Dharsan Ramesh
Verified Expert in Engineering
Security Engineer and Developer
Bengaluru, Karnataka, India
Toptal member since November 27, 2025
Dharsan is a principal security engineer with over eight years of experience in cybersecurity and cloud, software, information, and network security. Recognized for consistent performance, excellence, and contribution to success in the cybersecurity industry, his strengths span security monitoring, threat intelligence, log analysis, incident response, and DevSecOps. Dharsan provides detailed incident reports on security incidents, developing and maintaining an effective security architecture.
Portfolio
Experience
- Microsoft Entra - 10 years
- Kubernetes - 10 years
- Security - 8 years
- Cybersecurity Operations - 8 years
- DevSecOps - 8 years
- OWASP Top 10 - 8 years
- Python 3 - 8 years
- SecOps - 8 years
Preferred Environment
DevSecOps, SecOps, Security
The most amazing...
...projects I've worked on involved wearing multiple hats within security and developing security solutions for many startups.
Work Experience
Principal Security Architect, DevSecOps
JumpCloud
- Defined and drove Secure by Design (SbD) and shift-left methodologies through design, advisory, and cross-functional collaboration to embed security across enterprise architecture, cloud architecture, and application development initiatives.
- Built and managed services, tools, and integrations that automate security controls within CI/CD pipelines.
- Developed automated tooling to recognize attacker tactics, techniques, and procedures (TTPs) and indicators of compromise (IoCs).
- Designed and implemented Entra ID authentication architecture across AWS, Azure, and GCP for unified SSO and identity management.
- Configured conditional access (CA), multifactor authentication (MFA), and device compliance policies in Entra ID to strengthen Zero Trust access controls.
- Integrated Entra ID with Kubernetes via OpenID Connect (OIDC) and workload identity to enable secure, keyless service authentication.
- Automated user lifecycle management and access provisioning using Entra ID, Graph API, and Privileged Identity Management (PIM) for just-in-time (JIT) privilege control.
- Secured multi-cloud Kubernetes clusters using role-based access control (RBAC), network policies, and OPA-based governance for compliance enforcement.
- Implemented Entra-integrated Kubernetes authentication and least-privilege service roles using Identity and Access Management (IAM) and workload identity.
- Built automation pipelines for container image scanning, secrets management, and CI/CD security controls across clusters.
Principal Security Engineer
Exact Payments
- Designed, deployed, and maintained centralized security tools, technologies, and controls to monitor and protect infrastructure and applications.
- Developed automated solutions to recognize attacker tools, tactics, and procedures (TTPs) and indicators of compromise (IoC).
- Handled security detection, incident response, and post-response activities.
Security Architect, DevSecOps
Nanoprecise Sci Corp
- Managed security operations, vulnerability management, attack alerting and monitoring, and security operations center (SOC) activities.
- Conducted mobile, API, and web application penetration tests, performed secure product design reviews, evaluated 3rd-party integrations, and implemented single sign-on (SSO) with identity provider (IdP) and service provider (SP) configurations.
- Implemented security automation for cloud environments (AWS, Azure, GCP), API scanning, server audits and hardening, secure code reviews, API exposure, deployment, and authorization, and load testing for DDoS capability using JMeter.
Senior Cybersecurity Analyst
SecurityHQ
- Conducted penetration testing, managed Docker products and AWS, troubleshot systems, and oversaw security operations, cybersecurity initiatives, Kubernetes deployments, ConnectWise Automate, business continuity planning, and information security.
- Developed computer programming solutions, led incident response and strategic initiatives, and managed Microsoft Azure environments, red teaming exercises, IAM, Group Policy, cyber threat hunting (CTH), and cyber threat intelligence (CTI).
- Guided POC projects, built IT security policies, conducted red team exercises, implemented digital authentication and security awareness programs, managed DLP and vulnerability management, and designed security architectures in Azure DevOps Server.
Technical Solutions Consultant, Security
Aruba Networks
- Managed threat and vulnerability programs, SIEM operations, patch management, endpoint security, and governance while leading DevOps initiatives and team development.
- Delivered security consulting, vulnerability management, SOC 2 compliance, infrastructure security, digital forensics, and application security controls for oil and gas and other cybersecurity initiatives.
- Oversaw risk and compliance (GRC), performed reverse engineering, and implemented automation with PowerShell, Terraform, and Jenkins as a Certified Information Security Manager (CISM).
Technical Consulting Engineer (TCE), Security
Cisco
- Directed data loss prevention (DLP), security architecture design, DevOps practices, and team development initiatives.
- Implemented endpoint security, PowerShell automation, Jenkins pipelines, and digital forensics capabilities.
- Performed troubleshooting and implemented computer programming security controls.
Network Consulting Engineer
Pinelabs
- Drove enterprise security initiatives, including endpoint protection, mobile device management, Google Workspace security configurations, threat intelligence, and data leak protection.
- Applied industry security frameworks and standards, including the NIST Cybersecurity Framework, CIS Controls, the OWASP Top 10, and the MITRE ATT&CK framework for tactics, techniques, and procedures.
- Conducted internal audits and IT security training, and designed, implemented, and maintained security policies, procedures, and process documentation.
Experience
Security Information and Event Management (SIEM) Automation
Education
Master's Degree in Cybersecurity and Software Systems
University of British Columbia (UBC) - Vancouver, Canada
Bachelor's Degree in Computer Engineering
Anna University - Chennai, India
Certifications
Professional Cloud Security Engineer Certification
Google Cloud
Microsoft Certified: Cybersecurity Architect Expert
Microsoft
AWS Certified Security – Specialty
AWS
Skills
Tools
Terraform, AWS IAM, ArcSight
Languages
Python 3, Go
Paradigms
DevSecOps, Azure DevOps, Security Orchestration, Automation, and Response (SOAR)
Platforms
Kubernetes, Azure, Google Cloud Platform (GCP)
Other
SecOps, Security, Cybersecurity Operations, Certified Ethical Hacker (CEH), OWASP Top 10, PSIRT, Microsoft Entra, CI/CD Pipelines, VAPT, Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), MDR, Incident Response, Security Audits, Cyber Threat Hunting, Single Sign-on (SSO), Threat Intelligence, Machine Learning, Large Language Model Operations (LLMOps), SAIF, AWS Cloud Security, Computer Engineering, Cloud Security, Secure Software Development Lifecycle (SSDLC), Software System Architecture Development, Security Architecture, Application Security Posture Management (ASPM), Kubernetes Security, IT Security, Incident Handling, Threat Analytics, Reverse Engineering, Malware Analysis, Infrastructure Security, SIEM, SOC 2, Vulnerability Management, Network Security, Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Host-based Intrusion Detection System (HIDS), Networking, Cloud Networking, IPsec
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring