Vijay Potluri, Developer in Atlanta, GA, United States
Vijay is available for hire
Hire Vijay

Vijay Potluri

Verified Expert  in Engineering

Cybersecurity Engineer and Developer

Location
Atlanta, GA, United States
Toptal Member Since
December 14, 2021

Vijay has been building enterprise-class software products at cloud-scale for almost 20 years. He specializes in leading and building cloud infrastructure and security architecture to deliver secure, scalable, and stable cloud services and other solutions. Vijay has worked for Citrix, Apptio, Digital Fuel, VMware, McAfee, and Visa. In addition to his passion for cloud security, Vijay brings leadership to the entire software development lifecycle and SaaS operations.

Cloud SecuritySecurity ArchitectureData ModelingThreat AnalyticsUnified Threat Management (UTM)Vulnerability ManagementCloudIntegrationCloud ArchitectureWeb SecurityApplication SecurityAmazon RDSData Loss Prevention (DLP)DatabasesSQL

Portfolio

Citrix
SOC 2, NIST, GDPR, ISO 27001, ISO 27002, Databases, XenApp, Citrix XenApp...
Apptio
Security Architecture, Oracle, Java, Hibernate, JavaScript, Puppet, Shell...
Digital Fuel
Java, JavaScript, Oracle, Hibernate, Amazon Web Services (AWS), Amazon EC2...

Experience

Databases - 10 yearsSecurity Architecture - 10 yearsOracle - 10 yearsCloud Security - 10 yearsApplication Security - 5 yearsWeb Security - 5 yearsNetworking - 5 years

Availability

Part-time

Preferred Environment

MacOS

The most amazing...

...project I've led was a migration from a private cloud to AWS.

Work Experience

Cloud Security Architect

2020 - 2021
Citrix
  • Strengthened the company's security posture by collaborating with the red and blue product security teams to reduce the attack surface.
  • Collaborated with the cloud operations team to harden the infrastructure.
  • Worked with the engineering team to bake security into the product design.
  • Assisted customers in migrating from on-premise to cloud infrastructure and alleviated their concerns about data location, data access, and security threats.
Technologies: SOC 2, NIST, GDPR, ISO 27001, ISO 27002, Databases, XenApp, Citrix XenApp, Azure, Azure Cosmos DB, OWASP Top 10, Amazon Web Services (AWS), Application Security, Web Applications, Development, Software Development Lifecycle (SDLC), IT Security, Policy Development, Fintech Consultant

Head of Cloud Security

2018 - 2020
Apptio
  • Migrated infrastructure from a private to a public cloud.
  • Designed security with in-depth defense concepts, multiple tiers from IPS, and a web gateway, application server, and database server.
  • Conceptualized and drove the upgrade from Alert Logic IDS to Palo Alto IPS.
Technologies: Security Architecture, Oracle, Java, Hibernate, JavaScript, Puppet, Shell, Ansible, Python, MySQL, Palo Alto Networks, Azure, Intrusion Prevention Systems (IPS), Firewalls, Kubernetes, Amazon EKS, Amazon Elastic Container Service (Amazon ECS), Amazon Web Services (AWS), Linux, SIEM, Site Reliability Engineering (SRE), Software Development Lifecycle (SDLC), Application Security, Web Applications, Cloud Security, Leadership, IT Management, Security Policies & Procedures, Financial Services

Head of Security Engineering

2016 - 2018
Digital Fuel
  • Improved security by incorporating OWASP principles and resolved gaps found in SAST and DAST analysis tools.
  • Reduced cloud infrastructure costs by 78% while migrating from a fixed asset plan to a flexible asset plan.
  • Cordoned off the infrastructure with Cisco ASA firewalls.
  • Increased resiliency by successfully testing disaster recovery at a geographically distant data center.
Technologies: Java, JavaScript, Oracle, Hibernate, Amazon Web Services (AWS), Amazon EC2, Amazon RDS, Amazon CloudWatch, Amazon S3 (AWS S3), AWS ALB, Web Application Firewall (WAF), SQL Injection Protection, Malware Removal, DDoS, IDS/IPS, ASA Firewalls, Cisco, Intrusion Detection Systems (IDS), Identity & Access Management (IAM), Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Penetration Testing, Threat Modeling, OWASP, Nimble, Software Development Lifecycle (SDLC), Web Applications, Leadership, Business Services

Security Manager

2006 - 2016
VMware
  • Led the vRealize Enterprise product to increase customer satisfaction and integrated it with the vRealize Cloud product for seamless public and private cloud computing.
  • Managed development teams and mentored offshore teams in Armenia, Bulgaria, and India.
  • Reduced costs by scaling CapacityIQ in PostgreSQL to handle 8,000 objects per VM, scaled up the Capacity Planner infrastructure 40x (from 100 to 4,000 customers), and improved performance with fine-grained transactions in vCenter products.
  • Conceptualized version 1.0 of vRealize Cloud from scratch. It heralded a new era of cost visibility in cloud computing with the fastest time to value—from installation to insights in less than one hour.
  • Drove the release of vCenter Operations, the management business unit's flagship product.
  • Integrated the in-house CapacityIQ product with the acquired Alive product for a seamless release of vCenter Operations Manager.
Technologies: VMware, VMware vCenter, VMware vCloud, VMware ESXi, Oracle, SQL, Data Modeling, Erwin, Visio, PostgreSQL, HP Fortify, Static Application Security Testing (SAST)

Lead Architect

2003 - 2006
McAfee
  • Played a pivotal role in scaling up the consumer database by 200%, from less than five million reads per second to 15 million reads per second.
  • Redesigned the auto-renewal process to run 10x times faster, thus generating more revenue than the entire consumer website.
  • Coordinated design and development projects with offshore teams in Bangalore, India.
  • Designed new payment methods, such as bank transfers and Switch/Solo cards for the consumer database.
  • Coded an alerts module to monitor sales volume and transactions by product and region.
  • Tuned the stored procedures to increase concurrency and reduce deadlocks, added missing indexes, and removed redundant and unused indexes to improve performance.
  • Developed standards and methods to streamline cross-functional development.
Technologies: .NET, SQL Server 2000, Databases, SQL Server Integration Services (SSIS), Crystal Reports, BI Reports

Director of Data Warehousing

2002 - 2003
Visa
  • Led the data warehousing solutions team to develop applications using MicroStrategy, Cognos, Crystal, VB, ASP, MTS, and SQL Server.
  • Enabled Visa and banks to track and measure the success of the Visa Extras rewards program.
  • Developed the MicroStrategy architecture for Visa Extras metrics reports and designed attributes, facts, metrics, filters, prompts, hierarchies, drill maps, and cubes.
  • Pioneered Verified by Visa (VbV) reports, allowing Visa to do exception analysis and performance reporting, which reduced exceptions by 5%. I also designed MicroStrategy reports.
  • Launched Commercial Card Enhanced Data (CCED) for Visa to monitor the validity of sales tax exempt transactions. The solution highlighted 100% of merchants over thresholds.
  • Collaborated with commercial solutions in launching Visa Information Source (VIS) to increase commercial card market share by 1%.
  • Spearheaded vendor relationships with Exodus for data center operations.
Technologies: MicroStrategy, Crystal Reports, IBM Cognos, C#, VB, SQL, Oracle, IBM Db2, Visual Basic

Database Architect

2000 - 2002
Noosh
  • Designed and architected one of the earliest B2B information services in the industry. The service was built using Java, WebLogic, and Oracle.
  • Worked with the development team on performance tuning of database queries.
  • Modified the business logic to reduce the load on infrastructure by coordinating with the development and operations teams.
Technologies: Oracle, SANs, NAS Servers, Web Logic, Firewalls, Failover Solutions

Migration of Infrastructure from Private Cloud to AWS

Designed, led, and executed the project to migrate the entire infrastructure from a private cloud vendor to AWS. Except for the hardware, the entire infrastructure was seamlessly migrated. Some components needed to be redesigned. For example, we migrated from running Oracle Server to Oracle RDS. Some components had to be rebuilt from scratch, such as application servers, and some components were replaced entirely, such as Alert Logic IDS with Palo Alto IPS.

