Harpreet Dhiman

DevOps Manager

Bengaluru, Karnataka, India14 yrs 3 mos experience
Highly Stable

Key Highlights

  • Over 14 years of Cyber Security experience.
  • Expert in bridging security and engineering for product development.
  • Certified in multiple security frameworks and tools.
Stackforce AI infers this person is a Cybersecurity expert with extensive experience in secure product development and DevSecOps.

Contact

hpdhiman@gmail.comLinkedIn

Skills

Core Skills

Product SecuritySecurity EngineeringDevsecopsApplication SecuritySecurity ConsultingCybersecurityEndpoint Security

Other Skills

Security TestingRisk ManagementCybersecurity Risk AssessmentSecurity AutomationVulnerability ManagementVulnerability ScanningWeb Application SecurityInformation Security ManagementSecurity Information and Event Management (SIEM)Cisco NetworkingFirewallsConsultingMicrosoft AzureCybersecurity ToolsSCA

About

I have over 14 years of Cyber Security experience, specializing in Secure Design Review, Threat Modeling, Product Security, DevSecOps, Cloud Security, and Application Security.Currently working as a Staff Engineer at Beckman Coulter (Danaher). On a daily basis, I bridge the gap between Security and Engineering to enable secure product development.I've managed security programs for multiple products and major clients across Financial Services, Oil & Gas, and Commercial sectors. Previously, I led DevSecOps at Hitachi and delivered security solutions for top US clients at Deloitte.Certified in CCSP, AZ-500, CEH, and CCNA.

Experience

Beckman coulter diagnostics

Staff Engineer - Security

Sep 2023Present · 2 yrs 7 mos · Bengaluru, Karnataka, India · On-site

  • Conduct secure design reviews via Threat Modeling and end-to-end security testing prior to product releases.
  • Implement & integrate new security tools, manage SBOMs & SOUPs, and track 3rd party component vulnerabilities.
  • Develop remediation plans for open vulnerabilities, collaborate with cross-functional teams, and developers to ensure secure software development practices are followed.
  • Prepare Product Security roadmaps including Risk Management, Software Patch Records, Cybersecurity Risk Assessment, and Penetration Test Reports, and respond to the vendor security questionnaire.
  • Provide training to developers on the security context of vulnerabilities requiring code changes.
  • Manage vulnerability prioritization, internal and external penetration testing, and perform security analysis of Post-Market Investigations (PMI) for customer complaints.
Product SecuritySecurity TestingSecurity Engineering

Hitachi vantara

DevSecOps Engineer

Mar 2021Sep 2023 · 2 yrs 6 mos · Hyderabad, Telangana, India · Remote

  • Implementing DevSecOps processes in CI/CD pipelines.
  • Security Automation through Jenkins, Plugins, APIs and GitHub actions.
  • SCA, SAST, DAST, Vulnerability Management, Container & Infrastructure Security.
  • Security Champions discussions, Security Gating, Release dashboards, Go-To-Market planning.
  • Security baselines, Threat Modeling, SonarQube scans etc.
Application SecurityDevSecOps

Deloitte

Senior Solution Delivery Lead

Apr 2014Mar 2021 · 6 yrs 11 mos · Hyderabad, Telangana, India · On-site

  • Integration of Security Tools in CI/CD.
  • Application Security and Vulnerability Management.
  • Integrated Fortify SSC and tools into Azure cloud.
  • Led team of 5; technical SME for SAST/DAST/SCA.
  • Security Application Architecture.
  • KT & Training to team members.
  • Source Code reviews using manual / automated techniques.
  • Developed CIS Benchmark based Security hardening scripts.
Security ConsultingSecurity TestingApplication Security

First american (india)

Member of Technical Staff

Dec 2011Mar 2014 · 2 yrs 3 mos · Bengaluru, Karnataka, India · On-site

  • Infosec Ops Team; managed Endpoint Security.
  • Automated network & Web App Scanning.
  • Web Content Filtering Device management.
  • Qualys appliance deployment.
  • Managed Vulnerability scanning.
CybersecurityProduct SecurityEndpoint Security

Education

Rajiv Gandhi Prodyogiki Vishwavidyalaya

Bachelor of Engineering - BE — Electronics and Communications Engineering

Stackforce found 100+ more professionals with Product Security & Security Engineering

Explore similar profiles based on matching skills and experience

Nikhil Mittal

Nikhil Mittal

Founding Security Engineer

at Clazar

Pune, India8 yrs 11 mos exp
Aniruddha Biyani

Aniruddha Biyani

Information Security

at Prophecy

Bengaluru, India10 yrs 3 mos exp
Rupender Singh

Rupender Singh

Senior Product Security Engineer

at Housing.com

Gurugram, India4 yrs 1 mo exp
Application SecurityVulnerability ManagementSecurity Automation
Komal Preet Kaur

Komal Preet Kaur

Head of Security Engineering

at Jumio Corporation

Bengaluru, India13 yrs exp
Application SecurityCloud SecurityConsultingLitigation SupportPatent Analysis
Shubham Pandey

Shubham Pandey

Senior Engineer

at Target

Bengaluru, India7 yrs 3 mos exp
Saurabh Arora

Saurabh Arora

Vice President Security engineering

at ZEE - Technology & Innovation

Gurugram, India15 yrs 6 mos exp
Cloud securityContent securityData securityIdentity managementInformation security
Satyam Nagpal

Satyam Nagpal

Lead Security Engineer

at CRED

Bengaluru, India7 yrs 3 mos exp
Indhiravelu Ezhumalai

Indhiravelu Ezhumalai

Senior Security Engineer

at slice

Chennai, India4 yrs 6 mos exp
Android securityCloud securityIncident responsePenetration testing