Jagadeesh Sirigiri
Melbourne,Australia
Summary
Results-oriented professional with over 11 years of experience in enterprise cloud security, DevSecOps engineering, and Agile DevOps. Proven expertise in implementing advanced security measures across cloud platforms, enhancing operational efficiency, and ensuring regulatory compliance. Adept at driving security improvement initiatives, collaborating with cross-functional teams, and integrating security measures into the development lifecycle.
Overview
12
12
years of professional experience
1
1
Certification
Work History
Specialist- Cloud Security, Vulnerability Tools & Assessment
IAG - Insurance Australia Group
Melbourne, VIC
06.2024 - Current
- Designed and Implemented Secure Cloud Environments: Architected and implemented a comprehensive CSPM uplift program, optimizing security rules across AWS, Azure, and GCP, resulting in a measurable enhancement of cloud security posture.
- Security Control Testing & POC Orchestration: Orchestrated test cases and proof-of-concepts (POCs) for KSPM solutions to validate security controls, assess effectiveness, and ensure alignment with organizational security objectives and regulatory compliance.
- Conducted Security Assessments: Led the transition from standalone Cloud Conformity to Vision One, streamlining security management and improving operational visibility.
- Developed Security Policies: Championed the overhaul of cloud security standards, aligning with APRA CPS 234 and NIST CSF, and reinforcing regulatory compliance.
- Collaborated with Tech Ops Teams: Collaborated with 700+ developers and Tech Ops teams, fostering a security-centric development culture and driving risk remediation initiatives.
- Managed Identity and Access Controls: Enforced identity and access controls in Azure, ensuring adherence to NIST and APRA requirements for boundary protection.
- Monitored Cloud Environments: Directed BAU activities for Cloud Security Posture Management, serving as the critical validation point for cloud account approvals.
- Cloud & Kubernetes Security Documentation: Created comprehensive project documentation for Cloud Security Posture Management (CSPM) and Kubernetes Security Posture Management (KSPM) initiatives, including high-level design, security policies, implementation guides, risk assessments, and operational procedures to ensure alignment with organizational security objectives and regulatory compliance.
Sr. Cloud Security Engineer
Koch Industries- Molex
01.2022 - 10.2024
- Served as the SME for Cloud Security, reporting directly to CISO, ensuring alignment with security objectives across cloud platforms. (Achieved 99% compliance with regulatory standards)
- Proficient in CSPM tools like Rapid7-DivvyCloud, enforcing security best practices and compliance. (Reduced cloud misconfigurations by 65%)
- Assisted in understanding risks and vulnerabilities, collaborating with cross-functional teams. (Identified and mitigated over 50 high-risk vulnerabilities)
- Leveraged automation to enhance security tooling, optimizing efficiency and cost-effectiveness. (Automated 55% of security processes, saving $150K annually)
- Implemented Enterprise Security tooling (Akeyless, Ermetic, Rapid7-DivvyCloud) for diverse cloud applications and DevOps solutions. (Improved overall cloud security posture by 45%)
- Led Security Improvement Programs and Well-Architected Framework audits and conducted Security improvement programs for AWS accounts. (Achieved 72% compliance with security best practices)
- Conducted threat hunting exercises, generated post-mortem reports for development teams. (Identified and mitigated 27 critical security incidents)
- Aligned with ISO 27001, GDPR, HIPAA, and cloud standards, using Divvy Cloud for posture management. (Maintained 100% compliance with industry regulations)
- Utilized Qualys and Rapid7 for vulnerability assessments, providing detailed reports and recommendations. (Identified and remediated over 1,200 vulnerabilities annually)
- Reviewed static code analysis with Snyk, coordinating reporting and remediation activities. (Reduced open-source vulnerabilities by 68%)
- Facilitated effective communication and knowledge transfer on identified vulnerabilities. (Trained and mentored junior security engineers)
- Performed risk assessments and developed risk mitigation strategies for cloud environments, ensuring alignment with organizational risk appetite and industry best practices. (Reduced overall risk exposure by 35%)
Sr. DevSecOps Engineer – Customer Success
Aqua Security Software Inc.
05.2021 - 02.2022
- Established as a trusted technical advisor, maintaining a deep understanding of Aqua Security's product line and relevant technologies, serving over 50 clients with tailored solutions.
- Managed a customer portfolio of 30 accounts, ensuring seamless technical onboarding and deployment of Aqua products, resulting in a 95% successful implementation rate.
- Designed customized customer solutions utilizing Aqua patterns and deployment standards, leading to a 20% increase in system efficiency and scalability.
- Replicated integration scenarios with over 10 ecosystem software platforms, ensuring seamless interoperability and compatibility for clients.
- Drove the resolution of customer problems from initial awareness to the final solution, achieving a 90% customer satisfaction rate and maintaining long-term relationships with key accounts.
Member Technical Staff (DevOps Solutions)
Amadeus IT Group
08.2017 - 05.2021
- Design/Model Existing Application into Containerization using Docker and orchestrate Containers using Kubernetes Cluster/OpenShift with the help of CI/CD.
- CDM (Cloud Delivery Management): Responsible for provisioning, upgrading, and decommissioning of the cluster quota on PaaS/IaaS.
- Architect: Designed/Architected & Capacity Planned the Environment Definitions and implemented critical components as multitenant and individual components as single tenant architecture.
