Tanmay Bhattacharjee — Operations Associate
Results-driven Product Security Engineer with extensive expertise in Secure Development Life Cycle Maturity Model implementation, comprehensive threat modeling, and cloud security architecture. Specializing in advanced vulnerability management encompassing both Internal Vulnerability Assessments (IVA) and External Vulnerability Assessments (EVA), with proven proficiency in diverse penetration testing methodologies including Internal Penetration Testing (IPT), External Penetration Testing (EPT), Web Application Penetration Testing (WAPT), API Penetration Testing (APIPT), Kubernetes Penetration Testing (K8sPT), and Cloud Penetration Testing (CloudPT). Demonstrated excellence in DevSecOps practices, seamlessly integrating security controls throughout the software development lifecycle while fostering collaborative purple team engagements that bridge offensive and defensive security capabilities. Skilled in conducting thorough secure code reviews, implementing Software Composition Analysis (SCA) frameworks, and developing comprehensive Software Bill of Materials (SBOM) and Component Bill of Materials (CBOM) documentation to ensure complete supply chain transparency. Passionate about advancing organizational cyber defense measures through innovative security solutions, risk-based vulnerability prioritization, and strategic threat intelligence integration. Committed to securing modern applications and infrastructure against rapidly evolving cyber threats through continuous security testing, automated security tooling, and comprehensive security awareness programs. Brings a unique combination of technical depth, strategic thinking, and hands-on experience in both offensive and defensive security disciplines, enabling effective identification, assessment, and mitigation of complex security risks across diverse technology stacks and deployment environments.
Stackforce AI infers this person is a Product Security Engineer specializing in cloud security and vulnerability management.
Location: Bengaluru, Karnataka, India
Experience: 18 yrs 5 mos
Career Highlights
- Expert in Secure Development Life Cycle implementation.
- Proficient in diverse penetration testing methodologies.
- Strong background in DevSecOps and vulnerability management.
Work Experience
R360 Group
Manager (1 yr 7 mos)
Assistant Manager (5 mos)
Lead Product Security (2 yrs 1 mo)
Senior Security Engineer (9 mos)
NULLCON
Leader, null Kolkata (1 yr 5 mos)
OWASP Foundation
Leader OWASP-KOLKATA (4 yrs)
Leader OWASP-KOLKATA (3 yrs 2 mos)
Indian Cyber Security Solutions
Information Technology Security Analyst (2 yrs)
Priarche technology pvt ltd
Network Security Engineer (7 mos)
Indian Army
Ex Army (10 yrs 11 mos)
Education
Bachelor of Arts (B.A.) at Indira Gandhi National Open University
Certified Data Science at Datamites
