Aug 2019 – Aug 2021 · 2 yrs

• Product Security (Cloud & application security), Compliance & Governance, Wireless Security, Infrastructure Security Assessment, Security Automation, Security Research | Independent Security Assessments/Audits for Adobe Cloud Tech platform and services.

Nov 2018 – Aug 2019 · 9 mos · Mumbai, Maharashtra, India

Nov 2017 – Sep 2018 · 10 mos · Mumbai, Maharashtra, India

• I am part of application security team here serving major financial customers. My major role involves the following expertise:
• Conducting Web/Mobile Application Security testing of in house applications and the applications and tools acquired by 3rd party vendors.
• Secure code review.
• Information gathering and vulnerability assessment using various independent tools including kali linux and mobile security frameworks.
• Worked closely with development team for various phases of Reporting process.
• Identified feasible research areas in InfoSec and impart/delegate this to internal team.
• Building, coordinating and implementing the knowledge base for manual test cases of Web AppSec, Mobile and Network VA in form of a checklist.
• Prepared Case Studies on unique bugs/methodology/technique found by any of the team member and channelize it to Top Management.

Oct 2016 – Oct 2017 · 1 yr · Bengaluru Area, India

• As part of the Global Information Security Team, my on-job responsibilities included performing the Technology Risk Assessments for web applications and mobile applications.

Mar 2014 – Oct 2016 · 2 yrs 7 mos · Mumbai Area, India

• Vulnerability Assessment and Penetration testing for one of the fortune top 10 clients :
• Vulnerability assessment and penetration testing of web applications along with preparing documentation of audit reports
• Manual security testing/ Penetration Testing
• Software Governance
• Knowledge of automated tools such as HP Webinspect, Checkmarx, IBM Rational AppScan, BurpSuite, Fiddler
• Code review as per security standards
• Have basic skills on network penetration testing as well
• Good knowledge of programming protocol
• Authentication and Access Control
• Security Portal Development using HTML 5, CSS and PHP 5
• Data Loss Prevention (Digital Guardian)
• AV Compliance and Troubleshooting (McAfee)
• Intrusion Prevention (HP Tipping Point and SMS)
• Incident Response and Management (Virus Attacks, Phishing, General Security Incidents etc.)

May 2012 – Jul 2012 · 2 mos · Hyderabad, India

• Basic concepts of gyro based navigation system, real time processing and their applications.