About
Hi, I’m Subodh Patil
I’m a Principal Information Security Architect based in Stuttgart, Germany, currently at Icertis — a global SaaS leader in Contract Intelligence. With nearly two decades in IT, I’ve spent the last several years focused on one thing: making cloud architecture genuinely secure, not just compliant on paper.
My path here is a little different from most security professionals. I started as a software developer — .NET, C#, building enterprise applications. That foundation means I understand security from the inside of the code outward, not just from audit checklists. I made a deliberate pivot toward security architecture around 2018 and haven’t looked back.
What I Write About
This blog is where I think out loud about the problems I encounter in practice. You’ll find deep-dives on:
- Cloud Security Architecture — secure design patterns for Azure and SaaS platforms
- Encryption & Key Management — from foundations to BYOK/BYOH and customer-managed keys at scale
- Data Sovereignty & Residency — what multi-geo really means for SaaS vendors and their customers
- AI Risk & Governance — trust boundaries, inference responsibility, and the emerging compliance landscape
- Zero Trust — practical implementation, not the buzzword version
I write for security practitioners, architects, and engineering leaders who want substance over surface-level content.
Credentials & Certifications
- 🛡️ ISC2 CISSP — Certified Information Systems Security Professional
- 🤖 ISACA AAIR — Advanced in AI Risk (May 2026)
- ☁️ Microsoft Certified: Cybersecurity Architect Expert
- 🔵 Microsoft Defender for Cloud Black Belt
- ☁️ Azure Cloud Security Consultant
45+ certifications spanning cloud, security, and architecture. View all verified badges on Credly →
Experience Highlights
Principal Information Security Architect — Icertis (Jul 2022 – Present) Leading strategic development and implementation of a comprehensive security program for a global SaaS platform. Focus areas: cloud security architecture, IAM, Zero Trust, compliance, and AI risk.
Senior Information Security Architect — Icertis (Jul 2020 – Jun 2022) Security and risk management across the platform, network security architecture.
Senior Architect, CTO Office — Icertis (Nov 2018 – Jul 2020) Threat & vulnerability management, customer engagement on security architecture.
Senior Developer Support Engineer — Microsoft (Dec 2012 – Oct 2013) Worked with the ASP.NET, IIS, and Windows Azure Websites team.
Earlier career: Software development roles at Decos (Netherlands), Public Consulting Group, and others — building the developer foundation that informs how I think about security.
Speaking
- Co-Speaker, DevCon 2017 Pune — Security in Azure (with Amit Andhale)
- Pune User Group — Science and Technology track (2017–2018)
Connect
I’m most active on LinkedIn where I share shorter thoughts between longer blog posts. Feel free to reach out — I’m always happy to discuss cloud security, architecture decisions, or AI risk with fellow practitioners.