Available for senior security roles

Apurv
Tyagi

10+ years building defended infrastructure at cloud scale.

GitHubLinkedIn
0%
Critical vulns reduced
0.0K
Security events / sec
0K+
Assets tracked
0+
Years in security
Cloud Security·AWS·GCP·Azure·Kubernetes·AI / LLM Security·Prompt Injection·Red Teaming·Detection Engineering·SIEM·Threat Modeling·Python·Terraform·ArgoCD·DevSecOps·Cloud Security·AWS·GCP·Azure·Kubernetes·AI / LLM Security·Prompt Injection·Red Teaming·Detection Engineering·SIEM·Threat Modeling·Python·Terraform·ArgoCD·DevSecOps·

About

10 years turning
attack surfaces
into defenses.

I'm Apurv Tyagi — a Senior Security Engineer based in Noida, India, with 10+ years of experience turning attack surfaces into defenses.

I started as a full-stack developer and spent years building systems before I understood how fundamentally broken most of them are from a security perspective.

That realization drove me to specialize — first in DevOps, then cloud security, now AI security research. Today I build platforms that make security observable, automated, and scalable.

At Coupa, I built DefendTrack from scratch, reduced critical vulnerabilities by 90% across 50K+ assets, and started researching what happens when adversaries abuse LLMs.

Skill areas

corefamiliar
// security
cloud security
AWSGCPAzureCSPMCWPPGuardDutySecurity HubAWSGCPAzureCSPMCWPPGuardDutySecurity HubAWSGCPAzureCSPMCWPPGuardDutySecurity HubAWSGCPAzureCSPMCWPPGuardDutySecurity Hub
ai / llm security
Prompt InjectionRed TeamingAdversarial MLGuardrailsJailbreakingAlignmentPrompt InjectionRed TeamingAdversarial MLGuardrailsJailbreakingAlignmentPrompt InjectionRed TeamingAdversarial MLGuardrailsJailbreakingAlignmentPrompt InjectionRed TeamingAdversarial MLGuardrailsJailbreakingAlignment
detection eng.
SIEMSOAREDRTelemetryUEBAAlert TuningCorrelationSIEMSOAREDRTelemetryUEBAAlert TuningCorrelationSIEMSOAREDRTelemetryUEBAAlert TuningCorrelationSIEMSOAREDRTelemetryUEBAAlert TuningCorrelation
appsec
Threat ModelingSASTDASTSCAPen TestingSBOMThreat ModelingSASTDASTSCAPen TestingSBOMThreat ModelingSASTDASTSCAPen TestingSBOMThreat ModelingSASTDASTSCAPen TestingSBOM
devsecops
IaC SecurityPipeline SecuritySecrets MgmtSBOMPolicy as CodeIaC SecurityPipeline SecuritySecrets MgmtSBOMPolicy as CodeIaC SecurityPipeline SecuritySecrets MgmtSBOMPolicy as CodeIaC SecurityPipeline SecuritySecrets MgmtSBOMPolicy as Code
// engineering
languages
PythonBashTypeScriptReactJSGoHCLPythonBashTypeScriptReactJSGoHCLPythonBashTypeScriptReactJSGoHCLPythonBashTypeScriptReactJSGoHCL
databases
DynamoDBSnowflakeMongoDBMySQLPostgreSQLBigQueryDynamoDBSnowflakeMongoDBMySQLPostgreSQLBigQueryDynamoDBSnowflakeMongoDBMySQLPostgreSQLBigQueryDynamoDBSnowflakeMongoDBMySQLPostgreSQLBigQuery
data platform
DagsterAirbyteSnowflakeKafkaETL PipelinesREST ConnectorsDagsterAirbyteSnowflakeKafkaETL PipelinesREST ConnectorsDagsterAirbyteSnowflakeKafkaETL PipelinesREST ConnectorsDagsterAirbyteSnowflakeKafkaETL PipelinesREST Connectors
infrastructure
KubernetesTerraformArgoCDDockerCloudFormationJenkinsKubernetesTerraformArgoCDDockerCloudFormationJenkinsKubernetesTerraformArgoCDDockerCloudFormationJenkinsKubernetesTerraformArgoCDDockerCloudFormationJenkins

Education

B.Tech — Computer Science & Technology

BIT Meerut (UPTU, Lucknow)

2010 – 2014

Currently Exploring

AI Security & Product Security

Deepening focus on AI / LLM security research, product security engineering, and building scalable application security programs.

