Home

Hi, I’m Raju Shahi

Independent Cloud Security & DevSecOps Architect helping organisations build secure, resilient cloud platforms — without slowing down engineering.

I’ve worked with large-scale and regulated environments across finance, SaaS, and enterprise, focusing on security as infrastructure, not bureaucracy.

Contact

What I work on

I help organisations move from manual, fragile security practices to automated, identity-driven, and auditable security foundations.

My work typically focuses on:

  • Designing secure cloud and platform foundations in regulated environments
  • Embedding DevSecOps guardrails into CI/CD without slowing teams down
  • Replacing manual security processes with policy-driven automation
  • Translating regulatory requirements (such as DORA) into practical technical controls
  • Improving security culture by reducing friction and security theatre

How I approach security

I don’t treat security as a separate function or a set of manual controls.

I treat it as infrastructure:

  • identity instead of shared secrets
  • automation instead of tickets
  • guardrails instead of gates

The goal is simple: make the secure path the easiest path for engineers — and the safest one for the organisation.

Writing

Occasional notes from the field on cloud security, DevSecOps, and operational resilience — based on real systems, not theory.

Read the blog →

Scroll to Top