Kavyashree R

CEO

United Kingdom10 yrs 6 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Expert in cloud and Kubernetes security.
  • Led comprehensive security assessments at IBM.
  • Strong background in vulnerability management and remediation.
Stackforce AI infers this person is a Cybersecurity expert specializing in cloud and application security.

Contact

LinkedIn

Skills

Core Skills

Penetration TestingCloud SecurityApplication SecurityMobile Security TestingWeb Application Security Testing

Other Skills

API Security TestingAmazon Web Services (AWS)AutomationBlack Box TestingCSRFContainer OrchestrationCyber-securityCybersecurity ToolsDOCKERDynamic Security AssessmentsGoogle Cloud Platform (GCP)Information SecurityJavaKubernetesMicrosoft Azure

About

As Security Team Lead at IBM with over 4 years of experience in security leadership roles, I specialize in cloud and Kubernetes security, driving comprehensive assessments to safeguard diverse environments, including Web, API, Mobile, Network, and Cloud. My work is supported by my certifications in CEH, CKA, and eWPT, which align with my mission to ensure robust security practices. At IBM's Product Transformation Center Security, I lead teams to identify vulnerabilities, adhere to security and regulatory frameworks such as PCI DSS and HIPAA, and collaborate with development teams to deliver actionable remediation strategies. Using tools like Kube-hunter, Kube-audit, and Metasploit, we address emerging threats and reinforce the resilience of IBM's products.

Experience

Ibm

2 roles

Security Team Lead

Apr 2024Present · 1 yr 11 mos

Senior Penetration Tester

Oct 2021Mar 2024 · 2 yrs 5 mos

  • Penetration testing lead in Product Transformation Center Security
  • Conduct comprehensive security assessments across various platforms including Web, API, Mobile, Network, and Cloud environments.
  • Expertise in Containers, Kubernetes (IKS, Openshift) and security tools like Kube-hunter, Kube-audit, nmap , Nessus and Metasploit framework.
  • Prepare detailed executive reports as per OWASP, CVSS standards and adhere to security and risk frameworks and regulatory compliance frameworks like PCI DSS, HIPAA and lead closing meetings with product teams to discuss assessment findings and mitigation strategies.
  • Provide actionable remediation recommendations for identified vulnerabilities and collaborate with development teams to explain security impacts and lead closing meetings with product teams to discuss assessment findings and mitigation strategies.
  • Identify and implement automation opportunities to optimize processes and uphold security standards throughout the organization.
  • Demonstrate and possess excellent interpersonal, written, and oral communication skills
  • Collaborate on security initiatives and promote security standards across organization
Penetration TestingSecurity AssessmentsKubernetesCloud SecurityVulnerability ManagementRegulatory Compliance+2

Micro focus

Senior Security Consultant

Jun 2019Oct 2021 · 2 yrs 4 mos · Bangalore

  • Senior Security Consultant in Application Security.
  • Collaborate with developers to ensure secure product and microservices development.
  • Conduct comprehensive API and Web application security testing using advanced tools like Burpsuite Pro and Fortify WebInspect.
  • Perform manual penetration testing and develop proof-of-concept exploit examples.
  • Demonstrate strong technical writing and communication skills, and train internal teams on security testing processes.
Application SecurityAPI Security TestingWeb Application SecurityPenetration TestingTechnical Writing

Tata consultancy services

Security Consultant

Jul 2015May 2019 · 3 yrs 10 mos · Bengaluru, Karnataka, India · On-site

  • Security consultant in Digital Security.
  • Manual Dynamic Security Assessments on various Mobile client applications (iOS & Android) using tools like Proxy tools ( BURP, Charles, MITM proxy, fiddler, ZAP), Mobile Security testing tools (Cycript, apktool, Dex2jar, JDGUI, Drozer, enjarify, qark, Mobile Assistant, keychaindumper, sqlite3, binarycookiereader, SSL kill switch, adb and so on)
  • Static and Dynamic Web Application security testing on various Client Applications using tool like MicroFocus Fortify and Burp Suite Professional.
  • Ability to analyse test results and suggest mitigation to security problems.
Dynamic Security AssessmentsMobile Security TestingWeb Application Security TestingSecurity Analysis

Education

Dr. Ambedkar Institute Of Technology

Bachelor of Engineering (B.E.) — Electrical and Electronics Engineering

Jan 2011Jan 2015

Stackforce found 100+ more professionals with Penetration Testing & Cloud Security

Explore similar profiles based on matching skills and experience

Manish S.

Manish S.

Lead Information Security Engineer

at Gameskraft

Bengaluru, India5 yrs 5 mos exp
Pankaj Gaikar

Pankaj Gaikar

Senior Manager Application Security

at CoinDCX

Mumbai, India8 yrs 4 mos exp
Infrastructure SecurityThreat & Vulnerability Management
Mukesh chaudhari

Mukesh chaudhari

Application Security Manager

at Paytm

India10 yrs exp
Penetration TestingVulnerability Assessment
Mohammad Y.

Mohammad Y.

Associate Consultant - Offensive Security

at CLA Global Indus Value Consulting

Mumbai, India10 mos exp
Network PentestingApplication PentestingVulnerability Assessment
Vartika Bhatt

Vartika Bhatt

Senior Product Security Engineer

at GoTo Group

Bengaluru, India7 yrs 2 mos exp
Soumya Gupta

Soumya Gupta

Associate

at Morgan Stanley

Bengaluru, India7 yrs 6 mos exp
Gauri G.

Gauri G.

Programmer Analyst

at Cognizant

India3 yrs 6 mos exp
Application SecurityPenetration Testing
Burhan Chhotaudepur

Burhan Chhotaudepur

Product Security Analyst

at HackerOne

India3 yrs 6 mos exp
Information SecurityNetwork SecurityPenetration TestingVulnerability AssessmentWeb Application Security