vigneshwaran Ramanathan

• Lead end-to-end cloud security architecture (HPE Private cloud and Azure/AWS) initiatives, including infrastructure
design, network architecture, IAM, data strategy, and automation.
• Evaluate existing on-premises environments and create cloud migration strategies using re-host, re-platform, or re
architect approaches.
• Collaborate with cross-functional teams (development, operations, business) to translate requirements into cloud
architecture.
• Designed and managed hybrid cloud orchestration using HPE Morpheus for AWS, Azure, and on-prem environments.
Automated infrastructure provisioning, scaling, and lifecycle management with Morpheus blueprints and workflows.
• Working closely with Cloud Engineers (who implement the design), DevOps teams (on CI/CD pipeline design), and
Developers to guide the implementation of the designed architecture.
• Conduct architecture reviews and provide technical leadership throughout cloud project lifecycles.
• Integrated SABSA security architecture principles across enterprise and cloud environments (AWS, Azure, HPE).
• Prepare architectural diagrams, documentation, and implementation guidelines for teams and Cloud readiness
assessments and plan migrations.
• Perform daily monitoring of cloud workloads for performance, utilization, and cost trends.
• Oversight of compliance with ISO 27001, NIST CSF, SOC and sector-specific regulations, including internal audit
management.
• Develop dashboards, reports, and KPIs for senior management and auditors.
• Developing the enterprise security transformation programs, with focus on DevSecOps, cloud security automation, and
secure software development lifecycle (SSDLC).
• Maintaining multiple Cloud (Azure, AWS) environment Cloud security posture management using the tool WIZ.
• Leading the Threat modeling, Threat intelligence, Pentest, Incident response, and vulnerability management teams
(Tenable SC) to mitigate and proactively manage security risks.
• Developing and enforced governance policies for AI projects, ensuring alignment with industry standards and
regulatory frameworks.

• Participate in sprint planning/grooming sessions to align cloud requirements with development milestones.
• Evaluate new cloud services, updates, and features and assess their applicability to ongoing projects.
• Coordinate with network teams for VPC/VNet design, connectivity, and routing requirements.
• Analyze monitoring dashboards and alerts to identify performance bottlenecks, failures, or optimization
opportunities
• Responsible to change the culture from DevOps to DevSecOps for the STG Labs portfolio companies and acting as a
Subject Matter Expert on Information Security controls for the project, business and application development teams
and help interpret security requirements into business requirements.
• Developed an inhouse tool to automate the SCA, SAST and DAST setup with Power Bi, Jenkins to showcase the
security posture of portfolio companies.
• Configured AWS firewall rules to avoid false positive for the product specific.
• Automated the infra creation/changes using CloudFormation and terraform and avoided 65 % manual work in AWS
infrastructure.
• Aligned the AWS infrastructure with NIST framework.
• Managed the team to support the Operations team in the processing of all information security incidents, especially
on Incident Responses.
• Operate and/or provide guidance to portfolio Operations teams on all security systems within portfolio companies
information systems: Amazon Guard Duty, Amazon Inspector, AWS WAF, network and system firewalls, anti-virus,
security monitoring and alerting tools.
• Conducted periodic internal audit and assisted the CISO and the information security team in continuous
improvement of Information Security Policies and Procedures based on ISO 27001 principles to obtain ISO 27001
certification.
• Interaction with the new customers to elaborate the security model of STG Labs

• Managed the Cyber Security Cloud Operation Excellence Team.
• Handled the SOC team partnered with Microsoft (Azure Defender, Sentinel, Azure Security center)
• Consulting and security Architect design/assessment especially for Banking sectors.
• Consultation and Deployed DevSecOps as a Service model.
• Performed Cloud Audit especially for Cloud Environment. (AWS, Azure)
• Presales activities/Proposal creation for DevSecOps, Security Assessment Projects.

• Leaded the Cloud and Development Security Operation team. (Honeywell OpenAdr-Energy sector)
• Consistent development of openadr java application performance and security.
◦ Error tracking and Analysis using
Aws X-ray and Dynatrace for java application.
• Log management using ELK + Azure monitor and SIEM using azure sentinel.
• Managing/Troubleshooting cases from Tools like Rapid 7/Qualys scan reports, SIEM incidents tickets pool
and SAST/DAST reported.
• Troubleshooting the prior cases for Performance, Build, DB & web, Application issues.
• Creating appropriate Penetration Test cases for web application/devices.
• Conducted internal audit & OS hardening using CIS benchmark periodically.
• Maintain Resources under compliances & Azure security center standards.
• Creating Azure policies to meet the security standards for the resources.
• Hybrid connection using azure encrypted VPN gateway for critical on premises data.
• Cloud cost minimization and pursuing azure/aws advisor recommendation keenly.
• Integrated Power BI/sawmill with MariaDb for analytics.
• Consistent development of openadr java application performance and security.
• Error and Aws X-ray
• Performing the migration from on-premises/Azure to Aws.

• Managed AWS and Azure resources with focus on application performance, monitoring, backup, and security.
• Designed and implemented cloud security solutions for banking projects (Rackspace, AWS, Azure).
• Regularly verified Nessus scan results, resolved vulnerabilities, and addressed security flaws beyond automated pen
test detection.
• Planned and executed cloud infrastructure security design for new projects using Azure Templates and
CloudFormation.
• Performed load/performance optimization for databases (MySQL, MongoDB, PostgreSQL, Cassandra).
• Maintained CI/CD pipelines with Jenkins, Git, and SVN across 40+ projects; assisted developers with code, build, and
automation issues Configured and maintained 30+ microservices with via Supervisord.
• Automated tasks and system performance improvements through Bash/Python scripting, AMI customization, and
release packaging.
• Ensured environment updates, production readiness, and compatibility testing for applications.
• Documented critical issues/solutions in Atlassian Wiki; guided team members and conducted daily stand-ups to
resolve blockers.

• Linux, Solaris Setup Planning, migration and Security hardening.
• Configuring/Managing Web Servers (nginx mainly) HA.
• Writing Bash/python Scripts as per project requirements and administrative tasks.
• Trouble shooting and maintain QIP/INFOBLOX, Linux, Solaris servers.
• Handling DNS/DHCP MACD Incidents in AIX, Linux servers
• IPAM and DNS/DHCP (Infoblox) support for more than 30 customers like IBM Global, HESS, LENOVO, HILTON,
• RCA and report generation for critical Tickets.
• Attending periodical Meetings with Customers to ensure the service quality.
• Performed as a Q manager to ensure the SLA of the Tickets.

• Maintenance and troubleshooting Linux Servers (Redhat, Cent Os, Ubuntu) in datacenter.
• Maintained Centralized login NIS for Linux servers.
• Monitoring System Performance of Virtual memory, System events, Swapping, Disk utilization, CPU utilization by
Scripts.
• Server Setup Planning and deployment using Base hardened OS image.
• Maintaining Tape Backup for all Servers using NetVault Software.
• Maintaining Novell ZenWork Asset Management.