~/RESUME_AND_SKILLS

• ›Designed and shipped a full-stack Security Governance Portal (Flask + Nginx) with an Exception Management System, multi-admin RBAC, and SSO/SAML integration — replacing a manual email-based workflow and cutting request turnaround from days to minutes.
• ›Built a Vulnerability Search Engine that pulls CVE data from multiple databases into one interface, reducing the time engineers spend hunting across tools.
• ›Set up remote security scanning in air-gapped environments using Trivy and Grype, generated SBOMs, and piped results back to a central analysis system.
• ›Integrated 3 additional SCA and SAST tools and built a Streamlit portal for binary scanning, giving engineering teams a self-service way to get vulnerability feedback.
• ›Hardened internal web infrastructure: Nginx reverse proxies, LDAP/SSO authentication, and secure HTTP headers across multiple deployments.
• ›Built an end-to-end agentic AI system for autonomous vulnerability remediation. Pulls open tickets from the ticketing system and passes them through a pipeline of agents handling analysis, CVE research, policy-compliant fix generation, validation, and merge request creation. Deterministic actions are handled via a skills framework to keep those steps reliable. Supports npm, Maven, and other ecosystems.

• ›Designed an SBOM generation and pruning pipeline across 5+ package managers, producing deduplicated CycloneDX SBOMs and cutting compliance effort from days to hours.
• ›Refactored backend metrics processing logic, cutting batch execution time from 50 to 20 minutes.
• ›Maintained a package validation framework that ran security and compliance checks across hundreds of third-party dependencies.
• ›Researched and evaluated SCA tools, writing comparative reports that fed into toolchain decisions for the security team.
• ›Onboarded three engineers on secure coding practices and security engineering workflows.

• ›Built a FastAPI service with on-demand DAST scanning APIs backed by Burp Suite, integrating security checks directly into CI/CD pipelines.
• ›Enabled self-service security testing for product teams, reducing how often they needed to loop in the security team for assessments.

• ›Built a Nessus-to-ticketing integration that automatically routed vulnerability tickets to the right owners based on host-to-owner mapping, cutting triage time significantly.
• ›Fixed reliability issues in security metrics pipelines, handling network failures and data gaps that were causing missed deliveries.
• ›Built ticket workflow tooling with cross-functional teams, saving roughly 5 hours of manual work per week.

Designed and built a browser extension that surfaces real-time vulnerability data from osv.dev inline on package registry pages. Supports npm, PyPI, Maven Central, and MVN Repository — removing context-switching during dependency evaluation.

Built a reverse dictionary for Kannada using semantic embeddings across 240,000 dictionary definitions. Accepts natural-language concept descriptions in English and returns semantically matched Kannada words — addressing a gap that translators cannot fill.

Built a hybrid serverless pipeline delivering Kannada periodicals (Mayura, Sudha, Prajavani, Deccan Herald) to Telegram subscribers on schedule. Cloudflare Workers handle webhook routing and delivery from cached PDFs; GitHub Actions orchestrate PDF generation; Cloudflare R2 provides storage.

Technical Security

SAST · DAST · SCA · SBOM (CycloneDX) · Vulnerability Management · Air-Gapped Scanning · Supply Chain Security · SSO / SAML / OIDC · Secure SDLC

Engineering & Architecture

Python (FastAPI · Flask · Django · Streamlit) · Java · SQL Server · Nginx · LDAP & RBAC · RESTful API Design

Security Tooling

Infrastructure & Cloud

Cloudflare Workers · R2 · GitHub Actions · CI/CD Integration · Nginx Reverse Proxy