Work

Experience

Coupa Software

Apr 2023 – Present

Sr. Security Engineer·Pune · Noida (Remote)

Security engineering for a multi-billion dollar B2B SaaS platform. Own the internal security data platform (DefendTrack), lead threat modeling for microservices, and drive vulnerability intelligence across 3 cloud environments.

  • Built DefendTrack — centralizing multi-cloud asset inventory, vulnerability intelligence, and automated risk assessment across AWS, GCP, and Azure
  • Engineered security data platform with 15+ custom connectors for security tools (CrowdStrike, Tenable, Qualys, Snyk, Prisma Cloud) and cloud inventory APIs
  • Reduced critical vulnerability exposure by 90% via Python CVSS adjustment algorithms leveraging compensating controls
  • Automated WAF ruleset management with AWS CDK WAFv2 + Terraform — cut WAF costs by 66%
  • Built security telemetry ETL pipeline (Dagster, Airbyte, Snowflake) with ArgoCD cron workflows — ingesting 12.8K events/sec
PythonReactJSFastAPIAWSGCPTerraformAWS CDKDagsterAirbyteSnowflakeArgoCDSnykPrisma Cloud

Wipro Technologies

Jul 2021 – Apr 2023

SecDevOps Engineer · Senior Security Specialist·Gurugram

Enterprise-scale security automation and cloud security for large client environments across AWS and Azure. Built tooling that reduced manual security operations significantly.

  • Developed automation framework for Rapid7 tCell using Python APIs, GitLab, and AWS Secrets Manager
  • Implemented continuous security monitoring and automated threat detection policies
  • Automated compliance checks ensuring adherence to industry standards across hybrid cloud
  • Partnered with cloud engineering teams to enforce secure architecture across AWS and Azure
AWSAzurePythonGitLabRapid7TerraformIAM

Buzzyears Education

Apr 2017 – Jul 2021

Senior DevOps Engineer·Gurugram

Designed and built a secure, scalable video conferencing platform from scratch. Led DevOps team delivering CI/CD pipelines, release engineering, and network security services.

  • Reduced AWS infrastructure costs by 55% through network architecture optimization
  • Designed and deployed secure video conferencing platform with performance and security controls
  • Automated AWS processes using Python Boto3 and IaC, implementing security best practices
  • Led DevOps team delivering secure release engineering and CI/CD pipelines
AWSPythonDockerCloudFormationJenkinsBoto3Terraform

SVG Media

Mar 2016 – Apr 2017

Software Engineer·Gurugram

Secure data migration and infrastructure monitoring for high-traffic digital media platforms.

  • Led secure data migration from MySQL to BigQuery and MongoDB to DynamoDB with encryption and access controls
  • Implemented Munin & Nagios for comprehensive server monitoring and security alerting
MySQLBigQueryMongoDBDynamoDBShellNagios

Ginger Webs

Jan 2014 – Mar 2016

Software Developer·Noida

Full-stack software development role building scalable web applications — the engineering foundation that shaped the shift into infrastructure and security.

  • Led end-to-end secure design and development with robust testing frameworks
  • Developed secure database architecture ensuring data integrity and scalability
PHPHTML/CSSJavaScriptMySQL

Lab

The Lab

Researching the intersection of AI and adversarial security. Where guardrails break and new defenses are built.

