Skip to content
RG

Ravi Gopireddy

Security Engineer

Austin, TX, USA

๐ŸŸกLurking

Security engineer with 12 years of enterprise experience across AWS cloud security architecture, identity and access enforcement, application security, offensive security and AI system security. Builds programs end-to-end, configuring tools, writing runbooks, and shipping automation. Python and Bash are daily tools. Track record of turning early stage security programs into audit-ready, client-facing differentiators.

Work Preferences

Salary

GBP 149,987 โ€“ 300,000

Skills

Identity & Access Management (IAM/RBAC/ABAC)9/10
Application Security (AppSec)9/10
MITRE ATT&CK9/10
AWS Cloud Security9/10
Okta & Entra ID9/10
CSPM (Wiz, Defender for Cloud) (9/10)Python Scripting & Automation (9/10)Splunk SIEM & SOAR (9/10)Azure Security (9/10)AI/LLM Security (Prompt Injection, Agent Authorization) (8/10)Bash Scripting (8/10)CI/CD Security (Jenkins, GitLab CI, GitHub Actions) (8/10)GRC & Compliance (NIST, SOC2, HIPAA, GDPR, SOX) (8/10)Incident Response & Forensics (8/10)OAuth 2.0 / OIDC / SAML / JWT (8/10)Penetration Testing & Red Team (8/10)SAST/SCA/DAST (8/10)STRIDE Threat Modeling (8/10)Terraform (7/10)GCP Security (7/10)

Work Experience

Security Engineer โ€” Cloud, AppSec, AI and Offensive Security

Deloitte Risk and Financial Advisory

Apr 2021 โ€” Present

Stood up end-to-end security programs for financial services clients. Implemented enterprise SSO/MFA across AWS, Azure and GCP; designed RBAC/ABAC models; administered Okta and Entra ID. Configured CSPM across Wiz, Microsoft Defender for Cloud, GCP SCC and full AWS native security stack. Built Python automation for IAM reviews, secrets rotation and compliance evidence packaging. Embedded SAST/SCA into CI/CD pipelines. Built detection coverage with Splunk SIEM using MITRE ATT&CK-aligned rules. Led penetration tests and red team exercises. Reviewed OAuth 2.0, OIDC, SAML and JWT flows. Led enterprise AI identity security for LLM/RAG/multi-agent systems. Led compliance assessments covering SOX, GDPR and HIPAA aligned to NIST 800-53 and CIS Benchmarks.

GRC and Cybersecurity Engineer

USM Business Systems

Aug 2019 โ€” Mar 2021

Conducted application security assessments and cloud architecture reviews for enterprise healthcare platforms. Implemented Azure Entra ID conditional access policies, Sentinel SIEM, Key Vault and Security Center. Designed CI/CD security gates with SAST/DAST scanning. Built MITRE ATT&CK-aligned detection models in Splunk and tuned SOAR playbooks. Led supplier cybersecurity assessments and coordinated evidence collection for SOX, GDPR and HIPAA audits. Administered ServiceNow VRM and Archer.

IT Security and Cybersecurity Analyst

USM Business Systems

Mar 2017 โ€” Jul 2019

Performed web application and network penetration testing targeting OWASP Top 10 vulnerabilities. Led SIEM detection engineering and SOAR playbook development reducing false positives and automating incident response triage. Configured Okta MFA and SSO policies. Applied Terraform and Azure ARM templates for infrastructure as code security deployments.

Azure Administrator and Cloud Engineer

USM Business Systems

Dec 2012 โ€” Feb 2017

Administered Azure cloud environments and DevOps pipelines. Performed vulnerability assessments using Nessus and OpenVAS. Implemented data encryption controls and managed IDS and IPS systems for cloud-hosted platforms.

Education

Midwestern State University

MSc ยท Computer Science

Anurag Engineering College

BSc ยท Information Technology