Oct 2023 – Jun 2025 · 1 yr 8 mos · Greater London, England, United Kingdom · Hybrid

• Developed and integrated a comprehensive cyber threat intelligence and vulnerability management program for a major retail organization, enhancing incident response, threat detection, and risk remediation. This involved pioneering intelligence processes within the SOC, conducting in-depth threat actor research, and proactively monitoring diverse data sources to alert stakeholders, while also establishing robust vulnerability scanning, risk prioritization, and compliance processes across complex retail and corporate infrastructures.

Nov 2022 – Sep 2023 · 10 mos · Greater London, England, United Kingdom · Hybrid

• Served as a senior technical analyst at TikTok, spearheading the design and implementation of robust vulnerability management processes across cloud-native, mobile, and CDN environments. By integrating custom scanning policies, automated workflows, and security testing within CI/CD pipelines, the role ensured early detection and remediation of critical vulnerabilities, while leveraging enriched threat intelligence to drive prioritized patch management and enterprise-wide risk reduction initiatives.

Jan 2021 – Nov 2022 · 1 yr 10 mos · Welwyn Garden City, England, United Kingdom · Hybrid

• I led a team managing an end-to-end vulnerability and attack surface program across an expansive retail and digital infrastructure—supporting over global stores and endpoints. Developed robust scanning and remediation processes, including HackerOne bug bounty initiative. Collaborated with SOC, Red-Team functions to enhance detection, drive continuous exposure monitoring, and ensure PCI DSS compliance with zero vulnerability-related audit findings.

Oct 2018 – Dec 2020 · 2 yrs 2 mos

• I managed a diverse portfolio of client-focused cybersecurity projects by delivering comprehensive vulnerability management initiatives, ranging from risk-based VM, patch management, and security assessments to penetration testing for global infrastructures, resulting in measurable improvements in security posture and operational efficiency. Simultaneously, led the design and execution of bespoke Cyber Threat Intelligence and threat hunting programs across multiple sectors, leveraging frameworks like MITRE ATT&CK to provide strategic threat assessments, proactive detection, and executive-level insights that drove informed risk-based decisions.

Jul 2017 – Dec 2020 · 3 yrs 5 mos

Nov 2016 – Jun 2017 · 7 mos · Ahmedabad Area, India · Remote

• Conducted web, network penetration testing and red teaming exercises.

Jun 2016 – Nov 2016 · 5 mos · Ahmedabad, Gujarat, India

• I was responsible for playing the role of a DevSecOps engineer and collaborating closely with the DevOps team to enhance the security of the crypto wallet. My main duties comprised conducting security tests for iOS and Android apps, and imparting training to developers on secure coding best practices.

Sep 2014 – May 2016 · 1 yr 8 mos · Greater Ahmedabad Area · On-site

• I am performed various cybersecurity maturity assessments. I have conducted various types of penetration testing including network, web, thick client, and mobile application testing. Additionally, I have conducted physical security reviews for data centers.

Sep 2014 – Oct 2014 · 1 mo · Mumbai Metropolitan Region

Jul 2011 – Dec 2012 · 1 yr 5 mos · Greater Ahmedabad Area

• Performed security testing for in-house web applications and internal infrastructure.