Sujit Suryawanshi

Product Manager

Pune, Maharashtra, India8 yrs 3 mos experience
Most Likely To SwitchAI Enabled

Key Highlights

  • Expert in penetration testing and threat modeling.
  • Proven track record in securing high-impact applications.
  • Strong collaboration skills across engineering teams.
Stackforce AI infers this person is a cybersecurity expert specializing in application security and penetration testing.

Contact

LinkedIn

Skills

Core Skills

Application SecurityPenetration TestingThreat ModelingVulnerability Assessments

Other Skills

Android Application PentestingApplication Security ArchitectureArtificial Intelligence (AI)Binary ExploitationC++Cloud SecurityContinuous Integration and Continuous Delivery (CI/CD)CybersecurityDevSecOpsDockerDynamic Application Security Testing (DAST)Exploit DevelopmentInformation SecurityInformation Security AnalysisInfrastructure Penetration Testing

About

As a passionate Information Security Engineer, I specialize in securing high-impact products and applications at PayPal. With hands-on experience in penetration testing, threat modeling, and security architecture, I thrive on uncovering vulnerabilities and collaborating across teams to build robust, secure solutions. - Application, Offensive & Product Security along with Penetration Testing - Web, Mobile, Thick Client - Threat Modeling, Secure Code Review, and Vulnerability Assessments - SAST, DAST, and Secure SDLC integration - DevSecOps, Cloud Security, and Secure Architecture Principles I contribute to strategic design, documentation, security processes, secure cloud infrastructure, and lead security initiatives from the ground up. I'm currently focusing on expanding into Security Architecture, AI Security, and Cloud-native secure design. I believe in continuously learning, building with purpose, and mentoring others along the way. If you're working on security architecture, threat modeling, or AI security in modern systems, let’s connect and share insights.

Experience

Synack red team

Synack Red Team Researcher

May 2023Mar 2024 · 10 mos · Remote

Paypal

Information Security Engineer 3

Mar 2023Present · 3 yrs · Remote

Application SecurityOffensive SecurityPenetration TestingThreat ModelingSecurity Architecture

Ibm

Penetration Tester

Nov 2021Mar 2023 · 1 yr 4 mos

  • Conducted security assessments for IBM products including IBM ZSystems, Watson Health, IBM Cloud, Data & AI, and BlueworkLive, focusing on web, mobile, and infrastructure layers.
  • Reviewed high-level architecture and data flow diagrams (DFDs) to identify insecure design patterns and provide initial security feedback.
  • Collaborated with engineering teams to evaluate application security posture and discuss architectural improvements related to authentication, data handling, and trust boundaries.
  • Performed web, mobile (iOS/Android), infrastructure, and thick client penetration testing in alignment with OWASP Top 10 and SANS 25 standards.
  • Collaborated with development teams to triage and remediate vulnerabilities identified during security assessments.
  • Engaged with network and infrastructure teams to address findings from internal network security reviews.
  • Led threat modeling sessions using STRIDE and PASTA frameworks to proactively identify and mitigate design-level security risks.
Penetration TestingThreat ModelingVulnerability AssessmentsSecure Code Review

Firstcry.com (brainbees solutions pvt. ltd.)

Information Security Analyst

Dec 2018Nov 2021 · 2 yrs 11 mos

  • Performed penetration testing of internal web applications for warehouse management systems using black box and grey box methodologies.
  • Conducted penetration testing of FirstCry.com’s official Android application, utilizing both static and dynamic analysis techniques.
  • Executed internal and external network penetration tests using automated tools such as Greenbone Security’s OpenVAS, Nessus, and Acunetix.
  • Performed manual exploitation of vulnerabilities identified by automated scanners and communicated real-world impact to developers and management.
  • Participated in debrief calls to explain critical business logic vulnerabilities to development teams and provided actionable remediation guidance.
  • Prepared detailed penetration testing reports, ensuring clear documentation of findings and timely delivery within project deadlines.
Penetration TestingVulnerability AssessmentsNetwork SecuritySecurity Reporting

Infinity labs india

IT Support Engineer (Asset Management)

Jan 2017Jan 2018 · 1 yr

Education

Camp Education Societys Arvind B. Telang Arts, Commerce & Science College, Pune

Bachelor in Computer Application — Computer/Information Technology Administration and Management

Jan 2018Jan 2021

Stackforce found 100+ more professionals with Application Security & Penetration Testing

Explore similar profiles based on matching skills and experience

Manish S.

Manish S.

Lead Information Security Engineer

at Gameskraft

Bengaluru, India5 yrs 5 mos exp
Govind Sharma

Govind Sharma

Mobile Security Engineer

at Thales

Bhilwara, India3 yrs 8 mos exp
Mobile SecurityReverse Engineering
Shetu Shrey, CISSP

Shetu Shrey, CISSP

Security Lead

at Victoria’s Secret & Co.

Bengaluru, India12 yrs 6 mos exp
Application SecurityDevSecOpsPenetration TestingSecurity ArchitectureVulnerability Assessment
Pardeep Battu

Pardeep Battu

Senior Security Engineer

at GoDaddy

Bengaluru, India10 yrs exp
Vaibhav Gupta

Vaibhav Gupta

Founder

at Appfend

Dublin, Ireland15 yrs 7 mos exp
Bhushan Nikam

Bhushan Nikam

Senior Manager

at Morgan Stanley

India11 yrs 6 mos exp
Riyaz Walikar

Riyaz Walikar

Co-Founder

at Kloudle

San Mateo, United States18 yrs 6 mos exp
Cloud Security
Karan Bhatt

Karan Bhatt

Engineer- Security [Consultant]

at Ajaib

Bengaluru, India3 yrs 7 mos exp
Application SecurityCloud SecurityPenetration TestingVulnerability Management