Abhijeet Ramteke

Rolled out account owner tagging and owner detail mapping for 1300+ AWS accounts, enabling direct security alert
communication.
Devised and implemented the entire patching strategy for Azure across all subscriptions, including baseline design
and rollout.
Automated IAM credential expiration alerting for 1300+ AWS accounts using Lambda and CloudWatch, drastically
reducing stale IAM key usage.
Built a serverless Lambda automation to extract failed Security Hub controls and notify respective owners across
1400+ accounts via event-driven notifications.
Developed CI/CD pipelines for Lambda deployments, integrating with Git workflows for automated remediation
workflows.
Led a security task force for 8 months, successfully raising AWS Security Hub compliance scores through targeted
remediation campaigns.
Acted as the automation lead for SecOps team, responsible for all client-facing security automation workflows.
Performed enterprise-wide agent installation and configuration for CrowdStrike, Qualys, and SSM across multiple OS
platforms:
Amazon Linux 2 & 2023, RHEL, Ubuntu, SUSE, Windows
Hardened EC2 patching strategy using severity tagging, patch groups, and CloudWatch automation.
Created a Python-based bulk notification automation for monthly security communication across 1400+ AWS
accounts.
Handled M2C (Move-to-Cloud) transitions, migrating control tower responsibilities and security ownership from on
prem to AWS STLA-GLZ.
Spearheaded SCP reviews and new policy designs, helping enforce org-level guardrails and least privilege across the
AWS org.

Configured and monitored AWS services like CloudTrail, GuardDuty, Config, and IAM policies.
Integrated Wazuh SIEM for real-time alerting, detection, and compliance reporting.
Managed AWS KMS, S3 encryption, and PCI-DSS/HIPAA compliance initiatives.
Led CyberArk PAS deployment, reducing unauthorized access incidents significantly.
Defined and enforced IAM and security group best practices across project environments.
Developed custom Lambda functions for incident alerting and policy violation monitoring.
Collaborated with SOC team for real-time triage and incident escalations.
Assisted in onboarding new business units into AWS Org with baseline security guardrails.
Built internal documentation for IAM provisioning and CloudTrail analysis procedures.
Performed periodic audits of IAM users and roles to align with least privilege principle.
Configured and monitored AWS services like CloudTrail, GuardDuty, Config, and IAM policies.
Integrated Wazuh SIEM for real-time alerting, detection, and compliance reporting.
Managed AWS KMS, S3 encryption, and PCI-DSS/HIPAA compliance initiatives.
Led CyberArk PAS deployment, reducing unauthorized access incidents significantly.
Defined and enforced IAM and security group best practices across project environments.

Conducted comprehensive risk assessments, implemented IAM policies, and enforced PCI-DSS and HIPAA
compliance.
Performed vulnerability assessments, identified weaknesses, and defined remediation actions to enhance security
posture.
Configured security groups, firewalls, and network ACLs to safeguard cloud infrastructure with strict access control.
Designed and enforced IAM policies based on least privilege principles, optimizing identity and access management.
Developed and executed incident response plans, conducting investigations and ensuring operational security and
resilience.