Hi, I'm Varun Bhandari

Senior Security Engineer @ Crypto.com

DevSecOps & Cloud Security Expert | 9+ Years Building Secure, Scalable Infrastructure

Get In Touch Visit Blog

About Me

I'm an experienced DevSecOps and Cloud Security engineer with 9+ years of expertise building secure, reliable delivery platforms across AWS and GCP. Currently serving as a Senior Security Engineer at Crypto.com, I specialize in defense-in-depth for pipelines, Kubernetes hardening, and progressive delivery strategies.

My focus areas include:

  • Building resilient multi-stage CI/CD pipelines with automated testing and policy gates
  • Operating high-availability EKS/GKE clusters with standardized GitOps workflows
  • Embedding security via policy-as-code, SAST/DAST, SBOMs, and secrets management
  • Implementing observability with metrics, logs, and traces for improved MTTR
  • Leading teams and delivering ISO, SOC2, and CISv8 compliance

I actively maintain a technical blog sharing practical guides on Kubernetes, CI/CD patterns, cloud security, and platform engineering.

9+
Years Experience
50+
Projects Delivered
3
Cloud Platforms

Professional Experience

Senior Security Engineer

Crypto.com Sep 2025 - Present Singapore

Leading security initiatives for global cryptocurrency platform infrastructure.

Head of DevSecOps

letsbloom (Standard Chartered) Mar 2025 - Sep 2025 (7 months) India
  • Led DevSecOps strategy and team of 8 engineers for banking fintech platform
  • Achieved ISO and SOC2 certifications; submitted CISv8 compliance evidence
  • Migrated complete environment from Azure to GCP with zero downtime
  • Established backup/restore testing processes for persistence services

DevSecOps Lead

letsbloom Nov 2022 - Mar 2025 (2 years 5 months) Pune, India
  • Created DevOps framework with CI/CD pipelines, logging, monitoring, and alerting
  • Led R&D initiatives for technology evaluation and product improvement
  • Managed organization's overall security posture (endpoints, cloud, Okta)
  • Worked as SOC analyst ensuring security compliance

DevOps Technical Lead

CloudCover Apr 2021 - Nov 2022 (1 year 8 months) Pune, India
  • Led team of 10 engineers across multiple geographies for crypto and fintech platforms
  • Built IaC from scratch using Terraform for AWS-hosted crypto trading platform
  • Created CI/CD pipelines using AWS CodeDeploy for ECS deployments
  • Set up HashiCorp Vault in AKS cluster for secrets management
  • Developed Python automation suites for testing and AWS account management

Senior DevOps Engineer

CloudCover Jan 2020 - Mar 2021 (1 year 3 months) Pune, India
  • Handled critical e-commerce and fintech applications (100K-2M requests/sec)
  • Architected cloud migration strategy from on-prem to GCP
  • Built automation for Redis, Postgres, and Cassandra cluster replication
  • Created CI/CD pipelines using Jenkins for GCE deployments
  • Migrated on-prem Kafka to Confluent Kafka with live replication

DevOps Engineer

CloudCover Jan 2019 - Dec 2019 (1 year) Pune, India
  • Architected AWS ETL solution using Talend for data transformation
  • Migrated on-prem applications to GCP using lift-and-shift approach
  • Implemented CI/CD with GitLab CI for GKE and ECS (50-200 deployments/day)
  • Reduced deployment errors through Python and Ansible automation
  • Implemented observability using Datadog, Prometheus, and Grafana

DevOps Engineer

Reflex Software Solutions Dec 2016 - Dec 2018 (2 years) Gurgaon, India
  • Implemented IaC using Terraform, Ansible, and Python automation
  • Built CI/CD pipelines with Jenkins for AWS Beanstalk deployments
  • Created Python backend service for AWS infrastructure provisioning using boto3
  • Reduced costs by automating infrastructure shutdown during non-working hours
  • Containerized applications using Docker for migration to EKS

Technical Skills

Expert Advanced/Production Level
Advanced Professional Proficiency
Intermediate Working Knowledge
Beginner Foundational Knowledge

Cloud Platforms

AWS GCP Azure

Container & Orchestration

Kubernetes Docker EKS GKE AKS

CI/CD

GitHub Actions GitLab CI Jenkins Azure DevOps

Infrastructure as Code

Terraform Ansible Helm

Programming & Scripting

Python Bash Git Shell Scripting JavaScript

Observability

Prometheus Grafana Datadog ELK Stack Loki Jaeger CloudWatch

Security & Compliance

Prisma Cloud Tines Compliance Crowdstrike Qualys GCP SCC GCP VPC SC Cloud Armor SOC Analyst SOC2 CISv8 NIST Penetration Testing

Databases & Caching

RDS CloudSQL PostgreSQL MySQL Redis BigQuery ArangoDB

Messaging & Queueing

Kafka RabbitMQ

Architecture

Microservices Architecture Distributed Systems SRE

Microsoft Technologies

Intune Entra Defender Exchange Teams Administration Purview

Identity & Access Management

Okta

Key Achievements & Projects

Security Compliance Certifications

Led organization to achieve ISO and SOC2 certifications. Worked as SOC analyst and submitted CISv8 compliance evidence for banking audits.

SOC2 ISO CISv8

Zero-Downtime Cloud Migration

Successfully migrated complete production environment from Azure to GCP with zero downtime for a banking fintech platform.

Azure GCP Migration

High-Velocity CI/CD Pipeline

Designed and implemented CI/CD pipelines supporting 50-200 deployments per day for e-commerce applications handling 100K-2M requests/sec.

GitLab CI Jenkins GKE

Enterprise Kubernetes Platform

Operated high-availability EKS/GKE clusters with cluster hardening, workload isolation, and standardized GitOps release workflows.

Kubernetes EKS GKE

Secrets Management Infrastructure

Set up HashiCorp Vault running in AKS cluster, enabling applications to securely read secrets with proper IAM policies.

Vault AKS Security

Python Automation Suite

Built comprehensive automation tools for testing, AWS account management, cloud migration discovery, and infrastructure cleanup.

Python Boto3 Automation

Get In Touch

I'm always interested in hearing about new opportunities, collaborations, or just connecting with fellow DevSecOps professionals. Whether you're scaling delivery, hardening cloud workloads, or building a developer platform, let's connect!

varun@cswithvarun.com
+91 00000 00000
Pune, Maharashtra, India
cswithvarun.com