20 January 2020
The digital environment is constantly changing and businesses are now adopting hybrid and multi-cloud solutions to be more flexible and scalable. However, these opportunities come with great security risks that require solutions that are more complex and a sound knowledge of cloud computing. Having more than ten years of experience in IT, and focusing on DevOps, cybersecurity, and privileged access management, Sri Kanth Mandru has become one of the key personalities who can solve these problems. Mandru’s career is a list of achievements that have revolutionized the way organizations think about cloud security.
Among the achievements, it is possible to list the implementation of security activities into the DevOps cycle, which is called DevSecOps. He has been able to address some of the security issues and implement security solutions at the right time before they affect deployment. His leadership in using the automated security testing tools like SAST and DAST has revolutionized the way teams approach security across the CI/CD process.
In the realm of secrets management, He has pioneered the use of HashiCorp Vault to centralize and secure sensitive information. His efforts in integrating Vault with CI/CD tools for automated secrets management have significantly reduced the risk of credential exposure and misuse, safeguarding critical data and applications.
His expertise also extends to comprehensive cybersecurity frameworks for hybrid and multi-cloud environments. His strategic initiatives include deploying a unified Security Information and Event Management (SIEM) system that consolidates logs from various cloud services for enhanced threat detection and response. This framework has been crucial in protecting data and applications across diverse platforms. Another significant area of Mandru’s work is endpoint privilege management. By implementing CyberArk Endpoint Privilege Management (EPM), he has established policies for least privilege access, application control, and privilege elevation, which have effectively minimized the attack surface and reduced the risk of malware and ransomware attacks.
In the domain of Privileged Access Management (PAM), Mandru’s use of CyberArk’s Password Vault Web Access Portal has set new standards for managing and securing privileged accounts. His design of a just-in-time (JIT) access policy and integration with SIEM solutions has enhanced the ability to monitor and respond to privileged account activities in real time.
His insights into hybrid and multi-cloud security underscore the complexity of maintaining a consistent security posture across diverse platforms. His experience has shown that a unified security strategy that incorporates best practices from various cloud providers is essential for effective security management. Moreover, his advocacy for a Zero Trust architecture highlights the importance of strict verification processes and continuous authentication to defend against both internal and external threats.
Looking ahead, He is optimistic about the role of Generative AI in transforming cloud security. He foresees advancements in document processing, computer vision, speech-to-text technology, and chatbots as pivotal tools for automating quotations, underwriting assessments, and enhancing service queries. Mandru’s approach to security reflects a belief in the integration of technology, processes, and people. He emphasizes the need for ongoing education, the adoption of AI-driven solutions, and a culture of security awareness to effectively counter emerging threats.