SECURITY CLEARANCE
ACCESS GRANTED
Home About Projects Writing Contact Résumé ↓
LEAD PRODUCT SECURITY ENGINEER

Harsh Bhetaria

Threat modeling, application security, and secure-by-design engineering for platforms serving millions of users. CISSP certified.

10+
Years Experience
3
Top Companies
50M+
Users Protected
CISSP
Certified
01 — ABOUT

Building secure infrastructure, one system at a time.

HB CISSP
2021 – Present
Senior Product Security Engineer
Slack
2019 – 2021
Security Engineer
Amazon
2017 – 2019
Senior Security Consultant
Synopsys
Architecture reviews: helping teams design secure system architectures and identify risks
Mobile security program: designed and implemented a comprehensive mobile security framework
Incident response SME for security incidents
Runs internal hacking events to improve security awareness and skills
Advises teams on effective vulnerability remediation
Performs comprehensive security assessments of systems and applications
5+ years securing enterprise communication for millions of users worldwide.
Designed a service priority framework to determine which services require security focus
Incident response SME for security incidents
Hands-on support during high-severity security incidents
Designed new AuthN/AuthZ frameworks for product team adoption
Experience securing critical infrastructure serving millions of customers worldwide.
Led a team of 5 security professionals
Headed training initiatives for new hires and onboarding courses
Conducted interviews as part of the recruiting team
Led a security practice within the organization
Leadership experience in security consulting with a focus on team development.
Penetration testing: ethical hacking to identify vulnerabilities
Cryptography: implementation of secure encryption protocols (AES, HMAC)
Network security: designing secure network architectures
Application security: code analysis and secure development practices
CISSP certification demonstrates mastery across 8 domains of cybersecurity.
Password vault: self-hosted Bitwarden for complete password control
Home automation with a privacy-first approach
Cloudflare Access for secure remote connections
Grafana + Prometheus for infrastructure visibility
Docker swarm for service orchestration
Experimenting with enterprise security concepts in a controlled environment.
AI code review: LLM-based static analysis in pull request pipelines
Automated threat detection flagging misconfigurations and vulnerable dependencies before merge
AI-generated security test cases and fuzz inputs based on code changes
AI-driven anomaly detection on build and deployment metrics
Self-healing pipelines that diagnose and retry flaky build steps
AI-evaluated security gates (SAST, DAST, secrets scanning) as mandatory checks
Applying AI to make CI/CD pipelines faster, smarter, and more secure at enterprise scale.
Security by design: integrating security from the ground up
Continuous improvement through regular assessments and iterative hardening
Education first: training teams to think security-first
Risk-based approach balancing controls with business functionality
Transparency about security posture and improvements
"Security is not a product, but a process."

Skills

Security
Security Architecture Vulnerability Assessment Penetration Testing Threat Detection SIEM
Cloud & Infrastructure
AWS Docker Kubernetes Linux Terraform
Dev & Automation
Python CI/CD GitHub Actions AI/ML Automation LLM Integration
02 — WORK

Featured projects

PROFESSIONAL EXPERIENCE

CASE 01

Proactive Security Engineering

Leading product security initiatives at Slack, focusing on proactive threat modeling, secure code review, and vulnerability assessment across an enterprise communication platform serving millions of users.

Threat Modeling SAST/DAST AWS
5+ years experience Enterprise scale Proactive security
CASE 02

Application Security & Penetration Testing

Conducting comprehensive security assessments including penetration testing, vulnerability analysis, and application security reviews. Implementing controls across cloud infrastructure.

Burp Suite OWASP Kubernetes
CISSP certified Penetration testing Vuln assessment
CASE 03

Cryptography & Network Security

Designing and implementing cryptographic solutions and network security protocols. Expertise in encryption technologies and privacy protection for enterprise platforms.

AES TLS HMAC
Cryptography expert Network security Privacy protection

PERSONAL PROJECTS

CRYPTOGRAPHY

HMAC Implementation & Security Analysis

Custom implementation and analysis of Hash-based Message Authentication Code (HMAC) with comprehensive security testing and documentation.

Python OpenSSL HMAC
OBSERVABILITY

Cloudflare Analytics Dashboard

A modern, Grafana-style dashboard for monitoring Cloudflare analytics in real-time. Built with React, TypeScript, and Recharts with dual-mode operation.

React TypeScript Recharts Workers
HOMELAB

Homelab Monitoring Stack

Comprehensive monitoring solution for distributed homelab setups using Grafana, Prometheus, and AlertManager. Docker deployment, Home Assistant integration, smart alerting.

Grafana Prometheus Docker AlertManager
AI / DEVSECOPS

AI-Powered CI/CD Security Automation

End-to-end pipeline automation integrating LLM-based code review, automated security gate enforcement, and AI-driven anomaly detection on build metrics.

GitHub Actions LLM APIs Python
03 — WRITING

Notes on security engineering

Long-form notes on threat modeling, application security, and building AI-assisted CI/CD pipelines.

THREAT MODELING

A Practical Threat Modeling Workflow for Product Teams

In progress
APPSEC

Secure Code Review at Scale: Lessons from Enterprise SaaS

In progress
AI / DEVSECOPS

Using LLMs as a Security Gate in CI/CD

In progress
First post publishing soon — check back or follow on LinkedIn.
04 — CONTACT

Get in touch

Interested in collaborating, discussing homelab setups, or just want to chat about tech? I'd love to hear from you.

PGP / GPG Public Key
Verify on Keyserver ↗ gpg --recv-keys 1BCF4D18E05AF929399AC0D3CBAAB1F5DCADE586