Badrish Dubey
CybersecuritySecurity Architecture Leader | AppSec · API · Mobile · AI/LLM · Cloud Security | SAST · DAST · IAST · RASP · SCA · IAC · Container | DevSecOps · Zero Trust · Threat Model | CISO Advisory | CISSP | CCSP | CSSLP | 15+ Yrs
AI is analyzing your overall score…
Identifying your key strengths…
Evaluating your skill match against the job requirements…
Assessing your cultural and operational fit
Security Architecture Leader | AppSec · API · Mobile · AI/LLM · Cloud Security | SAST · DAST · IAST · RASP · SCA · IAC · Container | DevSecOps · Zero Trust · Threat Model | CISO Advisory | CISSP | CCSP | CSSLP | 15+ Yrs
Most security architects review. I build — AppSec culture, Mobile RASP programs, shift-left pipelines, AI/LLM security frameworks, and developer capability programs that outlast any single tool or engagement. Across 500+ applications and 15 years, that's made a measurable difference. I operate where strategy meets engineering — securing 500+ applications across web, mobile, API, cloud, and LLM-based AI, spanning the full lifecycle from threat modeling and secure design to runtime protection and CI/CD-embedded SAST, DAST, IAST, RASP, SCA, and IAC security. At Tata Digital, I architect security for the flagship super-app — one platform powering e-commerce, UPI, bill payments, credit cards, loans, insurance, and investments. I led its transition to multi-layer runtime protection combining Mobile RASP and Google Play Integrity API, delivering active defense against tampering, reverse engineering, and compromised device threats. My shift-left program drove a 30% reduction in production vulnerabilities over 2 years — with zero critical or high findings in external audits and no open points across RBI, ISO, and NPCI audits. At Fidelity International, I built and ran a multi-region AppSec program across India, UK, and Canada — 100+ applications, end-to-end. I designed the SCA program from scratch and sat on the Architecture Review Board. On AI/LLM security — I'm not preparing for this shift, I've already made it. At Tata Digital I serve as security architect for a production LLM platform covering chatbot, copilot, recommendation, and agentic workflows. I've addressed prompt injection, PII leakage and third-party LLM API risk across Azure OpenAI — and built the organization's first internal AI security policy anchored to OWASP Top 10 for LLMs and NIST AI RMF. Security scales through people. I designed and scaled the Security Champion Program at Fidelity, trained
Rajiv Gandhi Institute of Technology
MCA, Computer Application
January 1, 2008 – January 1, 2011
Mumbai University
PGDFM, Financial management
January 1, 2007 – January 1, 2008
Shri chinai college of Commerce and economics
B.COM, Commerce
January 1, 2004 – January 1, 2007
Shri Chinai college of commerce and economics
HSC, Commerce
January 1, 2002 – January 1, 2004
B.L. Ruia high School
SSC
January 1, 1996 – January 1, 2002
Tata Digital
Associate Director - Enterprise Security Architect & Engineering
April 1, 2023 – Present
Mumbai, Maharashtra, India · Hybrid
Fidelity International
Technical Consultant - Application Security
December 1, 2020 – March 1, 2023
India · Remote
YES BANK
Vice President
January 1, 2020 – December 1, 2020
On-site
YES BANK
Assistant Vice President
August 1, 2018 – December 1, 2019
On-site
BNP PARIBAS INDIA SOLUTIONS PRIVATE LIMITED
Senior Security Test Engineer
March 1, 2017 – July 1, 2018
On-site
BNP PARIBAS INDIA SOLUTIONS PRIVATE LIMITED
Security Test Engineer
May 1, 2015 – February 1, 2017
On-site
NSDL e-Governance Infrastructure Limited
Assistant Manager
September 1, 2011 – May 1, 2015
Lower parel, Mumbai · On-site
Code Domain Solutions
Web Developer
February 1, 2011 – June 1, 2011
Andheri, Mumbai · On-site
Cybersecurity for Leaders
ISB Executive Education
June 23, 2026 – Present
GenAi for everyone
Coursera
June 23, 2026 – Present
Microsoft Certified: Azure Security Engineer Associate
Microsoft
June 23, 2026 – Present
Microsoft Certified: Azure Fundamentals
Microsoft
June 23, 2026 – Present
Certified Secure Software Lifecycle Professional (CSSLP)
ISC2
June 23, 2026 – Present
AWS cloud practitioner essentials
Amazon Web Services (AWS)
June 23, 2026 – Present
AWS Security Fundamentals
Amazon Web Services (AWS)
June 23, 2026 – Present
Certified Cloud Security Professional (CCSP)
ISC2
June 23, 2026 – Present
Certified Information Systems Security Professional
ISC2
June 23, 2026 – Present
Certified Ethical Hacker
ec-council
June 23, 2026 – Present
APPIN CERTIFIED SECURITY PROFESSIONAL
A.P.N. Technology
June 23, 2026 – Present
Certified Information Security Professional
IISCON
June 23, 2026 – Present
IBM DB2 10.1 000-610
IBM
June 23, 2026 – Present
Cultural Fit Analysis
The candidate has worked across diverse sectors including finance (Fidelity, YES BANK, BNP Paribas, NSDL) and e-commerce/super-app platforms (Tata Digital), demonstrating adaptability to different organizational cultures and regulatory environments. Their involvement in training security champions and developers, as well as leading and mentoring teams, indicates a collaborative and growth-oriented mindset. The breadth of security domains covered (mobile, API, cloud, AI/LLM) and continuous learning through certifications (Azure, AWS, CISSP, CCSP, CSSLP, GenAI) suggests a proactive approach to staying current with industry trends, which aligns well with dynamic, innovative environments.
Soft Skills & Operational Fit
The candidate's experience descriptions highlight strong leadership, team mentoring, stakeholder management, and executive reporting skills. Their ability to redesign and scale security programs, manage audits, and advise CISOs indicates excellent operational fit for senior cybersecurity roles requiring strategic thinking and execution. The 'Motivator Award' for building a report automation tool also suggests initiative and problem-solving capabilities.