The Johns Hopkins University

Dr. A.P.J. Abdul Kalam Technical University

Security Architect at BetterCloud

● Led security architecture assessments for over 20 applications.
● Built threat models for 35 critical WePay applications services, reducing attack surface by 30%.
● Engineered and rolled out WAF (Signal Sciences) across WePay, enhancing threat detection by 40%
● Conducted comprehensive security reviews of 40+ business-critical application architectures, identifying and mitigating 85+ critical vulnerabilities.

JPMorgan Chase & Co.

Lead Staff Security Engineer  [Break: Attended Family Health Issue]

Microsoft

Sr. Security Engineer

● Led product security efforts in North America, managing a team of 6-7 security champions, resulting in a 20% improvement in overall security posture.
● Conducted technical BSIMM assessments to identify application/product security maturity
● Implemented end-to-end secure SSDLC, including in-depth technical security architecture reviews, reducing vulnerabilities by 30%

Sage

Lead Security Architect

● Conducted hands-on penetration tests as part of the Red Team for Intuit's main products (TurboTax, QuickBooks, Mint), discovering and mitigating over 100 critical vulnerabilities.
● Performed threat hunting, SIEM log analysis, and post-incident analysis, reducing incident response time by 20%.

Intuit

● Established a security architecture review program across business units from scratch leading to a 50% reduction in vulnerabilities.
● Managed and built security gates in the SDLC, compliance with security standards for all BUs (WER, RCI, WVO)
● Performed hands-on penetration testing and ethical hacking, identifying and resolving 100+ vulnerabilities across 85-odd business-critical applications.

Wyndham Worldwide

Sr. Application Security Architect

● Conducted application security architecture reviews with development teams and architects, reducing security risks by 25%
● Performed regular and comprehensive penetration tests and vulnerability assessments for critical business and customer-facing web applications, identifying and mitigating over 80 vulnerabilities.
● Led a team to engineer and implement WAF (F5 ASM) for all externally exposed applications, enhancing security by 30%.

Rahul Tyagi