Saurabh Jain

Security Engineer

Rajasthan, India5 yrs 10 mos experience

AI Enabled

Key Highlights

Expert in DevSecOps and API Security.
Proven track record in vulnerability assessments.
Strong leadership in cross-functional security initiatives.

Stackforce AI infers this person is a Cybersecurity Specialist with a focus on DevSecOps and Cloud Security.

Contact

Skills

Core Skills

DevsecopsApi SecurityCloud SecuritySecurity AssuranceDocumentationSecurity ConsultingMitigationSecurity Awareness

Other Skills

AI SecurityAmazon Web Services (AWS)Application SecurityArchitecture ReviewsArtificial Intelligence (AI)AutomationCommunicationCross-functional Team LeadershipCybersecurityEDREnterprise ArchitectureEthical HackingGenerative AIGenerative AI ToolsGovernance

About

Technical Skills 1. VA/PT (Web, Mobile, Network, APIs, Cloud) 2. DevSecOps & Infrastructure Security 3. Secure Code Review 4. Web Application Firewalls (Cloudflare WAF, Akamai) 5. Hardening machine images w.r.t. CIS Benchmarks 6. Experience in automation with shell & Python 7. Hands on experience with Nessus, BurpSuite, Qualys, Cloudflare, Akamai, VMWare, Genymotion, Kali, Metasploit, ffuf, Prisma Cloud, Drozer, Xposed, MobSF, Frida, gf, anew, sed, awk, httpx, waybackurls, findomain, sqlmap, netstat, ps, cURL, Postman Currently Upskilling On 1. DevSecOps 2. iOS Penetration Testing 3. Hands on experience with AWS 4. Kubernetes, Containers, Runtime Security 5. Active Directory Security 6. Advanced Programming alongside front-end frameworks and back-end technologies.

Experience

Stealth startup

Security Engineer II

Sep 2025 – Present · 6 mos · Delhi, India · Hybrid

Amazon Web Services (AWS)DevSecOpsAPI SecurityApplication Security

Syfe

Product Security Engineer

Aug 2024 – Mar 2025 · 7 mos · Gurugram, Haryana, India · On-site

Olx india

Product Security Engineer

Oct 2023 – Aug 2024 · 10 mos · Gurugram, Haryana, India · Hybrid

Cloud SecurityProduct SecurityDevSecOps

Mobikwik

2 roles

Senior Security Engineer

Promoted

Apr 2023 – Oct 2023 · 6 mos · Gurugram, Haryana, India

DocumentationRemediationIssue TrackingStakeholder ManagementWeb ApplicationsLeadership+23

Security Analyst

Aug 2021 – Mar 2023 · 1 yr 7 mos · Gurugram, Haryana, India

1. Performing periodic manual/automated vulnerability and penetration (VA/PT) tests on web applications, mobile (Android, iOS), APIs, Internal network & assets, AWS Cloud Infrastructure.
Assessment, Evaluation and performing PoCs for different enterprise and open-source cyber security solutions/toolings/softwares.
2. Orchestrating and helping the organization to be compliant for, not limited to PCI-DSS, ISO, NPCI, RBI PPI Master Directions, Vendor Risk Assessments, Due Diligence Assessments, DL SAR, SAR Tokenization, CICRA, Card-on-File Tokenzation etc.
3. Developing end-to-end CI/CD pipelines with the Shift Left ideologies & DevSecOps tooling, SAST, DAST, Secure Code Review (Manual & Automated)
4. Managing the Bug Bounty program for MobiKwik.
5. Imparting learning and awareness sessions for cross-teams to generate security awareness and hygiene.
Working in close proximity with different departments not limited to Board & Senior Management, Product, Business, Tech, Development, Quality Assurance, Android, iOS, Frontend, DevOps, Server Reliability, Legal to ensure expectations, requirements and alignments with their internal roadmaps/sprints with proper resources and feedback channels to ensure continuity of the security posture of the organisation.
6. Technical Writing : Developing, Maintaining & Supporting Enterprise Information & Datasets, preparing root cause analysis for Incidents, technical writeups for PoCs for in-house security assessments and exploits, report writing, creating policies and procedures.

DocumentationRemediationIssue TrackingStakeholder ManagementWeb ApplicationsLeadership+22

Metmox

Security Analyst

Dec 2020 – Jul 2021 · 7 mos · Hyderabad, Telangana, India

Part of the Digital Security Team
Key responsibilities include securing the cloud assets, resources via the Azure Security Center, and enforcing the compliance and regulations over the entire cloud environment.
Our team also worked with different tools like Proofpoint CASB, Tanium, Qualys, ServiceNow.

RemediationIssue TrackingMitigationSecurity ControlsMitigation StrategiesCommunication+3

Truworth infotec private limited

Information Security Analyst

Jun 2020 – Sep 2020 · 3 mos · Jaipur

During my tenure, I improved the security posture of the organization by
1. Conducting regular Vulnerability Assessments on their different web applications, mobile applications, and API endpoints.
2. Conducting different types of API Load tests using SOAPUI & LOADPro
3. Auditing the native as well as cross-platform mobile applications via SAST & DAST tools like MobSF, WebInspect, androbugs framework,

MitigationMitigation StrategiesKnowledge AcquisitionSecurity Awareness

Counselling & guidance cell 2018-19

Coordinator

May 2018 – May 2019 · 1 yr · The LNM Institute of Information Technology

Headed the Counseling & Guidance Cell - a team of 60 students responsible for organising Orientation for freshers and other events throughout the year.