Vivek Srivastava

Operations Associate

Noida, Uttar Pradesh, India12 yrs 9 mos experience
Highly Stable

Key Highlights

  • Led successful integration of security in SDLC.
  • Developed robust Application Security Standards.
  • Recognized as a key leader in Information Security.
Stackforce AI infers this person is a seasoned Application Security professional in the SaaS industry.

Contact

LinkedIn

Skills

Core Skills

Application SecuritySecure SdlcSecurity AwarenessPenetration TestingVulnerability Assessment

Other Skills

API TestingApplication Security ArchitectureApplication Security AssessmentsBlack Box TestingBoot CampCompliance (GRC)CybersecurityDASTEthical HackingExceptional mentor & coachGovernanceInfo SecInformation SecurityInformation Security AnalysisInformation Security Standards

About

At Clearwater Analytics, the focus is on fortifying security frameworks, where leadership in Application Security Development is not just a role but a commitment to excellence. With a strategic approach, our team has embedded security practices into every phase of the SDLC, ensuring vulnerabilities are detected and mitigated swiftly. My responsibility extends to mentoring Application Security Engineers, fostering an environment where proactive security management is the norm. Through the integration of SAST, DAST, and SCA tools, we've established robust Application Security Standards that serve as the backbone for secure mergers and acquisitions, solidifying Clearwater Analytics' defense against cyber threats.

Experience

Kpmg

Manager - Application Security Enablement

Jan 2025Present · 1 yr 2 mos · Noida, Uttar Pradesh, India · Hybrid

Clearwater analytics

Senior Application Security Engineer

Apr 2022Jan 2025 · 2 yrs 9 mos · Noida, Uttar Pradesh, India

  • Leadership in Application Security Development: Spearheading the enhancement of Application Security posture, aligning strategies with company objectives.
  • Leading and mentoring a team of Application Security Engineers; served as Scrum Master to drive project success.
  • Integration of Security in SDLC: Embedded security practices across all SDLC phases, shifting security left to detect and mitigate vulnerabilities early.
  • Development of Application Security Standards: Establishing comprehensive Application Security Standards and Secure SDLC concepts aligned with security principles for mergers and acquisitions.
  • Implementation of Security Tools and Practices: Deploying SAST, DAST, and SCA tools across R&D teams and initiated internal penetration testing for Web Applications and APIs.
  • Security Awareness and Training Programs: Launching the Security Champions program and developed
  • Secure Coding training modules and boot camps to promote a security mindset.
  • Achievements:
  • Application Security Standards: Developed and successfully implemented robust Application Security Standards, raising the security posture of the organization.
  • Secure SDLC Integration: Designed and integrated Secure SDLC concepts across all projects, ensuring seamless alignment during acquisitions and mergers.
  • Key Leader in Information Security: Recognized as a key leader in Information Security for the India location, serving as the primary liaison between R&D and Information Security teams.
  • Award for Excellence: Received the "Top Performer" award from the Chief Information Security Officer for outstanding contributions to Application Security.
Application SecuritySecure SDLCSASTDASTSCAVulnerability Assessment+3

Global payments inc.

Senior Information Security Analyst (Application Security)

Mar 2016Apr 2022 · 6 yrs 1 mo · Pune, Maharashtra, India

  • Led Security Champions Program: Managed 90 Security Champions across Asia Pacific and the Middle East, extending Application Security efforts within their segments.
  • Penetration Testing & Bug Bounty: Conducted penetration tests for Web Applications and APIs.Validated and assigned severity to vulnerabilities from Hackerone reports.
  • Training & Knowledge Sharing: Held bi-weekly sessions and monthly Secure Coding training. Developed content for Security Boot Camps, including CEH material.
  • DAST Administrator: Administered DAST for effective security testing.
  • Single Point of Contact: Acted as the main contact for Application Security in TSYS India.
  • Achievements:
  • Handled Critical Vulnerabilities: Secured web applications during the Log4j Zero-Day vulnerability.
  • Organized InfoSec Hackathon: Led the India InfoSec Hackathon in February 2022.
  • Awarded for Excellence: Received the STAR Award from the Chief Information Security Officer.
Penetration TestingSecurity Champions ProgramDASTSecure CodingTrainingSecurity Awareness

Dell technologies

Senior Associate

Jul 2013Mar 2016 · 2 yrs 8 mos · Noida, Uttar Pradesh, India

  • Performed DAST Scans on the Web Applications
  • Vulnerability Assessment.
  • Received On-Spot Cash Award from Dell for the work delivered to its client.
  • Earned Bronze Award from Dell for the work delivered to its client.
DASTVulnerability Assessment

Education

KRISHNA ENGINERING COLLEGE, GHAZIABAD

Bachelor of Technology - BTech — Information Technology

Aug 2009Jun 2013

St. Thomas College, Lucknow

Intermediate — Science and Computers

Jan 2008Present

St. Thomas College, Lucknow

High School

Jan 2006Present

Stackforce found 100+ more professionals with Application Security & Secure Sdlc

Explore similar profiles based on matching skills and experience

Akhil Mahendra

Akhil Mahendra

Security

at Scapia

Bengaluru, India11 yrs 3 mos exp
DevSecOpsSecurity Engineering
SS

Shivendra S.

Chief Information Security Officer

at Emeritus

Dubai, United Arab Emirates16 yrs 3 mos exp
Application SecurityGovernance, Risk and Compliance (GRC)Information SecurityNetwork Security
Yogi Kortisa

Yogi Kortisa

Senior Offensive & Application Security Engineer

at Batam Indonesia Free Zone Authority

Batam, Indonesia14 yrs 2 mos exp
Application SecurityVulnerability ManagementDevSecOpsPenetration TestingInformation Security Consulting
Karthik B.S

Karthik B.S

Director of Product Security

at Finastra

Orlando, United States13 yrs 1 mo exp
Application SecurityCyber SecurityDevSecOpsInformation SecurityPenetration Testing
Atul kishor Jaiswal

Atul kishor Jaiswal

Senior Security Engineer

at CRED

Bangalore, India8 yrs 11 mos exp
Cloud SecurityIncident Response & ForensicsRed Teaming & Adversary SimulationVulnerability AssessmentVulnerability Management
GS

Gunwant Singh, Ph.D.

Senior Product Security Engineer

at Atlassian

Bengaluru, India17 yrs 3 mos exp
Application SecurityInformation Security
Sandeep D Menon

Sandeep D Menon

Senior Security Manager I

at McKinsey & Company

London, United Kingdom9 yrs 3 mos exp
Cloud SecurityCyber Risk ManagementCybersecurityGRCInformation Security Management
Anjali Ranjan

Anjali Ranjan

Senior Security Engineer

at Guidewire Software

Bengaluru, India7 yrs 1 mo exp
Application SecurityCybersecurityPenetration TestingSecurity Testing