Picklu Paul

Hi, I'm Picklu Paul

Engineering leader, author, speaker and consultant
who is passionate about driving AI security
and DevSecOps at scale.

Download Resume Book Consultation

About Me

I'm a Engineering leader, author, and consultant with 10+ years of experience building and scaling AI security, DevSecOps, and platform engineering teams. At Grab, I lead AI security—developing an LLM-powered triaging engine and establishing AI guardrails, cutting false positives by 85%. I've led security and infrastructure functions across AWS, GCP, and on-prem, with hands-on expertise in Python, Kubernetes, Terraform, and GitOps. As the author of Demystifying DevSecOps in AWS and a keynote speaker at executive conferences in Singapore, India, Indonesia, and Thailand, I bring a strategic, hands-on approach to scaling secure, high-impact systems.

Skills

Cybersecurity

Cloud Native Security

GCP AWS Azure CSPM WAF Cloudflare

DevSecOps Pipeline

SCA SAST DAST Threat Modeling

Vulnerability Management

Nessus Qualys Wiz OWASP Top 10

Audit and Compliance

ISO 27001 MAS Audit Bank Indonesia PCI DSS NIST CIS

Security Incident Response

EDR/XDR DLP Wazuh Splunk Azure Sentinel

Container Security

AquaSec Bridgecrew Falco Chainguard

Identity & Access Management

Okta Jumpcloud SSO Vault Cyberark PAM

Platform Engineering/SRE

Infrastructure

AWS GCP Azure On-premise Docker Kubernetes

Monitoring & Observability

Prometheus Grafana Datadog ELK

DevOps Tools

GitLab Github Actions Azure DevOps Jenkins

Operating Systems

Unix Linux Windows

Development

Languages

Python Javascript Go Lang

Artificial Intelligence (AI)

Azure OpenAI RAG VectorDB Langchain Prompt Engineering

Infrastructure as Code

Terraform Ansible OPA

Work Experience

Senior Engineering Leader

Jan 2019 – Present
Grab | Singapore
  • Founding member of Grab's cybersecurity org; built multi-cloud security across GCP, AWS, and Azure.
  • Led development of an LLM-powered code triaging engine, reducing false positives by 85%.
  • Established AI security guardrails and scaled DevSecOps across CI/CD pipelines.
  • Built an in-house cloud observability platform integrating logs, metrics, and threat intel.
  • Designed and implemented enterprise-grade IAM with SSO integration and audit readiness.
  • Enabled compliance for PCI-DSS, ISO 27001, NIST, and regional regulators (MAS, GDPR, etc.).
  • Partnered with CTO to align InfoSec strategy with engineering OKRs and roadmaps.

DevOps and Automation Lead

May 2018 – Dec 2018
Quotient | Bengaluru
  • Built Python-based traffic management platform; cut incident response time by 60%.
  • Led cloud migration and hardened Kubernetes infrastructure security.
  • Automated workflows across Jira, Okta, Slack, and security tools.

Senior Software Engineer

Jul 2015 – Jun 2018
Cisco | Bengaluru
  • Managed Linux systems and performance monitoring for 1,000+ servers.
  • Automated operations using REST APIs, Selenium, and CI/CD pipelines (Jenkins, GitLab).

Software Engineer

2014 – 2015
Philips | Bengaluru
  • Built a full-stack medical imaging app (DIO) in Python for efficient DICOM search and retrieval.

Featured Projects

My Book: Demystifying DevSecOps in AWS

A comprehensive guide to mastering DevSecOps in AWS, published worldwide.

AWS DevSecOps Cloud Security
Buy Here

Kubernetes Network Security

Network security implementation for multi-tier applications in Kubernetes with controlled traffic and monitoring.

Kubernetes Network Security DevSecOps
View Code