- Security & PKI: Expertise in TLS certificate validation, Public/Private key generation and application signature verification using client-side PKI; implemented secure Mutual TLS (mTLS) communication between client and server systems.
- Edge Device Lifecycle Management: Hands-on experience with atomic and full system updates, including kernel upgrades; designed and implemented A/B partitioning strategies integrated with secure boot for reliable and fail-safe deployments.
- OTA & Device Management: led implementation of Over-The-Air (OTA) update frameworks for edge devices using open-source platforms like Mender; enabled package version control and inventory management across distributed edge environments.
- Design and define secure end-to-end IoT architectures covering devices, networks, edge, and cloud environments.
- Conduct threat modeling and risk assessments to identify vulnerabilities across IoT ecosystems.
- Implement security controls such as encryption, secure boot, PKI, and zero-trust frameworks.
- Apply strong authentication and authorization mechanisms, including IAM, OAuth2, OpenID Connect, certificate-based auth, device identity, RBAC/ABAC.
Collaborate with engineering, DevOps, and product teams to embed security-by-design principles