Sanskar R.

Product Manager

Bengaluru, Karnataka, India2 yrs 6 mos experience
AI EnabledAI ML Practitioner

Key Highlights

  • Expert in identifying and mitigating security vulnerabilities.
  • Strong background in Red Teaming and Threat Modeling.
  • Passionate about cybersecurity awareness and training.
Stackforce AI infers this person is a Cybersecurity Specialist with a focus on Fintech and Offensive Security.

Contact

LinkedIn

Skills

Core Skills

Cloud SecuritySecurity ArchitectureVulnerability ManagementAutomationPenetration TestingSecurity AutomationSecurity ComplianceVulnerability Assessment

Other Skills

AdministrationAndroid Penetration TestingAutomation & ToolingBug Bounty ManagementBug Bounty TriagingCI/CDCI/CD IntegrationCTFCloud & Infrastructure SecurityCollaborationCommunicationComplianceCyber Threat Hunting (CTH)CybersecurityCybersecurity Tools

About

ETHICAL HACKER | RED TEAMER | OFFENSIVE SECURITY ENTHUSIAST Hi there! I am a Product Security Engineer with expertise in Web, Mobile (Android/iOS), API, Cloud Security, LLM, and Infrastructure/Network penetration testing. I specialize in identifying and mitigating security vulnerabilities before they become threats. My deep understanding of Red Teaming, Threat Modeling, Architecture Review, and Secure SDLC/Code Review allows me to strengthen security at every stage of the development lifecycle. What I love most: Breaking things to make them safer. I thrive on advanced offensive security tactics and continuously explore emerging attack vectors to stay ahead of adversaries. Beyond traditional vulnerabilities, I have a keen eye for business logic flaws, uncovering security gaps that automated tools often miss. My passion for cybersecurity extends beyond just finding vulnerabilities—I actively lead cybersecurity awareness training sessions within my organization, ensuring that teams understand modern cyber threats and best security practices. To keep my skills sharp, I compete in CTFs, researching and applying new attack techniques in real-world scenarios. I am always open to collaborations, knowledge-sharing, and discussions on offensive and defensive security. If you're working on an exciting cybersecurity project or just want to chat about the latest threats and methodologies, let's connect!

Experience

Slice

Product Security Engineer

Sep 2025Present · 6 mos · Hybrid

  • As a Product Security Engineer, I focus on embedding security seamlessly into every phase of the software development lifecycle through a “Shift-Left” approach. I collaborate closely with product and development teams to ensure security acts as a catalyst for innovation, not a blocker.
  • Bug Bounty Management & Triage: Lead the triage, validation, and prioritization of external vulnerability reports. Collaborate with researchers and internal stakeholders to ensure timely and effective remediation.
  • Security Architecture Reviews: Perform comprehensive architecture and design reviews — from product requirement discussions (PRD) through deployment — ensuring that every solution is secure by design.
  • Automation & Tooling: Build and maintain automation frameworks for security release sign-offs, CI/CD integration, and continuous monitoring — improving developer efficiency while strengthening organizational security posture.
  • Developer Collaboration: Work hand-in-hand with engineers as both a security partner and a developer, driving centralized, scalable solutions that align with diverse system architectures.
  • Cloud & Infrastructure Security: Design and implement automation for cloud security and compliance across hybrid environments, enabling consistent and proactive protection.
  • Secure AI/LLM Initiatives: Develop internally hosted, secure LLM-powered automation tools that accelerate development, enhance code quality, and reduce risk.
  • Passionate about building scalable, automated, and developer-centric security solutions that empower teams to deliver faster and safer in a fintech environment.
Bug Bounty ManagementSecurity Architecture ReviewsAutomation & ToolingCloud & Infrastructure SecuritySecure AI/LLM InitiativesCloud Security+1

