Sunil Kumar

Senior Security Engineer (Nov 2025 – Present)

Security Engineer (Jun 2024 – Nov 2025)

• Developed and maintained DevSecOps pipelines integrating SAST, IaC scanning, secret scanning, container scanning, DAST, API fuzzing, and dependency scanning. Automated vulnerability reporting to Jira using custom scripts for 500+ repositories spanning diverse technologies, and implemented ASPM for comprehensive application security monitoring.
• Implemented a SIEM solution integrating 50+ data sources, including custom integrations, parsers, correlation rules, and SOAR response workflows to enhance threat detection and automated incident response.
• Onboarded 30+ AWS, GCP, and Azure accounts into the CSPM solution, managing misconfigurations and indicators of attack in collaboration with account owner teams.
• Implemented Kubernetes runtime security across 15+ clusters via a KSPM platform, providing real-time workload monitoring, behavioral threat detection, and automated policy enforcement.
• Conducted gap assessments and supported the implementation of CIS Critical Security Controls across all 18 domains, ensuring PCI-DSS compliance and control alignment.
• Automated security workflows using Python, AWS Lambda, and Google Cloud Functions, embedding GenAI-driven alert enrichment and incident summarization to reduce manual investigation effort.
• Collaborated with global business units, stakeholders, and leadership teams across subsidiaries to close vulnerabilities and enforce security policies enterprise-wide.
• Led implementation of enterprise GenAI security by deploying Lakera for real-time LLM protection (prompt injection, jailbreak, and data leakage prevention) and securing LLM gateways via Portkey with policy enforcement, prompt filtering, and access controls, establishing end-to-end security for AI applications and usage across the organization.

Security Engineer

• Developed an advanced security system utilizing AWS CloudTrail, Config, Inspector, Detective, Macie, GuardDuty, and Security Hub for detailed logging and real-time monitoring, ensuring continuous security assessment and compliance.
• Integrated DevSecOps stages into DevOps pipelines, automating security measures such as secret scanning, SAST, IaC security, container security, SCA, and DAST.
• Managed the triage of issues from bug bounty programs, DevSecOps, and cloud security tools, ensuring timely resolution.
• Designed and implemented security policies for EDR, CASB, and MDM solutions, and enforced RBAC, SSO, and Conditional Access across Google Workspace, AWS, and GCP IAM.
• Developed custom security tools, including TPRM, phishing simulations, DNS security tool, and reporting solutions to streamline processes.
• Actively engaged in incident detection and response, enhancing defense mechanisms through deep log analysis and coordinated response.
• Conducted risk assessments and penetration tests to identify and mitigate vulnerabilities.

Associate - Cloud Infra and Security Intern

• Developed proof-of-concepts (PoCs) focused on M365 Security and related technologies, demonstrating early interest in cloud security.
• Integrated Okta and Azure AD for centralized identity management and streamlined authentication.
• Built Azure Monitor and Dynatrace dashboards for proactive threat monitoring and alerting.
• Leveraged Microsoft Defender for Office 365 to enhance real-time email threat protection.