Scribd
Upload
6 views2 pages

Test 3454 Resume

Shikhar Saxena is a DevSecOps Engineer with experience in developing security solutions for AWS and Azure environments, automating CI/CD pipelines, and implementing security testing tools. He holds multiple AWS certifications and has a Bachelor's degree in Computer Science & Engineering with a specialization in Cyber Security. His achievements include receiving a Rockstar Award and publishing research papers on security vulnerabilities.

Uploaded by

SumeetDembra
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
6 views2 pages

Test 3454 Resume

Shikhar Saxena is a DevSecOps Engineer with experience in developing security solutions for AWS and Azure environments, automating CI/CD pipelines, and implementing security testing tools. He holds multiple AWS certifications and has a Bachelor's degree in Computer Science & Engineering with a specialization in Cyber Security. His achievements include receiving a Rockstar Award and publishing research papers on security vulnerabilities.

Uploaded by

SumeetDembra
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

Shikhar Saxena

New Delhi, India | shikharsaxena1998@gmail.com | +91-8130425557 | linkedin.com/in/shikharsaxena10/

WORK EXPERIENCE

DevSecOps Engineer August 2022 - Present


MoEngage | Delhi, India (Remote)

● Developed SIEM and SOAR solutions from scratch to monitor AWS and Azure cloud environments and
report any misconfiguration identified using AWS EventBridge and AWS Lambda functions.
● Integrated Kubernetes deployments into CI/CD pipelines using GitLab and Jenkins, automating build,
test, and deployment processes for streamlined application delivery.
● Integrated SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), and
container scanning using Trivy/Clair into CI/CD pipelines to enforce security policies early in the
software development lifecycle.
● Implemented Canary Deployments with NGINX Ingress, gradually rolling out updates to minimize risk
and ensure stable application releases in production environments.
● ​Managed and secured the CI/CD pipelines using Jenkins, Harness, and Git, integrating security testing
and scanning tools like SonarQube, Trivy, and Synk.
● Developed and deployed Docker Containers/Images on Kubernetes and implemented proper security
controls using RBAC.
● Automated security management in Kubernetes environments by integrating secrets management using
HashiCorp Vault and enforcing role-based access control (RBAC) policies.
● Configured NGINX Ingress Controllers for load balancing, improving traffic management, and service
availability across Kubernetes clusters.
● Implemented continuous monitoring solutions using Prometheus, Grafana, and ELK stack, to monitor
for security vulnerabilities and ensure compliance with GDPR and ISO standards.
● Deployed secure infrastructure across AWS, Azure, and GCP using Terraform, ensuring compliance with
industry standards like PCI-DSS and SOC 2.
● Developed Python-based scripts to automate security audits, key rotations, and incident response
workflows in AWS environments using Boto3.
● Automated infrastructure deployment using Terraform and Ansible, reducing deployment time by 80%
and minimizing manual errors.
● Wrote 50+ policies using Python boto3 related to AWS security best practices and compliance.

DevSecOps Engineer April 2022 - August 2022


Safe Security | Delhi, India (Remote)

● Wrote Terraform scripts for automated deployment of Bastion Hosts in AWS across multiple AZ’s.
● Hardened cloud environments with IAM policies, security groups, VPC, and multi-factor authentication
(MFA), minimizing attack surfaces and ensuring data confidentiality.
● Automated AWS security audits and vulnerability scanning using AWS Security Hub, GuardDuty, and
CloudTrail as part of the CI/CD pipeline.
● Built automated processes for secret management in CI/CD pipelines using AWS Secrets Manager and
HashiCorp Vault, ensuring secure access to sensitive data.
● Implemented container runtime security by configuring Kubernetes Pod Security Policies and Kyverno
and used tools like Falco for anomaly detection and real-time threat monitoring.

CERTIFICATIONS

AWS Certified Solutions Architect - Associate Validation No: 3YT9D8MBMBB11HKK


AWS Certified Security - Specialty Validation No: VZWQD98BLEF11M94
AWS Certified Cloud Practitioner Validation No: PZEJ3ECLLFR41WS8
Certified Ethical Hacker (CEH)

PROJECTS

Secure CI/CD Pipeline


● Developed a comprehensive CI/CD pipeline utilizing Jenkins to deploy a Python Flask application on
AWS EC2 instances with Terraform. The application was containerized using Docker, and security
scanning tools such as SonarQube, Trivy, and Snyk were integrated to ensure robust security measures.

DevSecOps Project
● Deployed and orchestrated a robust Kubernetes cluster on Amazon EKS, ensuring optimal configuration
for scalability and performance. Configured NGINX Ingress Controllers to manage traffic routing and load
balancing. Executed Canary Deployments within the cluster to enable controlled, phased rollouts of
application updates, minimizing risk and ensuring seamless user experience during releases.

ACHIEVEMENTS

● Received Rockstar Award from MoEngage for exceptional performance.


● Published research paper on ExploitDB and Packet Storm Security on Microsoft MSHTML Remote Code
Execution.
● Published research paper on ExploitDB and Packet Storm Security on Polkit CVE-2021-3560.
● Published research paper on ExploitDB and Packet Storm Security on Linux Privilege Escalation.

EDUCATION

Bachelor of Technology (B.Tech) 2018-2022


SUSHANT UNIVERSITY
B.Tech in Computer Science & Engineering with specialization in Cyber Security
GPA: 8.2

SKILLS

AWS | Azure | Python | Docker | Kubernetes | Terraform | Ansible | Git | Github | GitOps | Argo CD | Linux | Bash |
Shell Scripting | Jenkins | CI/CD | Harness | JavaScript | Logging | Monitoring | Prometheus | Grafana | Burpsuite |
Wireshark | SIEM | SOAR | Firewall | DevOps | DevSecOps | Hashicorp Vault | Boto3 | Cloud Security | IAM

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy