Summary
Overview
Work History
Education
Skills
Frameworks
Tools/Softwares
Certification
Timeline
Generic

SRIKANTH PALLABOTHU

Principal Security Architect(Certified SAFe® 5 Product Owner/Product Manager), CISSP
Dublin,CA

Summary

Seasoned security professional with over a decade of experience in securing the critical systems and solving complex business problems at scale for customers and workforce.

Overview

13
13
years of professional experience
3
3
Certifications

Work History

Principal Engineer

Wells Fargo
4 2023 - Current
  • As a Principal Engineer, responsible for working with the product managers to define the enterprise target state architectures for Consumer Identity domain such as Identity proofing, Identity verification, Identity resolution and fraud and bot detection to bring the current state capabilities to NIST Identity assurance L3 (IAL3).
  • Developing enterprise level capability framework for standardizing the security compliance during new account opening (NDDA) for prospect customers for authentication and authorization using GenAI capabilities.
  • Led the development of policy manager architecture enabling product teams to test the business rules managing Identity and authentication at the journey level which improved the reaction times to adapt (10-12%) and rapidly test new strategies.
  • Led the design and integration with new fraud solutions like Call Sign, Biocatch and AuthenticID to drive new fraud controls to support intelligent authentication and orchestrating new account opening journeys.
  • Developed target architectures using Banking Product and Platform Architecture (BPPA) model to map business objectives to technical capabilities to understand the current maturity state and drive the product teams achieving interim and target state architectures.
  • Designed the migration for legacy services such as Verify Phone Ownership services integrating with EWS to Prove Identity services to support Non-Wells Fargo customers opening up new account.


Staff Security Architect

PayPal
06.2022 - 04.2023
  • Lead a team of 5+ cloud security professionals responsible for designing, implementing, and managing cloud security architectures, designing and executing secure capabilities and controls for Payment systems, designing Identity and Access Management domains, performing threat modeling at scale, designing security and privacy architecture controls by collaborating with different stakeholders to develop a common security platform enabling developers to consume security by design and security by default principles for AWS and Azure cloud infrastructures.
  • Led the strategy for developing Zero Trust architecture for Data, Identity, network, Application and workload pillars complying with the NIST 800-207 and CISA Zero Trust Maturity models for AWS and Azure cloud architecture.
  • Partnered with the stakeholders to map the transactional flows to identify the current state, discovering protect surface area, network segmentation and defining the policy engine framework under each ZT pillar with cross cutting capabilities like Visibility, Governance, Monitoring across the entire enterprise.
  • Collaborated with cross-functional teams such as privacy controls, compliance and regulators to develop and implement security automation solutions, resulting in a 40% reduction in incident response times (detection and analysis) and a 50% increase in incident detection rates (Containment and Automated detection).

Principal Security Architect

Okta
02.2021 - 06.2022
  • Partnering with external customers and internal business stakeholders to understand and deliver organizational security objectives (OKR's) such as risk assessment reports, threat modeling reports for cloud, API Security and Identity Access Management maturity roadmaps and architecture, enhancing cloud security posture management, driving roadmaps for security architecture for AWS Services adoption.
  • Led multiple Zero Trust assessments, strategy and execution for multiple customers especially from Identity authentication and authorization strategies, application and workload integration architecture for secure authorization, enforcing role based access controls, least privileged models for applications and workloads.
  • Led multiple CIAM engagements with end customers for deploying Okta as a Customer Identity Management managing progressive profiling, Custom consent creation, privacy management, Identity Proofing, Identity verification integrations, data synchronization for consolidation, developing custom workflows for user registration, authentication and risk profiling.

Principal Identity Architect

Optiv Security Inc.
11.2018 - 02.2021
  • Directly involved as Principal in Cyber Security Services of Optiv's Advisory practice, leading design, architecture and implementing Identity governance and access management, Privileged Access Management, ZeroTrust, Device Trust architecture, network architecture, vulnerability assesments.


Sr.Practice Lead

Silicon Staff IT Services
01.2012 - 11.2018
  • Designed and managed the team performing migration strategy and hands on implementor for legacy applications modernization to modernized architecture migrating to cloud, integrating with authentication federation strategies such SSO, SAML 2.0, OAuth 2.0 and OpenID connect, directory migration, building second line of defense teams to create policies, identifying risk acceptance criteria's, Risk Modeling exercises for fortune 100 clients, creating security dashboards for metrics management.

Education

Certificate - CHIEF INFORMATION SECURITY OFFICER (CISO)

Carnegie Mellon University
Pittsburgh, PA
01.2023 - 06.2023

Master of Science - Computer And Information Systems Security

Knowledge Systems Institute
Skokie, IL
01.2013 - 2015.04

Bachelor of Science - Pharmaceutical Sciences

Kakatiya University
India
05.2005 - 2009.04

Skills

Identity&Access Management, Cloud Security Architecture, Application/Product Security, Container Security, API Security, Workload Identity management,Risk Assessments, Threat modeling, Zero Trust, Risk Prioritization, Data Classification, End point vulnerability management, Monitoring, Logging, Incident and Response Management (EDR/XDR), Infosec management, Privacy architecture, Cryptography, Metrics Management, SDLC, DAST, SAST, CASB, CNAPP, Code reviews (Python), custom detection rules, Security Automation (Python)

Security requirements analysis, OAuth/OIDC, code reviews, Asset management, API inventory and API registry management, Continuous access verification and evaluation models, Passwordless Architecture, Device Management, FIDO2, SSO, MFA, Biometric Identity, Passkeys, Privacy Architectures, Compliance (Access reviews)

Frameworks

NIST SP 800-53, NIST SP 800-57, NIST SP 800-63, NIST SP 800-207, NIST CSF, ISO 270001, SOX, SOC2, CIS controls, NIST RMF, SCRM, PCI DSS, PSD2, OCTAVE, FAIR, STRIDE, MITRE ATT&CK, OWASP Top 10, Attack Trees, Security Cards, CARTA Framework, SPIFFE/SPIRE

Tools/Softwares

AWS, Google cloud platform,  Ping, SailPoint, Okta,  AzureAD, CyberArk, Microsoft Defender for endpoint security, Synk, Tenable, Nessus, Salt security, Aqua cloud native Security, Veracode, Checkmarx, Logrhythm, ELK stack, Carbonblack, Crowdstrike Flacon Identity, Jenkins, Terraform, 

Certification

Ping and Okta Identity Certified Professional

Timeline

Certificate - CHIEF INFORMATION SECURITY OFFICER (CISO)

Carnegie Mellon University
01.2023 - 06.2023

CISSP

01-2023

Staff Security Architect

PayPal
06.2022 - 04.2023

Principal Security Architect

Okta
02.2021 - 06.2022

Ping and Okta Identity Certified Professional

11-2019

Principal Identity Architect

Optiv Security Inc.
11.2018 - 02.2021

Microsoft Certified Solutions Expert - Cloud Platform and Infrastructure, Private cloud and Server Infrastructure

09-2016

Master of Science - Computer And Information Systems Security

Knowledge Systems Institute
01.2013 - 2015.04

Sr.Practice Lead

Silicon Staff IT Services
01.2012 - 11.2018

Bachelor of Science - Pharmaceutical Sciences

Kakatiya University
05.2005 - 2009.04

Principal Engineer

Wells Fargo
4 2023 - Current

Similar Profiles

  • PATRICIA M. SCHERER

    PATRICIA M. SCHERERPATRICIA M. SCHERER

    Regional Bank Private Banker II at Wells Fargo Bank / Wells Fargo AdvisorsRegional Bank Private Banker II at Wells Fargo Bank / Wells Fargo Advisors

  • Andrew S. Hollenbach

    Andrew S. HollenbachAndrew S. Hollenbach

    Collateral Valuation Analysis at Wells Fargo Home Mortgage and Wells Fargo Bank NACollateral Valuation Analysis at Wells Fargo Home Mortgage and Wells Fargo Bank NA

  • Laxmikanth Chittampally

    Laxmikanth ChittampallyLaxmikanth Chittampally

    Senior Operational Processor at Wells Fargo India Solution PVT Ltd, Wells FargoSenior Operational Processor at Wells Fargo India Solution PVT Ltd, Wells Fargo

  • Mayank Oberoi

    Mayank OberoiMayank Oberoi

    Financial Accounting Associate/ Alteryx SME at Wells Fargo International Solutions Private LTD (Wells Fargo)Financial Accounting Associate/ Alteryx SME at Wells Fargo International Solutions Private LTD (Wells Fargo)

  • Shion Pattishall

    Shion PattishallShion Pattishall

    Head of Legal Operations Manager and Chief of Staff to CLO at Box, Inc.Head of Legal Operations Manager and Chief of Staff to CLO at Box, Inc.

CREATE PROFILE
SRIKANTH PALLABOTHUPrincipal Security Architect(Certified SAFe® 5 Product Owner/Product Manager), CISSP