Uni cards

Security Engineer - I

Oct 2024Sep 2025 · 11 mos · Hybrid

  • Integrated GitSecrets and Gitleaks into CI/CD pipelines to prevent hardcoded secrets in commits.
  • Led a comprehensive secrets audit; identified hardcoded secrets in YAML files and remediated them by migrating sensitive data to a secure secrets manager.
  • Supported and streamlined security audits like PCI DSS and CIBIL by implementing necessary controls and collecting audit evidence.
  • Enforce cloud and Kubernetes security best practices by reviewing component configurations before deployment by the SRE team.
  • Perform internal infrastructure penetration testing to identify architectural weaknesses and ensure secure internal environments.
  • Conduct Web, Mobile, API penetration testing before production deployment to identify and mitigate vulnerabilities.
  • Collaborate closely with developers to triage findings, retest fixes, and manage secure pull request merges to the production API gateway.
GitSecretsGitleaksSecurity AuditsCloud SecurityKubernetes SecurityPenetration Testing

Deloitte

2 roles

Security Consultant

Jun 2024Oct 2024 · 4 mos

Senior Security Analyst

Aug 2023May 2024 · 9 mos

  • Currently immersed in a dynamic array of technology stacks, actively engaging in mobile (Android/iOS), Web, API, Network, thick client applications and LLM penetration testing.. Dedicated to ongoing learning and continual achievement.

Hackerone

Security Researcher

Apr 2021Jul 2022 · 1 yr 3 mos · Remote

  • DELIVERABLES: Identify the scope
  • Recon and gather as much information
  • Vulnerability scanning and port scanning on given Target
  • Try injection techniques in different parameters and try to find race conditions
  • Pentest on every end-point and on every sub domain we found .
  • Try to exploit attacks like directory traversal sql injections , xss
  • After finding vulnerability able to create impact .
  • Creating a detailed report with POC
Vulnerability ScanningPenetration TestingReporting

Hack the box

Pro Hacker

Jun 2020Feb 2022 · 1 yr 8 mos · Remote

Education

Jawahar Navodaya Vidyalaya - JNV

12th — Mathematics and Computer Science

Jan 2014Jan 2018

Stackforce found 100+ more professionals with Cloud Security & Security Architecture

Explore similar profiles based on matching skills and experience

Farhad K.

Farhad K.

Executive Cloud Security Architect

at CGI

Munich, Germany12 yrs 6 mos exp
Cloud SecurityIdentity and Access Management (IAM)Microsoft 365Security Information and Event Management (SIEM)
Nisha kumari

Nisha kumari

Associate

at Morgan Stanley

Bengaluru, India7 yrs 9 mos exp
Josh Frantz

Josh Frantz

Senior Manager, Security Engineering

at CoreWeave

Fond du Lac, United States11 yrs 3 mos exp
LeadershipSecurity
Sanoj Mahesan

Sanoj Mahesan

Information Security (Nasdaq Inc.)

at Market leading global FinTech in EMEA, Americas

Mumbai, India15 yrs 3 mos exp
CybersecurityInformation Security ManagementPenetration TestingRisk and Compliance
Prajith Shetty

Prajith Shetty

Instructor

at NxtLeap Learn

Mangaluru, India4 mos exp
Cyber Risk ManagementCybersecurityDigital ForensicsNetwork SecurityProject Management
PJ

Pragadeesh Jothimani

Head of Security Engineering

at GoTo Group

Bengaluru, India10 yrs 4 mos exp
LeadershipOffensive SecuritySecurity EngineeringTeam ManagementVulnerability Assessment
Arun Govindasamy

Arun Govindasamy

Director of Application Security

at Upstox

Bengaluru, India17 yrs 10 mos exp
Ravi Yadav

Ravi Yadav

Global Head, Cybersecurity Business Unit at Tata Consultancy Services

at Tata Consultancy Services

Atlanta, United States22 yrs 9 mos exp
Cloud SecurityCyber SecuritySecurity Strategy DevelopmentRisk ManagementNetwork Security