π +91-6376486690 Β |Β π Jaipur, Rajasthan, India
π tharvid.in β’ LinkedIn β’ GitHub
βοΈ stharvid@gmail.com
I'm a Senior Security Engineer with over 4 years of professional experience, currently working at Porch Group.
My expertise spans Cloud Security, DevSecOps, Incident Response, Security Automation, SOC Implementation, and Compliance Alignment.
I specialize in securing multi-cloud environments (AWS, GCP, Azure), building scalable security automation workflows, and enabling organizations to achieve faster and more reliable threat detection and response through DevSecOps and SOAR practices.
Nov 2025 β Present
Security Engineer β Jun 2024 β Nov 2025
- Developed and maintained DevSecOps pipelines integrating SAST, IaC scanning, secrets detection, container scanning, DAST, API fuzzing, and dependency scanning.
- Automated vulnerability triage and reporting for 500+ repositories across AWS, GCP, and Azure, integrating with Jira and ASPM tools.
- Implemented a SIEM with 50+ data sources, creating custom parsers, correlation rules, and SOAR response workflows for faster detection and remediation.
- Deployed and managed 10+ Kubernetes clusters into a KSPM platform with runtime protection and workload visibility.
- Automated cloud and infrastructure processes using Python, AWS Lambda, and Google Cloud Functions.
- Conducted CIS control gap assessments to ensure PCI-DSS compliance across 18 domains.
- Collaborated with business leaders and security stakeholders across multiple subsidiaries to close vulnerabilities and standardize policy enforcement.
Aug 2021 β Jun 2024
- Deployed and managed AWS-native security services β CloudTrail, Config, Inspector, Detective, Macie, GuardDuty, and Security Hub β for continuous monitoring and compliance.
- Integrated DevSecOps controls (SAST, SCA, IaC scanning, DAST, and Container scanning) directly into CI/CD pipelines.
- Designed and enforced security policies across EDR, CASB, MDM, and IAM with RBAC, SSO, and Conditional Access in Google Workspace, AWS, and GCP.
- Created custom internal security tools β including phishing simulation, TPRM automation, and DNS filtering β to improve process efficiency.
- Led incident response and vulnerability management workflows to strengthen defensive posture.
- Conducted penetration testing and infrastructure risk assessments across production environments.
Feb 2021 β Jun 2021
- Developed PoCs focused on M365 Security, Azure AD, and Okta integration for identity and access management.
- Built Azure Monitor and Dynatrace dashboards for proactive alerting and performance security insights.
- Strengthened email threat defense using Microsoft Defender for Office 365, improving phishing resilience.
- Demonstrated an early passion for cloud and identity security through independent project ownership.
Bachelor of Technology (B.Tech) β Computer Science & Engineering
π Government Engineering College, Ajmer | GPA: 7.94 / 10
2018 β 2022
Technologies: Cloud Security β’ DevSecOps β’ Security Automation β’ SOC Implementation β’ Incident Response β’ Threat Detection β’ SIEM β’ Pen Testing β’ IAM β’ DLP β’ ASPM β’ CSPM β’ SOAR
Tools: AWS β’ GCP β’ Azure β’ Python β’ Docker β’ Jenkins β’ Git β’ Kubernetes β’ Burp Suite β’ Trivy β’ Semgrep β’ Checkov β’ Gitleaks β’ OWASP ZAP β’ CrowdStrike β’ NetSkope β’ Mimecast β’ Cloudflare β’ CheckPoint β’ Coralogix β’ Cisco Meraki β’ DNSFilter β’ Qualys β’ Rapid7 β’ Chronicle β’ Okta β’ Azure AD
Frameworks/Standards: CIS Critical Security Controls β’ PCI-DSS β’ ISO/IEC 27001
Built an enterprise-grade SOAR workflow integrating CheckPoint, Entra ID, Okta, Mimecast, Jira, ServiceDesk, PagerDuty, CrowdStrike XDR, Exchange Online, Google Workspace, AWS, and GenAI-based analysis and enrichment to automate incident response actions triggered by SIEM detections across multiple subsidiaries, reducing MTTR significantly.
Implemented an open-source DevSecOps pipeline using Jenkins, integrating Semgrep, Checkov, Trivy, Gitleaks, OWASP ZAP, and AWS ECR scanning with automated reporting to Jira and DefectDojo for vulnerability management.
Developed a phishing simulation platform using Gophish hosted on AWS EC2 with Amazon SES for realistic phishing campaigns, boosting organization-wide email security awareness.
- π‘οΈ CompTIA Security+
- βοΈ AWS Certified Security β Specialty
- π Google Cloud Professional Cloud Security Engineer
- π³ Docker Foundations Professional Certificate
- βοΈ AWS Certified Cloud Practitioner
- π Microsoft 365 Certified: Security Administrator Associate
- English
- Hindi
β¨ Letβs connect and secure the world together! β¨