Shubham A. looks like a good fit?
We can organize an interview with Aldin or any of our 25,000 available candidates within 48 hours. How would you like to proceed?
Schedule Interview NowShubham A. Cloud, Modern Frameworks and Software Architecture
My name is Shubham A. and I have over 9 years of experience in the tech industry. I specialize in the following technologies: Java, GraphQL, Amazon Web Services, Kotlin, JavaScript, etc.. I hold a degree in Bachelor of Engineering (BEng), Master of Technology (MTech). Some of the notable projects I’ve worked on include: FetchPay – QR Payments, POS Integrations & AWS Cloud Security, Securim: Cloud Security, Azure Hardening & Application Sec Engineer, GymFit – AWS Cloud Security, DevOps & WordPress Application Hardening, Penetration Testing & OWASP Top 10 Risk Report, Secure Code Review & OWASP Top 10 Vulnerability Analysis, etc.. I am based in Delhi, India. I've successfully completed 10 projects while developing at Softaims.
I value a collaborative environment where shared knowledge leads to superior outcomes. I actively mentor junior team members, conduct thorough quality reviews, and champion engineering best practices across the team. I believe that the quality of the final product is a direct reflection of the team's cohesion and skill.
My experience at Softaims has refined my ability to effectively communicate complex technical concepts to non-technical stakeholders, ensuring project alignment from the outset. I am a strong believer in transparent processes and iterative delivery.
My main objective is to foster a culture of quality and accountability. I am motivated to contribute my expertise to projects that require not just technical skill, but also strong organizational and leadership abilities to succeed.
Main technologies
Cloud, Modern Frameworks and Software Architecture
9 years
Java
5 Years
GraphQL
4 Years
Amazon Web Services
6 Years
Additional skills
- Java
- GraphQL
- Amazon Web Services
- Kotlin
- JavaScript
- MongoDB
- Node.js
- React
- Microservice
- Software Architecture & Design
- PostgreSQL
- Spring Boot
- Spring Framework
- Elasticsearch
- MySQL Programming
- React Native
- Nextjs
Direct hire
Potentially possible
Previous Company
Amazon India
Experience Highlights
FetchPay – QR Payments, POS Integrations & AWS Cloud Security
At FetchPay, a UK-based QR payment and loyalty platform, I led backend engineering and AWS cloud security efforts. I built Node.js/NestJS microservices and AWS Lambdas integrating with POS APIs and Stripe for secure payments. I also migrated services to Java Spring Boot with PostgreSQL, designed hierarchy-based admin portals, and integrated Accor Hotels APIs for features like Order to Room and Add Bill to Room. Conducted AWS cloud audits, fixing S3, VPC, and NAT gateway misconfigurations.
Securim: Cloud Security, Azure Hardening & Application Sec Engineer
At Securim, I worked as a Cybersecurity & Application Security Engineer focused on securing Azure infrastructure and applications. My role included implementing cloud security best practices, hardening identity and access management, and improving secure networking. I also integrated DevSecOps into CI/CD pipelines, conducted threat assessments, and managed vulnerabilities across applications and cloud workloads to strengthen overall security posture.
GymFit – AWS Cloud Security, DevOps & WordPress Application Hardening
I secured GymFit’s AWS-based fitness platform, which includes WordPress, ReactJS, and Spring Boot microservices. My role combined AWS cloud security engineering with DevOps best practices to harden infrastructure and streamline deployments. Key work included securing ECS microservices, IAM roles, and load balancers while protecting the WordPress membership site. I also built secure, automated CI/CD pipelines to improve reliability and resilience.
Penetration Testing & OWASP Top 10 Risk Report
I created a comprehensive penetration testing report for a sample company, focusing on real-world attack scenarios mapped to the OWASP Top 10 vulnerabilities. Each finding was documented with a Risk severity ratings (Critical, High, Medium, Low), Business impact analysis and a clear remediation guidance, with both short-term fixes and long-term security recommendations. This sample report demonstrates how I communicate technical issues in a way that’s actionable for developers. It highlights the vulnerabilities found, and also the remediation roadmap needed to strengthen security posture.
Secure Code Review & OWASP Top 10 Vulnerability Analysis
I conducted an in-depth secure code review for a web application, identifying vulnerabilities aligned with the OWASP Top 10. The audit focused on issues such as missing rate limiting, XML External Entity (XXE) risks, improper logging practices, and broken authentication flows. Each finding was mapped to risk severity with actionable remediation steps, enabling the client to strengthen code quality, reduce attack surface, and adopt secure coding standards.
Education
GGSIPU
Bachelor of Engineering (BEng) in Computer science
2011-01-01-2015-01-01
Birla Institute of Technology & Science (BITS), Pilani
Master of Technology (MTech) in Cyber Security Engineering
2018-01-01-2020-01-01
Languages
- English
- Hindi
Github
Stackoverflow