Senior Application Security & DevSecOps Engineer
TX 75025, USA
Senior Application Security & DevSecOps Engineer with 8+ years of experience securing enterprise-scale cloud-native platforms across Fortune 500 organizations including AT&T, Cisco, Nokia, and Pact Pharma. Expertise in Application Security, DevSecOps, Kubernetes Security, Cloud Security, and Generative AI/LLM Security across AWS and Azure environments.
Pact Pharma
Oct 2025 โ Present
Led enterprise Application Security initiatives across 15+ cloud-native applications, reducing critical security risks by 65%. Built secure CI/CD pipelines integrating SAST, DAST, SCA, and policy enforcement gates. Implemented Kubernetes runtime security using Falco, RBAC, and Trivy. Designed secure Generative AI workflows using Azure OpenAI and LangChain. Improved incident response efficiency by 50% using Splunk, Azure Sentinel, and automated SIEM workflows.
AT&T
Mar 2022 โ Sept 2025
Performed enterprise security assessments across 300+ applications. Designed secure CI/CD pipelines with automated security testing. Hardened Kubernetes clusters using CIS benchmarks and RBAC. Built AI-powered threat detection solutions aligned with MITRE ATT&CK. Managed secrets for 100+ microservices using HashiCorp Vault and CyberArk PAM.
Cisco
Jan 2020 โ Feb 2022
Integrated security controls into SDLC for enterprise Java and Python applications aligned with OWASP standards. Built CI/CD pipelines with automated security scanning. Automated AWS infrastructure security using Terraform and Ansible. Improved deployment efficiency by 40% through DevSecOps automation initiatives.
Nokia
Sept 2017 โ Dec 2019
Developed secure telecom applications with embedded security controls. Conducted vulnerability assessments and CVE analysis using CVSS methodologies. Implemented network security controls including WAF, DDoS mitigation, and segmentation. Built automation scripts for infrastructure hardening and compliance validation.
Bachelor ยท Computer Science
2010 โ 2013