Rakshit Sen

• Executed a Jenkins major version upgrade on GKE-based infrastructure, managing Helm chart updates, JCasC compatibility, plugin dependency resolution, and existing Keycloak authentication/authorization integration to ensure secure and stable production operations. • Deployed OpenBao as a centralized secrets management solution for the DevOps/SRE team, replacing scattered credential storage and enforcing access control for sensitive credentials. • Integrated Trivy vulnerability scanning into existing CI/CD pipelines by adding a dedicated sidecar container alongside Node.js and Python application containers, enabling automated image scanning on every build. • Established a proactive vulnerability management workflow by integrating GCP Security Command Center (SCC) to surface Critical and High severity OS, Software, and container image vulnerabilities across 5 GCP projects — driving Critical findings to near zero by enabling DevOps and development teams to own remediation workflows.