Subbu Somasundaram, Developer in Toronto, ON, Canada
Subbu is available for hire
Hire Subbu

Subbu Somasundaram

Verified Expert  in Engineering

DevSecOps and Cloud Architect Developer

Location
Toronto, ON, Canada
Toptal Member Since
December 12, 2022

Subbu is a subject matter expert in information security and has over 20 years of information technology experience. He has assisted large enterprise customers in the banking, telecommunication, and eCommerce sectors with security transformation, DevSecOps, security architecture, and implementations. Subbu's security expertise includes AWS, GCP Cloud, IAM, enterprise security, data protection, and application security and compliance.

Data ProtectionCloud SecurityInformation SecurityApplication SecurityWeb SecurityIdentity & Access Management (IAM)SecurityDevSecOpsAmazon Web Services (AWS)AWS IAMDatabase SecurityGoogle Cloud Platform (GCP)AWS CloudFormationPythonNode.jsNFCCloud Security Framework

Portfolio

Amazon Web Services (AWS)
Amazon Web Services (AWS), Cloud Security, AWS IAM...
Scotiabank
Google Cloud Platform (GCP), Azure, Application Security...
Amazon Canada
Amazon Web Services (AWS), Cloud Security, Amazon CloudHSM, Data Protection...

Experience

Cloud Security - 12 yearsApplication Security - 11 yearsDevSecOps - 8 yearsIdentity & Access Management (IAM) - 8 yearsCompliance - 7 yearsAmazon Web Services (AWS) - 6 yearsGoogle Cloud Platform (GCP) - 2 yearsSOC 2 - 2 years

Availability

Part-time

Preferred Environment

Amazon Web Services (AWS), Google Cloud Platform (GCP), Web Security, Compliance, SOC 2, HITRUST Certification, Application Security, Cloud Security, Security Governance, PCI DSS

The most amazing...

...enterprise project I led was a multi-account AWS environment to host 200+ applications with multiple compliance obligations for a DevSecOps operating model.

Work Experience

Senior Category Leader: Identity and DevSecOps

2018 - 2022
Amazon Web Services (AWS)
  • Received the "One Team Award" for enabling a customer to be successful in AWS Cloud.
  • Received the "Silent Hero Award" for contributions to successful customer engagements and onboarding to AWS Cloud.
  • Received the "Tres Comas Club Leadership Award" for building new ideas and thought leadership for customers.
  • Presented security, identity, and DevSecOps topics at multiple public events and conferences.
Technologies: Amazon Web Services (AWS), Cloud Security, AWS IAM, Identity & Access Management (IAM), DevSecOps, Security Governance, Node.js, React, AWS CloudFormation, PCI DSS, HIPAA Compliance, HITRUST Certification, Data Protection, Web Application Firewall (WAF), Security Analysis, Architecture

Lead Cloud Security Archiect

2017 - 2017
Scotiabank
  • Enabled Google Cloud Security Foundations to move applications in Google Cloud. For confidentiality reasons, I cannot share more information about the app here.
  • Enabled Azure Identity Access Management (IAM) for cloud access.
  • Delivered security solutions for big data-based applications in GCP.
Technologies: Google Cloud Platform (GCP), Azure, Application Security, Identity & Access Management (IAM), Data Protection, Security Analysis, Architecture

Security Archiect

2016 - 2017
Amazon Canada
  • Assisted clients in enabling cloud security, security automation, and DevSecOps.
  • Set up AWS CloudHSM for key management.
  • Assisted customers with Identity and Access Management architecture.
Technologies: Amazon Web Services (AWS), Cloud Security, Amazon CloudHSM, Data Protection, HIPAA Compliance, Security Analysis, Architecture

Information Security Officer

2015 - 2016
BMO Bank of Montreal
  • Managed the security and compliance for the credit and debit card applications portfolio. Collaborated with portfolio personnel, stakeholders, and senior management to identify information security-related risks and controls.
  • Provided information security requirements advice and counsel to portfolio personnel, project teams, and the business, ensuring alignment with IS processes and solutions.
  • Consolidated, interpreted, and reported key portfolio information security risks and trends.
  • Managed and facilitated Information Security Assessments (ISA) throughout the project lifecycle, ensuring key risks were highlighted and controls identified and implemented to mitigate risk. Performed and reviewed static and dynamic code analysis.
  • Prepared and enabled the PCI DSS for applications.
Technologies: Application Security, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), PCI DSS, Mastercard, Data Protection, Web Application Firewall (WAF), Security Analysis, Architecture

Security Consultant: Application Protocol Research

2011 - 2015
TELUS
  • Completed application protocol research for 500+ applications and protocols in a laboratory environment.
  • Performed reverse engineering for various applications and communication protocols.
  • Wrote security research reports and detection patterns, techniques, and signatures for security devices.
Technologies: Security Analysis, Security, Research, Malware Analysis, Application Security, Web Application Firewall (WAF), Palo Alto Networks, Data Protection

Cloud Migration and Security Operations

I delivered cloud migration projects for large enterprise customers during an 8-month project to build a multi-account AWS environment to host 100+ applications.

I enabled a cloud environment set up using AWS Landing Zone to ensure the account and environment have a consistent set up. I then helped set up security controls and operations capabilities to ensure safe and smooth operations of the cloud.

Cloud KPIs were set up with well-architect pillars and the Cloud Adoption Framework. Once the application was moved to AWS cloud, it was measured against the KPIs for successful implementation. The cloud worked as expected, and applications were then moved to the cloud by validating against the KPIs.

Tools

AWS IAM, AWS CloudFormation

Paradigms

DevSecOps, HIPAA Compliance

Platforms

Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure

Storage

Database Security

Other

Web Security, Compliance, SOC 2, HITRUST Certification, Application Security, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Cloud Security, Security Governance, Research, Identity & Access Management (IAM), Information Security, AWS Cloud Architecture, Security Analysis, Web Application Firewall (WAF), PCI DSS, Data Protection, Architecture, Security, Near-field Communication (NFC), Malware Analysis, Palo Alto Networks, Amazon CloudHSM, Mastercard

Languages

Python

Libraries/APIs

Node.js, React

2009 - 2011

Master's Degree in Computer Science

Dalhousie University - Halifax, Nova Scotia, Canada

JANUARY 2019 - PRESENT

AWS Certified Cloud Practitioner

AWS

MAY 2016 - MAY 2025

CISSP

ISC2

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring