioritize issues raised and resolve it accordingly.
Senior Software Engineer
HCL AXON Sdn Bhd
09.2010 - 03.2013
Design production support procedures, policies and documentation
Organize multiple production issues, customer requests and inquiries from other sources
Delegate resolving issues, requests when required
Installs, configures, troubleshoot, monitor and maintain software
Fine tuning SQL queries
Software Engineer
HCL Technologies Ltd
06.2007 - 08.2010
Design production support procedures, policies and documentation
Delegate resolving issues, requests when required
Installs, configures, troubleshoot, monitor and maintain software.
Education
B-Tech - EEE
SASTRA UNIVERSITY
06.2003 - 05.2007
Skills
DevOps/DevSecOps
Certification
Certified Kubernetes Administrator
Timeline
Lead Product Security Engineer
Standard Chartered Global Business Services Sdn.Bh
07.2024 - Current
Principal Cyber Security Consultant
Standard Chartered Global Business Services Sdn.Bhd
12.2020 - 06.2024
Site Reliability Engineer
Standard Chartered Global Business Services Sdn.Bhd
Manager of Wealth Management Operations at Standard Chartered Global Business Services, Global Business ServicesManager of Wealth Management Operations at Standard Chartered Global Business Services, Global Business Services
Senior Manager / Manager / Associate Manager at Standard Chartered Global Business Services Pvt LtdSenior Manager / Manager / Associate Manager at Standard Chartered Global Business Services Pvt Ltd