sampath pendurthi — DevOps Engineer

I’m a Cybersecurity Professional specializing in web application security, penetration testing, and compliance in regulated industries (healthcare, pharma, and finance). With hands-on experience in OWASP top 10, SAST/DAST, SBOM, GDPR, HIPAA, and ISO 27001 Annex A, I bring both the attacker’s mindset and the defender’s discipline to secure critical systems. My background includes: Penetration Testing & Vulnerability Assessment: Skilled in identifying and exploiting security gaps (injection flaws, BOLA, authentication bypass, misconfigurations) using tools like Burp Suite, Frida, and custom Python scripts. Secure Development Lifecycle: Experience integrating SAST/DAST scanners into CI/CD pipelines, IDE plugins, and Polaris integration with Jenkins to ensure security from the first line of code. Regulatory & Compliance Alignment: Deep understanding of healthcare compliance frameworks (HIPAA, GDPR) and risk-based prioritization of vulnerabilities. Emerging Security Practices: Proficient in API security, cloud (AWS) hardening, container security (Docker, Kubernetes), and Zero Trust models. Currently, I am navigating a career transition while preparing for OSCP certification and aiming to join organizations where I can contribute to building secure applications end-to-end—from design to deployment—while also helping teams adopt secure coding practices. I’m passionate about bridging the gap between development and security, and I thrive in environments that challenge me to solve real-world security problems with creativity, precision, and accountability. 📩 Let’s connect if you’re working on application security, DevSecOps, or compliance-driven software projects.

Stackforce AI infers this person is a Cybersecurity Professional specializing in application security and compliance in regulated industries.

Location: Bengaluru, Karnataka, India

Experience: 4 yrs 4 mos

Skills

Vulnerability Management

Career Highlights

Expert in web application security and penetration testing.
Hands-on experience with OWASP top 10 vulnerabilities.
Proficient in integrating security into CI/CD pipelines.

Work Experience

Anko GCC

Engineer cyber security (4 mos)

UltraViolet Cyber

Senior Consultant (4 mos)

Black Duck

Professional Services Consultant | Sr Consultant (1 yr)

Synopsys Inc

Professional Services Consultant | Sr Consultant (8 mos)

Security Services Associate (2 yrs)

Andy InfoSec

Cyber Security Professional Trainee (1 yr)

TechHack Technologies

CyberSecurity research and development (2 mos)

Education

Bachelor of Technology - BTech at University College of Engineering, Vizianagaram

sampath pendurthi

DevOps Engineer

Bengaluru, Karnataka, India4 yrs 4 mos experience

Key Highlights

Expert in web application security and penetration testing.
Hands-on experience with OWASP top 10 vulnerabilities.
Proficient in integrating security into CI/CD pipelines.

Stackforce AI infers this person is a Cybersecurity Professional specializing in application security and compliance in regulated industries.

Contact

Skills

Core Skills

Vulnerability Management

Other Skills

Technical ReportsVulnerabilityPython (Programming Language)Linux System AdministrationKali LinuxWeb DesignWeb DevelopmentLinuxMySQLPHPJavaScriptHackingNetworkingLinux ToolsMetasploit