Contour

- Spearheaded DevSecOps initiative by implementing real time vulnerability monitoring on Kubernetes cluster using Trivy for image/ configuration drift, integrated with Grafana to view security posture of Kubernetes cluster on a dashboard and achieved zero critical and high severity vulnerabilities on cluster images and configurations.- Drove SIEM implementation to centralise infrastructure logs, DDoS defence built Log analytics workbooks and real time security operations centre using Cloud SIEM Sentinel. This resulted in zero critical, high and medium severity vulnerabilities in infra penetration test.- Introduced Shift Left Security initiative by onboarding Snyk for static and third party dependency vulnerability scanning, this reduced critical and high severity vulnerabilities to zero in application penetration test.- Migrated Legacy infra to IaC by leveraging terraform import feature, this enabled gitOps adoption and scalable infrastructure across multiple regions.- Optimised Cloud resource utilisation and reduced cost by 30% by migrating PostgreSQL single server to flexible server, Firewall to WAF, AKS node pool VM sizes and K8s app CPU requests/limits. Show less