Prabhu Raj

Principal Software Engineer - Application & Cloud Security

• Job Details:Driving end-to-end adherence to PCI-DSS 4.0.1, GDPR, ISO 27001, and NIST by coordinating internal audits and representing the organization in external assessments. Strengthening application security through continuous SAST, DAST, SCA, and license-compliance scans aligned with OWASP Top 10 and CVSS scoring. Architecting and deploying EDR, XDR, SIEM, IAM, SOAR, and TLS controls to deliver layered defense across hybrid environments. Managing secure AWS workloads by configuring WAF, CloudFront, and blue-green deployments to minimize downtime and attack surface. Embedding automated security gates into CI/CD pipelines with AWS Code Build & Code Deploy and instrumenting continuous monitoring with New Relic and AWS CloudWatch. Orchestrating threat modeling, leading incident detection and response, and hardening infrastructure to shorten vulnerability exposure and recovery time. Mentoring junior engineers and elevating security maturity by refining internal policies, standards, and best practices. Developing dashboards and KPIs to track vulnerability trends, compliance status, and incident-response effectiveness, enabling data-driven decision-making. Liaising with product owners, DevOps, and legal teams to align security objectives with business goals and regulatory requirements. Conducting post-incident reviews and implementing lessons learned to enhance processes, tools, and security posture over time.

Technical Lead

• Job Details:Led vulnerability mitigation and performance tuning across multiple e-commerce platforms, enhancing overall system resilience. Implemented recurring security updates and validated applications against OWASP Top 10 vulnerabilities to reduce risk. Managed cloud compliance programs and monitored infrastructure using SIEM tools for proactive threat detection. Configured WAF policies, CI/CD pipelines, and patching workflows; maintained robust logging, monitoring, and disaster recovery mechanisms.

Technical Lead - Application Security

• Job Details:Spearheaded a five-member security engineering team, delivering hardened application builds while elevating system performance. Drove remediation efforts by integrating SAST, DAST, and license-audit workflows, resolving critical issues before production deployment. Orchestrated cloud-security initiatives, periodic OWASP Top 10 validations, and penetration testing to maintain proactive defense posture. Ensured GDPR and ISO 27001 (ISMS) compliance by enforcing control policies, managing WAF configurations, and maintaining disaster-recovery frameworks. Commanded incident response activities and championed secure coding practices to reduce vulnerability recurrence and strengthen audit readiness.