01 / 08
AUTO
Engineering Leader · Cybersecurity · 2002 – 2026

Kamal
Bisht

Director of Engineering · Quality Architecture · AI Governance
Building frameworks that outlast the people who build them.

PMP CEH ISO 42001 LA IIT Delhi M.Tech McAfee · FireEye · SentinelOne
0+
Years
$616M
Acquisition
0+
Engineers Led
0%
Manual Test Reduction
01 — Foundation

Where the
signal-first mindset was born.

IIT Delhi · 2000–2001
M.Tech., Computer Technology
Indian Institute of Technology Delhi
Thesis: GSOM neural network–based Network Intrusion Detection System. Statistically proved that malicious traffic is inherently separable from normal traffic — the origin of measurement-first thinking in security.
G.B. Pant University · 1996–2000
B.Tech., Electrical Engineering
G.B. Pant University, Pantnagar
Project: Microcontroller-based radar firmware for DRDO Dehradun. Constrained-environment engineering builds an intuition for system optimisation that every engineer should have.
Core insight established here
"Tuning context windows, measuring the right signals, and understanding system constraints — this is QA at its deepest level."
02 — McAfee (2003–2016)

14 years building
security at scale.

01
Software Engineer → Sr. Project Lead
Jun 2003 – Mar 2009
  • Core member of Host IPS team (Entercept acquisition) — process injection, function hooking, kernel drivers
  • TDI/WFP network stack, ELAM, WPA/WPR profiling
  • Founded Security Club; drove threat modelling at site level
  • Presented at IIITB, NIT Trichy, ISCF-2006
02
Engineering QA Manager
Apr 2009 – Jan 2016
  • McAfee Labs: managed common driver SDK across 25 products
  • Built sanity lab covering all 25 products as release gate
  • Security Champions programme absorbed into global scheme
  • Third-party app certification process with IT rollout team
  • 25% release cycle efficiency improvement
03
Certifications & Leadership
2006–2007
  • PMP — Project Management Institute (2007)
  • CEH v3 — EC-Council
  • Represented org at ISCF-2006, SRM University Chennai
  • Led kernel performance benchmarking — synthetic workloads delivered in 10 days for critical customer escalation
$7.68B
Intel acquisition of McAfee (2011) — Led QA management transition, ensuring endpoint core platform stability through the largest security acquisition in history at the time.
03 — FireEye (2016)

Efficacy at
millions of samples.

🔬
Efficacy Lab Infrastructure
Built end-to-end lab running millions of malware sample sets for content detection validation. Elasticsearch-backed pipeline, Python automation, web crawlers for continuous sample acquisition.
4 Parallel Enterprise Projects
Simultaneously managed exploit detection, kernel services, and next-generation platform initiatives within the Enterprise Endpoint group.
🐍
Python-First Automation
Evolved automation stack from earlier Ruby on Rails days to Python — and observed the recurring challenge of fragmented frameworks across orgs, which shaped the unified approach at Attivo.
🔍
Pattern Recognition
FireEye's strategy discussions confirmed what lateral movement detection could do — directly leading to the decision to join Attivo Networks in 2017.
04 — Attivo Networks → SentinelOne (2017–2025)

From startup to
$616M acquisition.

0%
Manual test reduction
0%
Fewer production defects
0%
Faster bug resolution
0%
Release cycle improvement
20+
Engineers built & mentored
Cloud-native migration path
Monolith EC2 + LB Kafka telemetry OCSF normaliser ECS microservices ClickHouse GLU + KCP Feature flags Shadow mode
⚙️
Quality Engineering
4 groups, 20+ engineers
🛡️
AppSec
SAST · DAST · BurpSuite
🚀
Release Management
Branching strategy · CI/CD
🖥️
IT Operations
Lab setup · Appliances
05 — Quality Philosophy

Quality is a
layered discipline.

PRODUCTION
Test Cases End-to-end coverage · Shift-left · Customer-scenario driven
INTEGRATION
SDKs & APIs Flask-exposed helpers available to dev for integration tests
UNIT
Helper Functions Windsurf-assisted generation · Mocks · Lint checks
FOUNDATION
Infrastructure Layer Common framework across all orgs · Perl → Ruby → Python
LLM-Assisted QA
Explored ML models learning from automation + production code to generate dynamic tests instead of static checks.
Anomaly Detection
Researched OpenSearch ML-based anomaly analysis to automatically triage automation failures at scale.
Modern QA Concepts
A/B testing · LLM-as-judge · Golden datasets · Playday sessions · Shadow mode for detection rollouts.
06 — The AI Era (2025–present)

Where security meets
artificial intelligence.

🏛️
ISO 42001 Lead Auditor
TÜV SÜD certified. AI Management Systems audit from an Information Security perspective. Bridges ISO 27001 and AI governance.
🤖
Multi-Agent Systems
Exploring Claude Code to build multi-agent solutions for investment and intelligent assistance. Hands-on LLM engineering.
🏢
Consuting Experience
Defined converged Cyber + AI Command Centre vision: SOC, GRC, AI Governance, Exposure Management, post-quantum cryptography.
📐
Product Vision via LLMs
Extensively used NLP and LLM features of Figma to accelerate product design. Applying AI to the design process itself.
🔐
Compliance Stack
ISO 42001 · ISO 27001 · ISO 9001 · FedRAMP / FIPS awareness. Regulatory-aware engineering leadership.
📚
Continuous Learning
Outskills AI engineering courses. Applying A/B testing, LLM-as-judge, and golden dataset concepts to quality engineering.
Kamal
Bisht

24 years of seamless evolution — from neural networks detecting intrusions at IIT Delhi, to building the quality and security foundations of companies acquired for billions, to leading AI governance in the age of LLMs.

kamalbisht@yahoo.com +91-9845229450 Bengaluru, India
Quality Engineering AppSec Cloud Architecture Deception / ITDR AI Governance Release Management Kernel QA ISO 42001 PMP CEH Multi-agent Systems Python · Ruby · Perl