Cloud Security and DevSecOps leader focused on secure-by-default cloud platforms, identity governance, and automation across AWS, GCP, and Azure.
- Lead Security Engineer at TripleLift, working across cloud security, platform security, identity governance, SIEM/EDR operations, and developer security workflows.
- 10+ years across cloud, DevSecOps, Linux infrastructure, automation, and team leadership.
- Design automated governance, access reviews, posture reporting, and compliance evidence workflows for multi-account and multi-cloud environments.
- Build with Terraform, CloudFormation, GitHub Actions, Jenkins, Python, Bash, OIDC-based automation, and cloud-native security services.
- Built an automated AWS security posture scoring and reporting system using AWS Config and Security Hub, delivering recurring compliance visibility through Slack and Google Sheets.
- Established access review and permissions inventory workflows across AWS, GCP, Google Workspace, and GitHub to produce audit-ready evidence and reduce manual review work.
- Implemented identity lifecycle controls reconciling Okta with downstream access platforms, including approval gates and guardrails for high-impact access changes.
- Led DevSecOps delivery across AWS, GCP, and Azure environments, including secure landing zones, IaC patterns, governance controls, migrations, and automated patching programs.
- Designed cloud logging and SIEM integrations for Google Workspace activity telemetry across 14+ applications.
AWS Security Specialty, AWS DevOps Engineer Professional, AWS Solutions Architect Professional, AWS Advanced Networking Specialty, AWS SysOps Administrator Associate, AWS Developer Associate, AWS Solutions Architect Associate, Google Cloud Professional Cloud Security Engineer, Google Cloud Associate Cloud Engineer, Professional Google Workspace Administrator, Microsoft SC-900, HashiCorp Terraform Associate.
- Automatically Organize Your Screenshots on Mac with launchd
- SAML2.0 and OAuth2.0 Simplified
- Bypassing paywalled webpages
- WSL2 with Windows Terminal and syncing with Mac OSX
- RDS Authentication via IAM User/Role
- Portfolio: vrnchndk.in
- Resume: resume.vrnchndk.in
- Projects: github.com/varunchandak?tab=repositories