- Automation: Designed/Wrote automation for various provisioning relating to application and third-party setups using scripting.
- Release Management: Conducted full end-to-end releases after development, automating packaging and artifact movement to depot source control.
- Documentation: Effectively documented tasks on Confluence/SharePoint/Microsoft One Note for seamless execution in the absence of key personnel.
- Production Support: Managed & supported current production environments day-to-day tasks in private cloud for industry.
- Agile Scrum: Created & managed stories for the projects and releases, facilitating daily scrum meetings and retrospectives.
- Monitoring: Developed monitoring solutions and exporters using Prometheus, visualized using Grafana and Splunk dashboards.
- CI/CD: Designed pipelines for operability, build, deployment, and orchestration.
- Provided Tier 3/4 application support, addressing issues such as memory leaks, SQL slowness, and backend performance using SIEM.
- Monitored system performance and handled maintenance tasks using CPU/Disk/Memory alerts and DB performance analysis.
Senior Software Engineer – L3 Production Support Engineer
Amadeus Software Labs India Pvt Ltd
03.2013 - 08.2019
- Responsible for ITIL (PTR/IR/CR and TR handling) and acted as SPOC for release management.
- Spearheaded Agile-driven build/release and source code management initiatives, ensuring PCI-DSS compliance.
- Managed Subversion, Git+Bitbucket, and Nexus configurations.
- Implemented distributed version control systems and maintained SCM tools like ClearCase and Git with a focus on security and reliability.
- Provided L3 support for web-based applications and Middleware & Platform, managing production incidents and creating PTRs proactively.
- Monitored production systems using internal tools, implemented network configurations adhering to PCI-DSS standards, and conducted internal audits on production systems.
- Supported applications like Altea Reservation Desktops in environments including WebLogic11g, JBoss, Java, J2EE, Apache, iPlanet, IIS, and SQL Server.
- Evaluated farm monitoring reports by collecting meta-health checks on various JMX metrics across production farms.
Education
Bachelor of Technology - Computer Sciences and Engineering
JNT University
08.2008
Skills
- Cloud security solutions
- AWS and Azure expertise
- CI/CD automation
- Scripting languages
- Jenkins and Groovy
- Infrastructure as code (IaC)
- Version control systems
- Code analysis tools
- Git and Bitbucket
- Vulnerability scanning (Tenable/Snyk)
- Cloud security posture management (CSPM)
- Cloud infrastructure entitlement management (CIEM)
- IT service management (ITSM)
- Governance, risk, and compliance (GRC)
- ServiceNow proficiency
- Documentation platforms (Confluence, SharePoint)
- Infrastructure automation (CloudFormation, Terraform)
- InfoSec tools (DivvyCloud, EDR)
- Endpoint protection (CrowdStrike)
- Vulnerability management (Qualys)
- Access management (Ermetic)
- Security information and event management (SIEM)
- Data analytics with Splunk
- Content delivery networks (CDN)
- Vulnerability assessment
- Identity management
- Cloud security
- Security policies
- Security automation
- Risk mitigation
- Cross-functional collaboration
- Technical onboarding
- Project management
Certification
- AWS SYSOPS Associate
- Microsoft Certified: Azure Security Engineer Associate
- Certified ITIL v3 Foundation Engineer
- Certified Akamai Administrator (Akamai Terra Alta Enterprise)
- Aqua 101 - Cloud Native Security Product Certification
- Aqua ESE-CCE Support Certification
Training
- JBoss Application Administration 1 (EAP 6.0)
- RHEL System Administration 1
- Apache Webserver Administration 1
- OpenShift Enterprise Development
- A3 Thinking & Developing Use Cases Strategy Execution
Hobbies and Interests
- Engaging in technology meetups to stay updated with the latest industry trends.
- Reading about advancements in technology, as well as exploring philosophical and psychological concepts and teaching.
- Reviewing and analyzing films to understand cinematic techniques and storytelling.
Timeline
Specialist- Cloud Security, Vulnerability Tools & Assessment
IAG - Insurance Australia Group
06.2024 - Current
Sr. Cloud Security Engineer
Koch Industries- Molex
01.2022 - 10.2024
Sr. DevSecOps Engineer – Customer Success
Aqua Security Software Inc.
05.2021 - 02.2022
Member Technical Staff (DevOps Solutions)
Amadeus IT Group
08.2017 - 05.2021
Senior Software Engineer – L3 Production Support Engineer
Amadeus Software Labs India Pvt Ltd
03.2013 - 08.2019
Bachelor of Technology - Computer Sciences and Engineering
JNT University
Similar Profiles
Haydin BekirHaydin Bekir
Team Lead (Onboarding Manager) at IAG (Insurance Australia Group)Team Lead (Onboarding Manager) at IAG (Insurance Australia Group)
Lucille PakayLucille Pakay
Claims Officer at Insurance Commission Of WAClaims Officer at Insurance Commission Of WA
Chris SjodinChris Sjodin
National Operations Manager at Drive GroupNational Operations Manager at Drive Group
Prashant RegmiPrashant Regmi
Django Project Team Leader at Skill SyncDjango Project Team Leader at Skill Sync
Nadia LeggieriNadia Leggieri
Legal Assistant at Slater and Gordon LawyersLegal Assistant at Slater and Gordon Lawyers