Extensive practical cloud-native experience, particularly on AWS (e.g., VPC, IAM, KMS, Lambda, ECS/EKS, API Gateway, CloudFront, Route 53, Secrets Manager, Certificate Manager, CloudWatch, WAF), with secure-by-default patterns and cost-aware scaling. Sets the vision and roadmap for agentic capabilities across the CIAM platform (e.g., autonomous runbooks for cert rotations, policy-as-code validation agents, incident triage/remediation agents, and developer assistants for API/SDK integration), ensuring safety, guardrails, and auditability.