About

About

Hi, I’m Subodh Patil

I’m a Principal Information Security Architect based in Stuttgart, Germany, currently at Icertis — a global SaaS leader in Contract Intelligence. With nearly two decades in IT, I’ve spent the last several years focused on one thing: making cloud architecture genuinely secure, not just compliant on paper.

My path here is a little different from most security professionals. I started as a software developer — .NET, C#, building enterprise applications. That foundation means I understand security from the inside of the code outward, not just from audit checklists. I made a deliberate pivot toward security architecture around 2018 and haven’t looked back.


What I Write About

This blog is where I think out loud about the problems I encounter in practice. You’ll find deep-dives on:

  • Cloud Security Architecture — secure design patterns for Azure and SaaS platforms
  • Encryption & Key Management — from foundations to BYOK/BYOH and customer-managed keys at scale
  • Data Sovereignty & Residency — what multi-geo really means for SaaS vendors and their customers
  • AI Risk & Governance — trust boundaries, inference responsibility, and the emerging compliance landscape
  • Zero Trust — practical implementation, not the buzzword version

I write for security practitioners, architects, and engineering leaders who want substance over surface-level content.


Credentials & Certifications

  • 🛡️ ISC2 CISSP — Certified Information Systems Security Professional
  • 🤖 ISACA AAIR — Advanced in AI Risk (May 2026)
  • ☁️ Microsoft Certified: Cybersecurity Architect Expert
  • 🔵 Microsoft Defender for Cloud Black Belt
  • ☁️ Azure Cloud Security Consultant

45+ certifications spanning cloud, security, and architecture. View all verified badges on Credly →


Experience Highlights

Principal Information Security Architect — Icertis (Jul 2022 – Present) Leading strategic development and implementation of a comprehensive security program for a global SaaS platform. Focus areas: cloud security architecture, IAM, Zero Trust, compliance, and AI risk.

Senior Information Security Architect — Icertis (Jul 2020 – Jun 2022) Security and risk management across the platform, network security architecture.

Senior Architect, CTO Office — Icertis (Nov 2018 – Jul 2020) Threat & vulnerability management, customer engagement on security architecture.

Senior Developer Support Engineer — Microsoft (Dec 2012 – Oct 2013) Worked with the ASP.NET, IIS, and Windows Azure Websites team.

Earlier career: Software development roles at Decos (Netherlands), Public Consulting Group, and others — building the developer foundation that informs how I think about security.


Speaking

  • Co-Speaker, DevCon 2017 PuneSecurity in Azure (with Amit Andhale)
  • Pune User Group — Science and Technology track (2017–2018)

Connect

I’m most active on LinkedIn where I share shorter thoughts between longer blog posts. Feel free to reach out — I’m always happy to discuss cloud security, architecture decisions, or AI risk with fellow practitioners.