Aug 2021 – Mar 2025 · 3 yrs 7 mos · Hyderabad, Telangana, India

• ● Executed penetration testing for iOS applications including Linq Mobile Manager (LMM), My CareLink Heart (MCLH), and CareLink Express Mobile(CLEM).
• ● Performed comparative penetration testing on mobile obfuscation tools for MyCareLink Heart app on Android and iOS platforms, evaluating their effectiveness and suitability for application security enhancement.
• ● Established Android and iOS penetration testing environments for My CareLink Heart app, broadening mobile security testing capabilities.
• ● Engineered and deployed a Dependency Track server with PostgreSQL and Nginx reverse proxy, incorporating HTTPS support for secure operations.
• ● Generated and analyzed Software Bill of Materials (SBOMs) for internal projects, improving software supply chain visibility.
• ● Monitored and optimized Threat Intelligence Using tools like Sternum and Recorded Future, enhancing overall security posture.
• ● Designed a comprehensive threat model for Medtronic Application Services (MAS) Using STRIDE, identifying potential security risks.
• ● Participated in Secure Code Warriors challenges and encouraged development teams for inculcating secure coding as a part of their development cycle.
• ● Documented and Delivered Comprehensive Security Risk Assessments(SRAs), Security Risk Management Reports (SRMRs) and MDS2(Manufacturer Disclosure Statement) for multiple products, ensuring regulatory compliance.

Feb 2021 – Jul 2021 · 5 mos · Hyderabad, Telangana, India

• ● Implemented Software Bill of Materials (SBOM) across multiple projects, enhancing visibility into
• third-party component dependencies within Medtronic's proprietary software and applications.
• ● Leveraged SBOMs to conduct comprehensive vulnerability assessments of third-party components,
• utilizing tools such as Dependency Track and cross-referencing with the National Vulnerability Database
• (NVD).
• ● Engineered SBOM solutions for legacy products and applications, employing industry-standard tools
• including Dependency Check, CycloneDx, SPDX, and Cocoa Pods.
• ● Developed and implemented custom Python scripts to streamline SBOM generation and analysis
• processes, successfully completing a pilot project for third-party vulnerability management.
• ● Made a basic threat model for a Medtronic insulin pump, hence learning how to make Threat Models and
• how to use Microsoft Threat Modelling Tool.

May 2019 – Jun 2019 · 1 mo · Faridabad Area, India · On-site

• ● Developed an automated tool to extract WhoIs information for multiple servers, streamlining the data
• gathering process for the Call Data Analysis Systems (CDAMS) project.
• ● Engineered custom Python scripts for web scraping and socket programming, enhancing data collection
• capabilities to extract and locally store data from the South Asia Terrorism Portal.

Dec 2018 – Mar 2020 · 1 yr 3 mos · Vellore Area, India · On-site

• Core Committee Member of the Design Team at the Student Chapter Instrument Society of India at VIT, Vellore