Priyal Viroja

DevOps Engineer

Bengaluru, Karnataka, India11 yrs 4 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Over a decade of experience in security engineering.
Expert in vulnerability assessment and penetration testing.
Proven track record in securing IoT devices and applications.

Stackforce AI infers this person is a Cybersecurity expert specializing in IoT and application security.

Contact

Skills

Core Skills

Security EngineeringVulnerability AssessmentVulnerability ResearchSecurity Assessment

Other Skills

APT AnalysisAlgorithm DesignAmazon Web Services (AWS)Assembly LanguageCCloud SecurityComputer SecurityCybersecurityGitGoogle Cloud Platform (GCP)Information SecurityInfrastructure Security AssessmentInternet of ThingsJavaScriptLinux

About

AI-infused Security Engineer, Penetration Tester, Vulnerability Tinkerer, Internet of Things Threat Modeler ! Over a decade of experience, primarily focused on VAPT, Architecture Reviews, Security Engineering, DevSecOps, Information Security Compliances, and Vulnerability Research. Worked with startups and fast-growing companies, leading teams and initiatives to embed security from the ground up. In my spare time, I enjoy hunting for security bugs and keeping up with the digital evolution and hacker culture. On the whole, I work with anything that revolves around security landscape.

Experience

Tekion corp

2 roles

Associate Architect

Apr 2024 – Present · 1 yr 11 mos

Staff Security Engineer

Aug 2021 – Mar 2024 · 2 yrs 7 mos

Gojek

2 roles

Staff Security Engineer

Promoted

Dec 2020 – Jul 2021 · 7 mos

Security Engineer

Feb 2020 – Dec 2020 · 10 mos

Postman (api tools)

Security Engineer

Feb 2018 – Jan 2020 · 1 yr 11 mos · Bengaluru, Karnataka, India

Hubble connected ltd.

IoT Security Analyst

Jun 2016 – Feb 2018 · 1 yr 8 mos · Bengaluru, Karnataka, India

As a Security Analyst, I primarily focused on securing Hubble’s Web Apps, Mobile Apps, REST API, Cloud Infrastructure and IoT devices.
Key Responsibility:
● Conduct periodic BlackBox/GreyBox/WhiteBox VAPT of client applications, servers, and cloud.
● Enhance client security, utilizing the platform(browser, android, ios) provided security features.
● Enhance REST APIs, enforcing proper authentication, authorization, data input/output validations,
encryption in transit/rest, DDoS resistance, etc.
● Enhance the security of Hubble's Cloud Infrastructure, utilizing native AWS services such as IAM,
VPCs, Security groups, Network ACL's, KMS, AWS Cloud Trail, CloudWatch, Trusted Advisor, AWS
Inspector, etc.
● Build insightful monitoring, alerting, metrics/dashboards to find any anomalies or possible
intrusion.
● Assist server, app, firmware teams in mitigating vulnerabilities and closure of the same within the
release timeline of the development lifecycle.
● Coordinate with 3rd party security vendors in conducting VAPT and compliance audits of services,
products, and infrastructure.
● Evaluate firmware, P2P, talkback, streaming, IoT protocols from a security perspective.

Web Application SecurityMobile Application SecurityREST API SecurityCloud SecurityVulnerability AssessmentVAPT+1

K7 computing

Vulnerability Researcher

Jul 2014 – May 2016 · 1 yr 10 mos · Chennai Area, India

As a Vulnerability Researcher, I primarily focused on understanding the threat landscape for web, mobile, and systems.
Key Responsibility:
● Automated pulling security contents from Microsoft and Adobe security bulletins and integrated it with K7 security products.
● Performed web application and infrastructure security assessments for a payment gateway site to help pass the PCI-DSS audit.
● Performed internal infrastructure vulnerability assessment and penetration testing for a leading educational institute. As part of the engagement, conducted one day workshop on web application security.
● Published several blogs on the official K7 blog.

Vulnerability ResearchWeb Application SecurityInfrastructure Security AssessmentSecurity Assessment