I work in defensive security with ownership over enterprise network security posture across large, heterogeneous environments. My focus is on keeping infrastructure resilient under operational and regulatory pressure, where scale, availability, and risk reduction must be balanced continuously.
I lead and contribute to security hardening, continuous compliance, and risk-based vulnerability management across thousands of network devices in ISO 27001 and PCI DSS environments. This includes defining and enforcing security baselines, identifying systemic failure points, and driving automation that reduces manual effort while improving consistency and coverage.
My background includes early work in digital forensics with the Gurugram Police, supporting real-world cybercrime investigations. That experience informs how I approach defense today: prioritize realistic threat paths, assume imperfect conditions, and design controls that survive human error and operational constraints.
I work across diverse network infrastructure and security platforms, using NSPM and vulnerability management tooling to maintain audit readiness, track remediation at scale, and provide clear visibility into security posture. A core part of my role is translating security requirements into repeatable, operationally viable controls.
This site documents applied security work, operational decisions, and lessons learned from defending enterprise infrastructure at scale.