Karan Kapoor

DevOps Engineer

Delhi, India8 yrs 6 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Expert in transitioning teams to DevSecOps practices.
  • Proven track record in application and cloud security.
  • Skilled in penetration testing and vulnerability management.
Stackforce AI infers this person is a Security Engineer specializing in DevSecOps and cloud security within the SaaS industry.

Contact

LinkedIn

Skills

Core Skills

Application SecurityCloud SecurityPenetration TestingVulnerability Assessment

Other Skills

API TestingAcunetixAmazon Web Services (AWS)AppSecBurp SuiteCTFConfiguration AssessmentConfiguration ManagementContainer SecurityCyber-securityEthical HackingIncident ResponseInformation SecurityKali LinuxManual Testing

About

Leading product security vertical at Gartner to help the DevOps and Dev teams transition to DevSecOps practices. Shifting security left and stepping up the Blue team game. Previously worked as a security consultant. Skilled in AppSec, Vulnerability Assessment, Vulnerability Management, Penetration Testing, Information Security, Cloud Security, Container Security and Project Management. A Bachelor of Technology (B.Tech.) focused in Information Technology. AWS Certified - Solutions Architect Associate.

Experience

Gartner

4 roles

Manager Security Engineering

Promoted

Oct 2024Present · 1 yr 5 mos

  • I lead the product security vertical, guiding DevOps and Dev teams in transitioning to DevSecOps practices. My expertise spans application security, infrastructure / Cloud security, with a focus on Penetration Testing, CSPM, and comprehensive threat modeling. I am leading the enhancement of container security, conducting architecture and risk reviews, and driving effective incident response strategies to protect and empower our digital ecosystem.
AppSecVulnerability AssessmentVulnerability ManagementPenetration TestingInformation SecurityCloud Security+3

Lead Security Engineer

Mar 2023Nov 2024 · 1 yr 8 mos

Sr. Security Engineer 2

Promoted

Mar 2022Mar 2023 · 1 yr

  • Senior security engineer 2 at Gartner. Leading the product security vertical to help the DevOps and Dev teams transition to DevSecOps practices.
  • Responsibilities:
  • Cloud Security (AWS) - Prisma Cloud, AWS Security Hub, WAF, Bot protection
  • Infrastructure Security
  • Application Security - SAST, DAST, Open Source Security, Bug Bounty Programs, Penetration testing
  • Container Security - Kubernetes (EKS) Security
  • Threat Modelling, Architecture Reviews, Risk Reviews and Risk Mitigation
  • Incident Response - AppSec
Cloud SecurityApplication SecurityContainer SecurityThreat ModellingIncident Response

Sr. Security Engineer

May 2021Mar 2022 · 10 mos

Cloud SecurityRisk ReviewsThreat and Vulnerability ManagementApplication Security

Security compass

Security Consultant

Oct 2019May 2021 · 1 yr 7 mos

  • Penetration testing of web and cloud based native/hybrid applications
  • Internal and external network assessments including OSINT and threat modelling
  • Configuration assessment of cloud deployed systems. Assessing individual services and overall architecture of systems on AWS
  • Preparing comprehensive technical reports with business summaries and specific recommendations for developers/app teams for patching vulnerabilities
  • Automating testing activities using Python, Bash
  • Carrying out vulnerability Research. Writing detailed technical documents explaining vulnerabilities targeted at technical and non-technical audiences
Penetration TestingNetwork AssessmentsConfiguration AssessmentVulnerability ResearchTechnical ReportingVulnerability Assessment

Safe security

2 roles

Security Engineer

May 2018Sep 2019 · 1 yr 4 mos · India

  • Security engineer performing Web Application, Network and Thick client Vulnerability Assessment and Penetration Testing.
Vulnerability AssessmentPenetration Testing

Associate Security Analyst

Sep 2017May 2018 · 8 mos · India

  • Security Analyst performing Configuration Assessment of Servers, Endpoints, Databases, Network & Storage devices.

Partiko

Intern

Jun 2016Jun 2016 · 0 mo · New Delhi

  • Web Design intern.

Safe security

Intern

Jun 2015Aug 2015 · 2 mos

  • Formerly known as Lucideus Technologies. Security Research Intern.

Education

Dr Akhilesh Das Gupta Institute of Professional Studies

Bachelor of Technology (B.Tech.) — Information Technology

Jan 2013Jan 2017

Hansraj Model School

High school — Science

Jan 1998Jan 2013

Stackforce found 100+ more professionals with Application Security & Cloud Security

Explore similar profiles based on matching skills and experience

Manish S.

Manish S.

Lead Information Security Engineer

at Gameskraft

Bengaluru, India5 yrs 5 mos exp
Pankaj Gaikar

Pankaj Gaikar

Senior Manager Application Security

at CoinDCX

Mumbai, India8 yrs 4 mos exp
Infrastructure SecurityThreat & Vulnerability Management
Mukesh chaudhari

Mukesh chaudhari

Application Security Manager

at Paytm

India10 yrs exp
Penetration TestingVulnerability Assessment
Mohammad Y.

Mohammad Y.

Associate Consultant - Offensive Security

at CLA Global Indus Value Consulting

Mumbai, India10 mos exp
Network PentestingApplication PentestingVulnerability Assessment
Vartika Bhatt

Vartika Bhatt

Senior Product Security Engineer

at GoTo Group

Bengaluru, India7 yrs 2 mos exp
Soumya Gupta

Soumya Gupta

Associate

at Morgan Stanley

Bengaluru, India7 yrs 6 mos exp
Gauri G.

Gauri G.

Programmer Analyst

at Cognizant

India3 yrs 6 mos exp
Application SecurityPenetration Testing
Burhan Chhotaudepur

Burhan Chhotaudepur

Product Security Analyst

at HackerOne

India3 yrs 6 mos exp
Information SecurityNetwork SecurityPenetration TestingVulnerability AssessmentWeb Application Security