Security professional with diverse experience with product development, security and audit. 15 years+ of Software design, development and operations experience with current focus on Cloud Security and Compliance. Security: ------------ Designed and developed various modules of Oracle Identity Management product Worked as Security Engineer at Seagate and Adobe CISSP (Certified Information Systems Security Professional) PhD coursework with focus on security Research on cloud security focussing on Cloud security and Threat modeling for the cloud Audit and Compliance: ------------------------------- Led SOC2 certification project Leading ISO 27001:2013 implementation, certified as ISO 27001: 2013 Lead Auditor CISA (Certified Information Systems Auditor) scored in top 5% in the world Experience with PCI DSS 3.0 product certification projects Experience with US EU Safe Harbor and HIPAA Software Design and development: ----------------------------------------------- Languages: Java, Perl, C++ Products which I developed: Oracle Beehive, Oracle Access Manager, Oracle BAM at Oracle Insurance and Workflow systems for Singapore govt. Sun Certified Java Programmer IBM Certified Professional for OOAD with UML IBM Certified Specialist for VisualAge for Java Oracle Certification- Introduction to Oracle: SQL and PL/SQL

Security and Compliance Strategist @ From March 2015 to Present (8 months) San JoseInformation Security Engineer, EchoSign @ Worked with various aspects of security and compliance to make Adobe EchoSign the most secure product of its kind. From September 2014 to March 2015 (7 months) San JoseSenior Software Engineer (Cloud Security) @ Responsible for all security features of the product. Led the efforts for operational security. From May 2014 to September 2014 (5 months) San Francisco CASenior Member of Technical Staff @ Worked in product development of Oracle Identity Management, the cutting edge security product by Oracle. • Design and Development of Oracle Access Manager product • Successfully delivered the OAM 11gR2 release • Experience with Single Sign On, Cloud security, Federation and Access Control Worked on Oracle Beehive product on Zimbra integration with Beehive. It is one of the largest Oracle Real Application Clusters deployments in the world. Previously worked on Oracle BAM (Business Activity Monitoring) development, which is one of the pillars of Oracle's Fusion Middleware. From March 2006 to May 2014 (8 years 3 months) Redwood Shores CAInstructor of Java Security @ Designed a new course on Java Security from scratch and taught it for two semesters. Catalog: http://www.ucsc-extension.edu/sites/default/files/imce/public/pdf/ENG_TECH_Fall2012.pdf (Java Security on Page 20) From January 2012 to December 2012 (1 year) Santa ClaraGraduate Assistant @ Graduate Assistant, International and European Union Center, Texas A&M University, College Station Organized a major event involving diplomats of over 50 countries including those from China and Taiwan. From December 2003 to October 2005 (1 year 11 months) College StationSoftware Engineer @ Software Development, System Analysis, Business Process Reengineering, Client relationship management. On Deputation at Perot Systems, Singapore, worked for CPF Board - the social security organization of Singapore and performed project coordination across geographies in a multi cultural setting Worked for two years at client location Singapore, multitasking with different roles – Software development, managing customer relations and coordination among the customer in Singapore, developers located in India and third party experts in Australia Implemented a storage solutions project with disaster recovery and Business continuity planning components From September 1999 to July 2003 (3 years 11 months)

Ph.D., Computer Science (Cloud Security) @ University of California, Santa Cruz From 2010 to 2015 M.S., Computer Science @ Texas A&M University From 2003 to 2005 Graduate Certificate, Business @ Texas A&M University - Mays Business School From 2003 to 2005 Indian Institute of Technology, RoorkeeAll India Senior School Certificate, Science and Mathematics @ Sainik School Purulia From 1986 to 1993 Shreyas CISSP is skilled in: Security, Software Development, Java, Cloud Computing, Security Audits, OpenStack, Network Security, Cloud Security, Cryptography, Amazon Web Services..., Information Security, SaaS, Java Security, CISSP, Security Operations, UML, HTTPS, Databases, Disaster Recovery, TCP/IP, SSL, Requirements Analysis, Unix, Compliance, PKI, Digital Signatures, JavaScript, Business Continuity..., IT Risk Management, Distributed Systems, SQL, CRM, Integration, Risk Assessment, Software Project..., C++, Business Intelligence, Agile Methodologies, Enterprise Software, Oracle, Java Enterprise Edition, PL/SQL, Threat Modeling, Analysis, Computer Security, Python, Keystone, Identity Management, PCI DSS, ISO 27001