Uttkarsh Goel

Details

Skills

Cloud & Cloud-Native: GCP, Azure, AWS, GKE, AKS, Docker, Kubernetes, Helm, Terraform Cloud (IaC), Confluent Kafka, Serverless, Microservices
Cloud Security Tools: CNAPP (e.g., Wiz, GCP SCC Enterprise, MS Defender for Cloud), CSPM, CWPP, CIEM, SIEM, DLP, WAF, CASB, Secrets Management (Vault, KMS)
AI & Data Security: Azure Databricks, Vertex AI, LLM/GenAI guardrails, agentic workflows, MCP gateway, prompt injection defense, model risk
Security Domains: Cloud Security, Application Security (SAST/DAST/SCA), API Security, IAM, DevSecOps, Zero Trust, Threat Intelligence, Incident Response, Data Security
Identity & Access: Entra ID (Azure AD), SAML, OAuth 2.0, OIDC, MFA, RBAC/ABAC, PAM, Service Control Policies, Policy-as-Code
Threat & Risk: STRIDE, MITRE ATT&CK, Threat Risk Assessment (TRA), Threat Modelling, Penetration Test Analysis, Risk Quantification
Frameworks & Compliance: NIST CSF, ISO 27001, SOC 2, COBIT 5, CIS Controls, OSFI B-13, PCI-DSS, PIPEDA, GDPR
Programming & Automation: Python, Node.js, Bash, REST APIs
Leadership & Delivery: Team Building (15+), Executive Communication, KPI/KRI Reporting, Agile/Scrum, Stakeholder Management

About

Cloud security leader with 8+ years securing enterprise programs at a Big-5 Canadian bank, Morgan Stanley (Fortune-500 financial services, via NTT DATA), and a Fintech SaaS startup. Built and led a 15-person multi-cloud advisory team covering all bank cloud platforms — GKE, AKS, and SaaS workloads across GCP and Azure — delivering 150+ Threat Risk Assessments annually for board-critical platforms. Deep expertise in cloud security architecture, AI and data platforms (Databricks, Vertex AI, multi-agent, agentic systems), DevSecOps, IAM (Entra ID/SAML/OAuth/OIDC), and regulated-industry compliance (SOC 2, ISO 27001, NIST CSF, OSFI B-13, PCI-DSS).