0
Attack categories
0+
Bypass patterns
0K+
IOCs catalogued
0+
Cloud incidents

LLM Attack Chain

live simulation

Adversarial Input
Content Filter
Safety Classifier
System Prompt
Output Layer
In preparationAI Security

Abusing LLMs:
Beyond the Guardrails

Systematic documentation of 15 adversarial attack categories. Novel bypass techniques that evade state-of-the-art content classifiers. A new taxonomy for AI safety failures.

Prompt InjectionGuardrail BypassAdversarial MLRed Teaming

Attack Chains in Multi-Cloud Environments

Cloud Security

How minor misconfigurations compound into critical breach scenarios. Analysis of 50+ real-world incident patterns across AWS, GCP, and Azure.

DraftAWSGCPCSPMIncident Analysis

Kubernetes Lateral Movement: Pod to Cluster Admin

Container Security

Mapping attack paths within Kubernetes clusters — RBAC escalation, service account exploitation, and container escape techniques.

DraftKubernetesRBACContainer EscapeRed Team

Projects

Built at Scale

Featured

DefendTrack

90%
Vuln reduction

Internal security platform for vulnerability intelligence, risk tracking, and automated remediation across 3 cloud environments.

90% reduction in critical vulnerability resolution time. 50K+ assets tracked.

PythonFastAPIReactPostgreSQLKubernetes

Security Telemetry Pipeline

Active2022

Real-time ETL pipeline ingesting 12,800+ security events per second from AWS, GCP, and Azure into a unified telemetry layer.

Sub-second cross-cloud threat correlation. 99.99% uptime.

KafkaPythonSparkElasticsearchTerraform

Vulnerability Intelligence

Active2021

Automated vulnerability discovery, enrichment, and ML-based prioritization. Ingests CVE feeds and correlates with asset inventory.

847K+ IOCs tracked. Remediation time cut from 45 to 7 days.

PythonMachine LearningAWS LambdaDynamoDB

Query Wizard

Shipped2023

AI assistant that translates natural language security questions into SIEM queries, threat hunt playbooks, and investigation runbooks.

80% reduction in query authoring time. Supports Splunk, Elastic, Chronicle.

LLMPythonSplunkFastAPI

AI Security Research Framework

Ongoing2023

Internal framework for systematically testing LLM security boundaries — automated prompt injection detection, bypass cataloguing, adversarial datasets.

15 attack categories. 2,100+ bypass patterns catalogued.

PythonOpenAI APIAnthropic APILangChain
Solo Build · Personal

TextNation

textnation.in · 2023 – Present

textnation.in ↗

Enterprise messaging platform delivering SMS, WhatsApp, Voice, RCS, and Email through a unified API — built from scratch for a family business. Designed the architecture, wrote every line of code, set up infrastructure, and own ongoing security, QA, and operations.

10M+
Messages / day
99.9%
Uptime SLA
500+
Enterprise clients
98%
SMS open rate

Wore every hat

ArchitectureFull-stack DevAPI DesignQA & TestingCI/CDCloud InfraSecurityOps & Monitoring

Tech stack

PHPCodeIgniter 4MySQLAWS SDKGoogle Cloud TTSREST APIWebSocketsRedis

Open Source

github.com/apurvtyagi →

security-asset-correlator

Cross-tool canonical asset correlation engine — unified view across CrowdStrike, Tenable, Qualys, and AWS.

FastAPIAWSCrowdStrikeTenable
Python

aws-inventory-sync

Automated AWS resource inventory sync to MongoDB with change detection and drift alerting.

AWSMongoDBLambda
Python

terraform

Production-grade AWS 3-tier architecture — VPC, ALB, ECS, RDS with hardened security groups and IAM.

AWSTerraformIaC
TypeScript

Contact

Let's Talk

Open to senior security engineering roles and AI security research collaborations. Based in Noida, India — available remotely, globally.

LinkedInGitHub
apurvtyagi.comNoida, India · Remote globallyUpdated May 2026