Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic
Munirathnakumar Sivaramakrishnan

Munirathnakumar Sivaramakrishnan

Kuala Lumpur

Summary

  • Highly accomplished Lead Product Security Engineer with 17.5 years of IT experience in the financial services industry.
  • Recognized CNCF Kubestronaut, a title awarded to individuals who have successfully passed all 5 CNCF Kubernetes certifications (CKA, CKAD, CKS, KCNA, KCSA), demonstrating deep expertise in Cloud & Container Security, SRE, DevOps, Production Engineering, and Solutions Architecture.
  • Currently leading product security initiatives, including the development of an automated threat modeling tool to proactively identify and mitigate security vulnerabilities throughout the software development lifecycle.
  • Actively building a solution to validate security controls of software components within the pipeline, ensuring compliance through a shift-left approach.
  • Serving as a trusted Cloud & Container Security Advisor across Corporate and Retail Banking domains, driving secure cloud adoption aligned with the bank's Agile, Digital transformation, and Cloud-first strategy.
  • Possesses hands-on technical skills in Kubernetes, Red Hat OpenShift, Azure, and AWS platforms.
  • Experienced in ensuring the stability, 99.99% application availability, blue-green deployments, and overall resiliency of containerized components as a Certified Kubernetes Professional and System Reliability Engineer.

Overview

18
18
years of professional experience
4
4
years of post-secondary education
17
17
Certifications

Work History

Lead Product Security Engineer

Standard Chartered Global Business Services Sdn.Bh
07.2024 - Current
  • Engineered and implemented an in-house solution for automated security control validation within the software pipeline, ensuring continuous compliance and fostering a shift-left security approach.
  • Designed and developed an automated tool for threat modeling, improving early detection and mitigation of security risks in software development.
  • Architected and deployed a secure jump host solution to enable privileged activities within data center foundation services, strengthening overall infrastructure security posture.
  • Provided expert guidance and architectural oversight to ensure secure integration of security principles within product development initiatives.
  • Contributed to the establishment of secure development practices by building and implementing tools for pipeline security and compliance.
  • Collaborated with development and operations teams to embed security seamlessly into the software development lifecycle.

Principal Cyber Security Consultant

Standard Chartered Global Business Services Sdn.Bhd
12.2020 - 06.2024
  • As part of Bank's Agile, Digital transformation and Cloud first strategy, acting as Cloud & Container Security Advisory across Corporate banking and Retail Banking Domains to securely migrate solutions onto public Cloud and Container platforms
  • Responsible for Cloud workload security assessments, internal process audits, Cloud platform level operational risk assessments, streamlining Cloud security governance, Security review of Technical Implementation Procedures of newly on-boarded cloud and container services with Bank wide ICS governance policies
  • Setting up Runbook and patterns for IaaS / Container solution security reviews
  • Implementing DevSecOps practices to secure Infrastructure as Code pipelines, Container deployment pipelines, defence-in-depth container security Implementation
  • Threat Modelling of applications and Cloud services that are on-boarded using MITRE ATT&CK framework
  • Security Monitoring Detective, Preventive and Corrective controls Implementation and proposals for Public cloud and Container platforms and applications
  • Cloud solutions Risk assessment using Bank wide Operational Risk assessment, GRAM scale rating by considering threat likelihood and financial loss incurred
  • Management reporting on overall security posture, Stakeholder management with Internal 2nd Line of Defense HICS , BSO, CISRO, internal audit teams and External Cloud Service Providers.

Site Reliability Engineer

Standard Chartered Global Business Services Sdn.Bhd
09.2016 - 11.2020
  • Developed automation self-healing scripts in Talend, shell & python to maintain application resilience
  • Manage stability, operation, capacity ,DR capability and resilience of API Banking Application
  • Responsible for configuring monitoring for all application components
  • Developed single end to end dashboard to detect anomalies in application
  • Analyzing the data on Kibana, Grafana and ITRS and deriving performance of the products
  • Stabilizing the servers
  • Responsible for setting up ELK platform, parsing unstructured logs using regular expressions to structured JSON format
  • Identify the root cause of various system alarms/alerts
  • Recommend changes to avoid their recurrence
  • Review of application architecture on every release in terms of resilience, capacity and application high availability

Production Support Engineer

Scope International Ltd
03.2013 - 08.2016
  • Resolving high Severity Incidents
  • Performed root cause analysis and implemented corrective actions
  • Discuss all production support aspects with application development management
  • Interact with infrastructure, release management, change management, DBA and application teams
  • Provide regular status reports to management on application status and other metrics
  • Prioritize issues raised and resolve it accordingly.

Senior Software Engineer

HCL AXON Sdn Bhd
09.2010 - 03.2013
  • Design production support procedures, policies and documentation
  • Organize multiple production issues, customer requests and inquiries from other sources
  • Delegate resolving issues, requests when required
  • Installs, configures, troubleshoot, monitor and maintain software
  • Fine tuning SQL queries

Software Engineer

HCL Technologies Ltd
06.2007 - 08.2010
  • Design production support procedures, policies and documentation
  • Delegate resolving issues, requests when required
  • Installs, configures, troubleshoot, monitor and maintain software.

Education

B-Tech - EEE

SASTRA UNIVERSITY
06.2003 - 05.2007

Skills

DevOps/DevSecOps

Bitbucket, Git, maven, Jenkins, Groovy

SonarQube, IBM AppScan, AquaSec, Notary, Trivy

Intercept, Checkov, Conftest, X-Ray

Hashicorp Vault

AWS, Azure

Terraform

Docker, Podman, Kubernetes, Amazon EKS

Java, Spring Boot, Python, shell scripting

Oracle, DB2, PostgreSQL, Amazon RDS

IBM MQ, Kafka

Kong API gateway

ELK, Prometheus, Grafana, Splunk, App-Dynamics, ITRS

Service Now, Atlassian JIRA, Confluence

Certification

Certified Kubernetes Administrator

Timeline

Lead Product Security Engineer

Standard Chartered Global Business Services Sdn.Bh
07.2024 - Current

Principal Cyber Security Consultant

Standard Chartered Global Business Services Sdn.Bhd
12.2020 - 06.2024

Site Reliability Engineer

Standard Chartered Global Business Services Sdn.Bhd
09.2016 - 11.2020

Production Support Engineer

Scope International Ltd
03.2013 - 08.2016

Senior Software Engineer

HCL AXON Sdn Bhd
09.2010 - 03.2013

Software Engineer

HCL Technologies Ltd
06.2007 - 08.2010

B-Tech - EEE

SASTRA UNIVERSITY
06.2003 - 05.2007

Similar Profiles

CREATE PROFILE
Munirathnakumar Sivaramakrishnan