Senior Security Engineer | CISSP

+91-6376486690 | Jaipur, Rajasthan, India tharvid.in | LinkedIn | GitHub | stharvid@gmail.com

Senior Security Engineer with around 5 years of professional experience and CISSP certification, currently at Porch Group. I build and operate security systems across Cloud Security, DevSecOps, Incident Response, Security Automation, SOC Implementation, and Compliance. I specialize in securing multi-cloud environments (AWS, GCP, Azure), building scalable security automation workflows, and enabling faster threat detection and response through DevSecOps and SOAR practices.

Nov 2025 – Present (Security Engineer: Jun 2024 – Nov 2025)

• Developed and maintained DevSecOps pipelines integrating SAST, IaC scanning, secret scanning, container scanning, DAST, API fuzzing, and dependency scanning. Automated vulnerability reporting to Jira for 500+ repositories and implemented ASPM for application security monitoring.
• Implemented a SIEM solution integrating 100+ data sources, including custom integrations, parsers, correlation rules, and SOAR response workflows for automated incident response.
• Onboarded 30+ AWS, GCP, and Azure accounts into CSPM, managing misconfigurations and indicators of attack.
• Implemented Kubernetes runtime security across 15+ clusters via KSPM with real-time workload monitoring, behavioral threat detection, and automated policy enforcement.
• Conducted CIS Critical Security Controls gap assessments across all 18 domains, ensuring PCI-DSS compliance.
• Automated security workflows using Python, AWS Lambda, and Google Cloud Functions, embedding GenAI-driven alert enrichment and incident summarization.
• Led enterprise GenAI security — deployed Lakera for real-time LLM protection (prompt injection, jailbreak, data leakage prevention) and secured LLM gateways via Portkey with policy enforcement, prompt filtering, and access controls.
• Collaborated with global business units and leadership teams across subsidiaries to close vulnerabilities and enforce security policies enterprise-wide.

Aug 2021 – Jun 2024

• Developed an advanced security system utilizing AWS CloudTrail, Config, Inspector, Detective, Macie, GuardDuty, and Security Hub for continuous monitoring and compliance.
• Integrated DevSecOps stages into CI/CD pipelines — secret scanning, SAST, IaC security, container security, SCA, and DAST.
• Managed triage of issues from bug bounty programs, DevSecOps, and cloud security tools.
• Designed security policies for EDR, CASB, and MDM, enforced RBAC, SSO, and Conditional Access across Google Workspace, AWS, and GCP IAM.
• Developed custom security tools — TPRM, phishing simulations, DNS security tool, and reporting solutions.
• Led incident detection and response with deep log analysis and coordinated response.
• Conducted risk assessments and penetration tests to identify and mitigate vulnerabilities.

Feb 2021 – Jun 2021

• Developed PoCs focused on M365 Security and cloud technologies.
• Integrated Okta and Azure AD for centralized identity management.
• Built Azure Monitor and Dynatrace dashboards for proactive threat monitoring.
• Leveraged Microsoft Defender for Office 365 for real-time email threat protection.

B.Tech, Computer Science & Engineering — Government Engineering College, Ajmer (2018–2022) | GPA: 7.94/10

Technologies: Cloud Security, DevSecOps, Security Automation, SOC, Incident Response, Threat Detection, SIEM, Penetration Testing, IAM, SAST, DAST, IaC Security, SCA, ASPM, CSPM, SOAR, DLP

Tools: AWS, GCP, Azure, Python, Docker, Jenkins, Git, Kubernetes, Burp Suite, Nmap, Wireshark, Metasploit, OWASP ZAP, CrowdStrike, NetSkope, Cloudflare, CheckPoint, Coralogix, Mimecast, Qualys, Rapid7, Google Chronicle, Okta, Azure AD

Frameworks: CIS Critical Security Controls, PCI-DSS, ISO/IEC 27001

Developed a GenAI-powered triage engine using Claude with MCP-based integrations to fetch context from SIEM, XDR, ticketing systems, historical incidents, and SOPs. Enables intelligent alert analysis across EDR, Cloud, and Application Security domains with automated TP/FP classification, enrichment, and actionable response recommendations. Reduced triage time from 30 minutes to under 60 seconds.

Built an enterprise SOAR workflow integrating CheckPoint, Entra ID, Okta, Mimecast, Jira, PagerDuty, CrowdStrike XDR, Google Workspace, AWS, and GenAI-based enrichment to automate incident response from SIEM detections across multiple subsidiaries, significantly reducing MTTR.

Implemented an open-source DevSecOps pipeline using Jenkins with Semgrep, Checkov, Trivy, Gitleaks, OWASP ZAP, and AWS ECR scanning. Automated parsing and reporting to Jira and DefectDojo.

Developed a phishing simulation platform using Gophish on AWS EC2 with Amazon SES for large-scale phishing campaigns and employee security awareness training.

• CISSP (Certified Information Systems Security Professional) — Verify
• CompTIA Security+ — Verify
• AWS Certified Security – Specialty — Verify
• Google Cloud Professional Cloud Security Engineer — Verify
• Docker Foundations Professional Certificate
• AWS Certified Cloud Practitioner
• Microsoft Certified: Azure Security Engineer Associate

English | Hindi

I write about security engineering, certifications, and career growth at tharvid.in/blog.

Recent posts:

• Building a GenAI-Powered Security Alert Triage System
• My CISSP Journey: From Hands-On Engineer to CISSP
• What to Expect in a SOC Analyst Interview
• How to Pass AWS Security Specialty