Hi, I’m Vikas, an information security professional with 8 years of experience across cybersecurity risk, governance, compliance, and cloud security.
What I Do
Most of my work sits at the intersection of cloud security and practical governance. I review security architectures, define policy frameworks, and help organizations think clearly about risk, particularly in cloud environments where misconfigurations and identity gaps are the most common failure points.
I hold the CISSP, and lately I’ve been spending time on the security implications of agentic AI: how to govern it, what policies need to exist before you deploy it, and what tends to go wrong when they don’t.
I try to keep things direct and useful. Security that doesn’t align with how the business actually works doesn’t work.
What This Site Is
A working notebook and portfolio. I collect notes from things I’ve learned, write about patterns I notice at work, and document projects I build. If it’s useful to someone else, that’s a bonus.
Recent Posts
Projects
AI-Powered CVE Intel Agent: CVE research and threat brief generator
Outside of Work
Bike rides and hiking, watching anime, learning to make better coffee, playing video games (currently working through Elden Ring, and waiting on GTA 6 like everyone else). The occasional DIY project when I feel like breaking something.
Let’s Connect
LinkedIn · feel free to reach out anytime.