About

Learn more about me

DACI : Diligent, Agile, Curious, Innovative

Hello! I'm Suraj, based in Buffalo, U.S., and originally from Pune, India. I hold an MS, Management Information Systems from SUNY Buffalo and a Post Graduate Diploma in Big Data Analytics and Machine Learning with a Bachelor of Engineering in Electronics and Telecommunications from India.

  • Email: surajbha@buffalo.edu
  • Country: United States
  • Degree: MS in Management Information Systems
My Career highlights include:
  1. Passed the CISSP exam in first 100 questions!
  2. Published a research paper of novel IAM for AI chatbots in healthcare domain and presented at NYS official cyber securtiy conference 2025
  3. Co-founded a pro-bono cyber clinic to help small busnesses get free security and compliance assessments
  4. Achieved SPOT Award at Druva Inc. for taking initiative to verify production logs, catching and resolving critical security issues
  5. Worked on IAM, SSO, OKTA, FEDRAMP, RBAC, MFA etc.
  6. Created and honed automated test suites, cutting release testing time by 65%

I have also participated in AI Hackathons and entrepreneurial competitions like Startup bootcamps, reaching the quarter-finals.

Apart from studies, I'm a State Level Soccer Player, Division Level Table Tennis Player, Division level Archery Player, Calisthenics and Yoga Practitioner.

Interests

Calisthenics

Movies

Reading

Cooking

Football/Soccer

Certifications

Resume

Check My Resume

Professional Experience

Product Security Manager

Oct. 2025 - Present

Kubed Root, New York

Key Responsibilities:
  • Integrated security requirements across the SDLC by implementing robust controls from design through release, ensuring alignment with CIS, COBIT, NIST, ISO and industry best practices while collaborating cross-functionally to own risk management through comprehensive assessments.
  • Directed engineering teams in secure coding, application security architecture, configuration management, IAM, and security automation, supporting the delivery of scalable, compliant, and resilient cloud applications.
  • Drove proactive threat modeling, security controls evaluation and vulnerability management to minimize attack surfaces, remediate product risks, and sustain both regulatory and client compliance.

CyberSecurity and AI Consultant- Graduate Research Assistant

Mar. 2025 - Jun.2025

Cyber Clinic (UBCATT AI Fellowship), University at Buffalo, The State Univerisity of New York

Key Responsibilities:
  • Co-founded a cyber clinic to develop an AI tool, providing pro-bono security assessments & strategic recommendations to small businesses to enhance their risk management & overall security posture.
  • Engineered an AI RAG tool to automate multi-framework security assessments (NIST, ISO 27001), generating SOC style report & phased implementation plans by translating complex technical findings into clear, business-relevant insights for client leadership.
  • Spearheaded the creation & updating of risk mitigation strategies, IR plans, & SOPs for clients.

Information Security Architect- Supervised Research Assistant

Jan. 2024 - Oct. 2025

University at Buffalo, The State Univerisity of New York

Key Responsibilities:
  • Designed and implemented secure architecture for AI-based Patient Navigator Application
  • Developed a secure cloud environment and database, conducted security testing on AI models.
  • Authored & published a research paper on a Novel IAM method to mitigate AI threats to sensitive patient data (PHI/PII).
  • Presented the research at NYS Cyber Security Conference (Annual Symposium on Info Assurance) in data privacy & AI track.

Software Security Engineer (Cloud Platform Security)

Oct. 2021 - Jun. 2024

Druva - Pune, MH, India

Key Responsibilities:
  • SIEM & Threat Detection: Managed and tuned SIEM platforms (Splunk, Coralogix) by developing custom correlation rules and automated alerts, enhancing threat detection accuracy for SOC teams. Conducted in-depth analysis of telemetry logs and system artifacts to differentiate false positives from actual threats.
  • Incident Response & Triage: Acted as a lead for high-priority incident investigations, mitigating over $150K in product security risk by proactively identifying zero-day bugs and performing root cause analysis on intrusion attempts and production anomalies.
  • Phishing & Risk Assessment: Conducted NIST RMF privacy controls assessments and internal phishing simulations, analyzing malicious vectors to identify social engineering attacks and harden the organization's defensive posture.
  • Automation & Efficiency: Designed and implemented Python-Selenium automation suites for continuous security testing, boosting compliance-as-code initiatives and improving regression testing efficiency by over 30% within the SDLC.
  • Operational Stability & Cloud: Managed AWS cloud environments and optimized Jenkins pipelines to support 48 releases and 25 hotfixes, reducing internal service requests by 50% through the creation of comprehensive technical documentation and knowledge-base articles (Confluence).
  • Leadership & Training: Recognized with a SPOT Award and the title of ‘Team Security Champion’ for guiding development teams on OWASP Top 10 best practices, integrating security training into new hire onboarding to foster a culture of secure coding.

IoT Systems Engineer Intern

Jul. 2019 - Aug. 2019

ELSEIF Technologies

Key Responsibilities:
  • Customer-Centric Solutions: Coordinated with customers for feedback to drive product improvements and developed proof-of-concept solutions. Designed and optimized PCBs for various IoT devices, enriching product functionality and performance.

Publications

IoT Based Smart Fire Extinguisher (Team Lead)

Nov.2019 - Feb. 2020

IoT Based Smart Fire Extinguisher (Team Lead) Nov. 2019 - Feb. 2020 International Engineering Research Journal (Special Issue on NCIET 2020) Pages 372-374

Developed an advanced fire safety system integrating flame sensors and an automated controller, improving safety with rapid response mechanisms. Published in the Special Issue of NCIET 2020

Education

Masters of Science, Management Information Systems ( STEM )

Jul.2024 - Jun. 2025

State University of New York at Buffalo, NY, USA

Course Modules
  1. CyberSecurity Analytics (Splunk)
  2. CyberSecurity, Privacy & Ethics
  3. Information Assurance
  4. Adopting Generative AI
  5. Digital Product Management
  6. System Analysis and Design
  7. Technology and Innovation Management
  8. Predictive Analytics
  9. Experential IT Project Management
  10. Database Management Systems

Post Graduate Diploma, Big Data Analytics & Machine Learning

May 2021 - Sep. 2021

Center for Development of Advanced Computing, Pune, MH, India

Courses Modules
  1. Python & R Programming
  2. Data Collection & Database Management Systems
  3. Cloud Computing
  4. Big Data Technologies
  5. Practical Machine Learning
  6. Data Visualization- Analysis & Reporting

Bachelor of Engineering, Electronics & Telecommunications

Aug. 2015 - Jun. 2020

Pune University, MH, India

Contact

Contact Me

My Address

Buffalo, NY, USA - 14214

Email Me

surajbha@buffalo.edu

Call Me

+1 7163355135

Loading
Your message has been sent. Thank you!
Designed by Suraj Hipparge & Saket Kumar