VMware Product Development

Full List of Accomplishments:
• Reduced costs by scaling Capacity IQ (CIQ) and PostgreSQL to handle 8,000 objects per VM.
• Scaled up Capacity Planner infrastructure 40x, from 100 to 4,000 customers.
• Improved performance with fine-grained transactions in the vCenter product.
• Decreased disk reads with innovative path tracking for object relationships in the CIQ product.
• Increased performance by implementing incremental time rollups in the CIQ product.
• Added resiliency with database partitioning in CP and Chargeback products.
• Solved concurrency issues in CP Collector and Chargeback products.
• Improved availability with automatic monitoring of the CP production infrastructure.

Security Champion for vRealize Product Suite

Architected AWS Security and collaborated with the development team to design security from the ground up. Our work improved security by identifying SQL injections and XSS, XSRF, and buffer overflow vulnerabilities. We also conducted static code analysis and vulnerability scans for the AWS environment.

Languages

SQL, Java, JavaScript, C#, VB, Python, Visual Basic

Platforms

Amazon Web Services (AWS), Oracle, Amazon EC2, AWS ALB, Azure, Google Cloud Platform (GCP), Linux, OpenAM, Kubernetes

Storage

Databases, PostgreSQL, NAS Servers, Amazon S3 (AWS S3), SQL Injection Protection, SQL Server 2000, MySQL, Azure Cosmos DB, SQL Server Integration Services (SSIS), IBM Db2

Other

Web Security, Application Security, Cloud Security, Security Architecture, Amazon RDS, Data Modeling, SANs, OWASP, OWASP Top 10, SIEM, Web Applications, Software Development Lifecycle (SDLC), Security Design, Architecture, Threat Analytics, Data Loss Prevention (DLP), Unified Threat Management (UTM), Vulnerability Management, Security Audits, Cloud, Integration, Cloud Architecture, Solution Architecture, Leadership, IT Security, IT Management, CISSP, Networking, SOC 2, NIST, GDPR, Palo Alto Networks, VMware vCenter, VMware vCloud, VMware ESXi, Web Application Firewall (WAF), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Threat Modeling, Firewalls, Identity & Access Management (IAM), Static Application Security Testing (SAST), Site Reliability Engineering (SRE), APIs, Policy Development, Security Policies & Procedures, Financial Services, Fintech Consultant, Business Services, Programming, Algorithms, Partitioning, MicroStrategy, ISO 27001, ISO 27002, Malware Removal, IDS/IPS, XenApp, ASA Firewalls, Cisco, Dynamic Application Security Testing (DAST), BI Reports, Web Logic, Failover Solutions, Nimble, Development

Frameworks

Hibernate, .NET

Tools

Amazon CloudWatch, VMware, Amazon Elastic Container Service (Amazon ECS), Erwin, Visio, HP Fortify, SonarQube, Ab Initio, Crystal Reports, IBM Cognos, Puppet, Shell, Ansible, Citrix XenApp, Amazon EKS

Paradigms

Penetration Testing, DDoS

Industry Expertise

Banking & Finance

Libraries/APIs

Highcharts

1990 - 1993

Master's Degree in Computer Science

Bradley University - Peoria, IL, USA

JANUARY 2021 - DECEMBER 2023

Certified Cloud Security Professional (CCSP)

ISC2

JULY 2020 - JUNE 2023

Certified Information System Security Professional (CISSP)

ISC2

Collaboration That Works

How to Work with Toptal

Toptal matches you directly with global industry experts from our network in hours—not weeks or months.

1

Share your needs

Discuss your requirements and refine your scope in a call with a Toptal domain expert.
2

Choose your talent

Get a short list of expertly matched talent within 24 hours to review, interview, and choose from.
3

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring