Feb 2023 – Jul 2023 · 5 mos · Bengaluru, Karnataka, India · Hybrid

Dec 2021 – May 2022 · 5 mos

• Implemented & automated a near real-time in-house SIEM alert & notification system for Fraud Detection using the ELK stack.Formulated a comprehensive information system in New Relic using AWS S3 access logs, AWS Cloud Trail logs, and
• ELB logs and Improved the granular visibility of internal infrastructure by 30% through integrated dashboards.
• Reduced the incident response time by 20% by instituting smart alert correlation rules and improved metrics.
• Assessed security posture of FinTech's mission-critical web apps & payment gateway APIs used by 335M consumers.Improving Security of Critical Infrastructure like UPI, and Wallet Services by threat visibility through data gathering & enrichment and reporting to the product team.
• Conducted Red teaming on Internal Infrastructure to identify assets, collect human intelligence, and assess vulnerabilities.
• Managed the following security applications: ELK, Splunk, F5,New Relic, Burp, Owasp Threat Dragon, Salt Security, Data theorem.

Jun 2021 – Present · 4 yrs 11 mos

• Started Active and passive reconnaissance on the clients.
• Tested for CVEs and owasp Top-10 based vulnerabilities.

Jul 2020 – Sep 2020 · 2 mos · Delhi, India

• Implemented automated unit testing for Website and API stability using TestCafe scripts.
• Added multiple features in the DevSecops cycle including telemetry and Grafana pipelines.
• Utilized Atlassian toolset for workflow (i.e, Bitbucket for version control, JIRA for Agile/Scrum development process).
• Improved SEO of the existing website by removing Junk JS using Google Lighthouse with a 52% increase in traffic.
• Worked with development teams to establish security requirements early in the SDLC and contributed to security subject matter expertise during the development of new projects and releases.
• Performed VAPT with a Black/Grey Box perspective on multiple instances of SAFE Enterprise (Inhouse product).