Amarnath Waghmare

Operations Associate

Pune, Maharashtra, India11 yrs 9 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Over 9 years of experience in application security.
Expertise in penetration testing and vulnerability assessments.
Strong foundation in secure software development methodologies.

Stackforce AI infers this person is a seasoned Application Security Manager with a focus on SaaS and security best practices.

Contact

Skills

Core Skills

Product SecurityApplication SecurityPenetration Testing

Other Skills

Amazon Web Services (AWS)Application Security AssessmentsApplication TestingBlack Box TestingCCloud AdministrationCloud ComputingComputer NetworkingCybersecurityDevOpsDocker ProductsDynamic Application Security Testing (DAST)Front-End DevelopmentGoal SettingHypertext Transfer Protocol (HTTP)

About

As a Manager (Product Security) at BMC Software, I lead a team of engineers who ensure the application level security of our products and services. I have a Master of Technology in Application Security and a Bachelor of Technology in Computer Science from Shri Guru Gobind Singhji Institute of Engineering and Technology, Nanded. With over 9 years of experience in the software industry, With expertise in security testing encompassing penetration testing, SAST, and DAST, coupled with proficiency in assessing web, mobile, thick client, and API vulnerabilities, I bring a robust foundation in safeguarding digital assets. Additionally, my adeptness in SSDLC, threat modeling, architecture review and risk assessment, combined with a deep understanding of security standards such as OWASP, NIST, SANS, and CIS, ensures a comprehensive approach to fortifying systems against potential threats. I am passionate about creating secure and reliable solutions for our customers and partners, and advancing the field of application security.

Experience

Bmc software

Manager (Product Security Engineering)

Mar 2018 – Present · 8 yrs

Leading a dynamic team of security professionals, overseeing comprehensive security reviews, vulnerability assessments, and penetration testing efforts. Through the development and execution of a robust product security program, I successfully integrated secure design principles, threat modeling, and risk assessments across a diverse range of software products. Additionally, I fostered a culture of security consciousness and best practices by conducting employee training sessions and collaborated closely with development teams to remediate identified vulnerabilities and strengthen overall security posture, while also contributing to the implementation of secure coding practices and providing guidance on secure software development methodologies.

Product SecuritySecurity TestingVulnerability AssessmentPenetration TestingThreat ModelingRisk Assessment+2

Persistent systems

Senior Application Security Engineer

Jan 2015 – Nov 2018 · 3 yrs 10 mos · Pune, Maharashtra, India

As an Application Pentester, I specialized in identifying and mitigating security vulnerabilities within software and web applications. With expertise in conducting penetration tests, source code reviews, and dynamic application security testing (DAST), I have a proven track record of uncovering critical flaws and providing actionable recommendations to enhance security measures. Additionally, I excel in collaborating with development teams to implement secure coding practices and am well-versed in various security standards and frameworks such as OWASP, NIST, SANS. My work is underpinned by strong analytical skills, a keen eye for detail, and a deep commitment to safeguarding digital assets

Penetration TestingSource Code ReviewsDynamic Application Security Testing (DAST)Secure Coding PracticesSecurity StandardsApplication Security