Saishiva K

Product Manager

Bengaluru, Karnataka, India11 yrs 9 mos experience
Highly Stable

Key Highlights

  • Expert in integrating security into CI/CD pipelines.
  • Proven track record in vulnerability management.
  • Strong advocate for secure coding practices.
Stackforce AI infers this person is a SaaS security expert with a strong focus on application and cloud security.

Contact

LinkedIn

Skills

Core Skills

Product SecurityDevsecopsPenetration TestingApplication SecurityAutomation

Other Skills

Azure Kubernetes ServiceBurp SuiteCI/CDCheckmarxCloud SecurityDASTDependency-TrackGitLab CIIncident ResponseKubernetesNessusOWASP ZAPPython (Programming Language)SASTSBOM

About

I’m a Senior Product Security Engineer who thrives on making software safer without slowing innovation. Over the years, I’ve secured web apps, thick‑client software, and containerized microservices, working hands‑on with developers and DevOps teams to build security into the product from day one. I bring a strong mix of application security, web security, container security, and DevSecOps expertise - from running SAST, DAST, and SCA scans to designing secure coding practices and performing vulnerability assessments. I’ve worked extensively with OWASP standards, NIST frameworks, and a full range of security tools including Burp Suite, OWASP ZAP, Dependency-Track, Nessus, Checkmarx, Semgrep, and Trivy, plus custom automation in Python and Bash. Whether it’s embedding security guardrails in CI/CD, managing supply chain security with SBOMs, or mentoring teams on secure development, I aim to be both a guardian and an enabler — helping teams ship faster and safer.

Experience

Whatfix

Senior Product Security Engineer

Mar 2023Present · 3 yrs · Bengaluru, Karnataka, India · On-site

  • As a Product Security Engineer at Whatfix, I work at the intersection of application security, cloud infrastructure, and secure development practices to ensure the safety, compliance, and resilience of our SaaS products.
  • Highlights:
  • Lead secure SDLC initiatives by integrating security tools (SAST, DAST, SCA, and secrets scanning) into CI/CD pipelines.
  • Partner with DevOps and engineering teams to design, review, and implement security controls across Kubernetes-based microservices on Azure Kubernetes Service (AKS).
  • Conduct threat modeling and security design reviews for new features and architecture changes.
  • Drive vulnerability management across application, cloud, and third-party dependencies - ensuring timely triage and remediation of high-impact issues.
  • Implemented SBOM generation in build pipelines and leveraged Dependency-Track to run FOSS scans, enhancing supply chain security visibility.
  • Collaborate cross-functionally to improve incident response readiness and conduct security awareness training.
  • Increased developer adoption of security best practices via clear guidance, tooling, and collaborative processes.
Product SecurityApplication SecurityCloud SecurityDevSecOpsSASTDAST+8

Virsec systems

Senior Security Engineer

Nov 2021Apr 2023 · 1 yr 5 mos · Bengaluru, Karnataka, India

  • Involved in defining security test plans, strategy, and execution.
  • Highlights:
  • Conducted regular security assessments and penetration tests on the company's web and thick-client applications to identify and mitigate security vulnerabilities.
  • Implemented secure coding practices and standards in the development of new applications and features.
  • Worked closely with the development team to ensure that applications were designed and implemented with security in mind.
  • Conducted regular training sessions for developers on secure coding practices and common security vulnerabilities.
  • Integrated Checkmarx, Nessus, and Anchore SCA scan as part of GitLab CI pipeline.
Security AssessmentsPenetration TestingSecure Coding PracticesCheckmarxNessusGitLab CI+1

Dell technologies

2 roles

Test Senior Engineer

Jul 2014Nov 2021 · 7 yrs 4 mos · Bengaluru Area, India

  • Role: Security Test Engineer
  • Period: Dec 2017 – Oct 2021
  • Domain: Systems Management – Dell EMC OpenManage Products
  • Details: Working as a security test engineer for systems management products. Involved in defining security test strategy and executing it.
  • Highlights:
  • Worked as a product security engineer for Dell EMC OpenManage Products.
  • Collaborated with product architects to derive comprehensive security
  • requirements and test plans.
  • Worked with developers to articulate security testing controls and design needs.
  • Identified and developed tools that could assist in the security testing
  • Uncovered design and security flaws in the product and recommended best practices to be followed.
  • Role: Automation Lead
  • Period: Jul 2014 – Dec 2017
  • Domain: Systems Management - Dell EMC OpenManage Products
  • Details: Worked as an automation lead engineer for system management products. Contributed to developing the automated regression test suite and also automation framework enhancement and design.
  • Highlights:
  • Building and maintaining test automation architecture, designs, and implementations.
  • Leveraged WSMan, SNMP, and RedFish protocols for automating management tasks.
  • Developed ZERO touch execution of automation suite.
  • Responsible for code reviews and enforcing code quality standards.
Security Test StrategySecurity Testing ControlsAutomationTest Automation ArchitectureApplication Security

Intern

Feb 2014May 2014 · 3 mos · Bengaluru Area, India

  • - Worked on installation and configuration of OpenStack using “Packstack” and “Dell crowbar”.

Education

University Visvesvaraya College of Engineering

Bachelor of Engineering (BE) — Computer Science Engineering

Jan 2010Jan 2014

Stackforce found 100+ more professionals with Product Security & Devsecops

Explore similar profiles based on matching skills and experience

Mukesh chaudhari

Mukesh chaudhari

Application Security Manager

at Paytm

India10 yrs exp
Penetration TestingVulnerability Assessment
Tushar Verma

Tushar Verma

SME - R&D Exposure Management

at NST Cyber - Your Trusted Enterprise CTEM Partner

South Mumbai, India3 yrs 9 mos exp
Application SecurityCloud Security
Manoj kumar M

Manoj kumar M

Assistant Manager Cyber Security

at BNP Paribas

Coimbatore, India9 yrs 7 mos exp
Karthik B.S

Karthik B.S

Director of Product Security

at Finastra

Orlando, United States13 yrs 1 mo exp
Application SecurityCyber SecurityDevSecOpsInformation SecurityPenetration Testing
Anand Tapikar

Anand Tapikar

Director Cyber security

at GE Healthcare

Bengaluru, India28 yrs 9 mos exp
Cloud securityData SecuritySecurity Architecture Design
NIKHIL KUMAR GANDLA

NIKHIL KUMAR GANDLA

Application Security Manager

at Bajaj General Insurance

Hyderabad, India6 yrs 6 mos exp
Application SecurityCyber Risk ManagementCyber SecurityInformation SecurityRisk Assessment
FAAIZ AHMED

FAAIZ AHMED

AEH

at Accenture in India

Jaipur, India0 mo exp
Pankaj Gaikar

Pankaj Gaikar

Senior Manager Application Security

at CoinDCX

Mumbai, India8 yrs 4 mos exp
Infrastructure SecurityThreat & Vulnerability Management