Amol Bhure

Director of Engineering

Bengaluru, Karnataka, India10 yrs 10 mos experience
Highly Stable

Key Highlights

  • Over 10 years of experience in information security.
  • Led security teams for India's largest online healthcare platform.
  • Expert in vulnerability assessment and penetration testing.
Stackforce AI infers this person is a seasoned Information Security expert in the Healthcare and SaaS industries.

Contact

ultral33t.amol@gmail.comLinkedIn

Skills

Core Skills

Application SecurityCloud SecurityLeadershipProject ManagementGovernance, Risk Management, And Compliance (grc)DevsecopsDevops SecuritySecurity ResearchDevopsMobile SecurityVulnerability Assessment And Penetration Testing (vapt)Business OwnershipSoftware DevelopmentSoftware Infrastructure

Other Skills

Algorithm AnalysisAlgorithmsAmazon Web Services (AWS)Android SecurityApplication Security ArchitectureAppsecArduinoBudget ManagementBurp SuiteBusiness Intelligence (BI)CC#C++CEHCapability Maturity Model Integration (CMMI)

About

As the Senior Engineering Manager - Information Security at PharmEasy (API Holdings), I oversee the entire Information Security charter for API Holdings, which includes 31+ subsidiaries - Pharmeasy, Thyrocare, Retailio, Docon, Aknamed, Dialhealth, Ascent, Redbook, Medlife, Healthiviti, and Digihealth. My team comprises Lead security engineers and security engineers who are responsible for ensuring the security of the company's web and mobile applications, infrastructure, data and GRC. API Holdings is India's largest online healthcare platform, catering to millions of customers and thousands of partners across the country. With over 10 years of experience in security research, penetration testing, threat modelling, secure code reviews, and cloud security, I embarked on my career as a software engineering intern at Yahoo. During this period, I developed web applications and backend systems. Subsequently, I joined Attify as a security researcher and progressed to lead the mobile and infrastructure security team. I hold multiple certifications and have publications in the security field, having actively participated in competitive coding challenges and security conferences. My mission is to construct secure and scalable solutions that safeguard the privacy and trust of PharmEasy's users and stakeholders.

Experience

10 yrs 10 mos
Total Experience
3 yrs
Average Tenure
1 yr 9 mos
Current Experience

Saviynt

Director Information Security

Sep 2024Present · 1 yr 9 mos · Bengaluru, Karnataka, India · Hybrid

  • Leading and managing the Application Security, DevSecOps, Red Team, Product & Platform Security, Cloud Security and GRC teams. Additionally, I handle customer engagements, providing support for security vulnerabilities and guiding them through remediation and mitigation controls. I also explain mitigation strategies, product security and architecture security in relation to Saviynt, ensuring customers understand how these controls strengthen the overall security posture.
Application SecurityGovernance, Risk Management, and Compliance (GRC)Cloud SecurityLeadershipIdentity & Access Management (IAM)IT Strategy+15

Pharmeasy

2 roles

Senior Engineering Manager - Information Security

Promoted

Oct 2023Sep 2024 · 11 mos · Bengaluru, Karnataka, India · Hybrid

  • I oversee the complete Information Security charter for API Holdings, which encompasses 31+ subsidiaries: Pharmeasy, Thyrocare, Retailio, Docon, Aknamed, Dialhealth, Ascent, Redbook, Medlife, Healthiviti, Digihealth,etc My team consists of Lead Security Engineers and Security Engineers who are accountable for ensuring the security of the company's web and mobile applications, infrastructure, data, and GRC.
LeadershipIT StrategyPeople ManagementVendor ManagementStakeholder ManagementProject Management+2

Engineering Manager - Information Security

Sep 2021Oct 2023 · 2 yrs 1 mo · Bengaluru, Karnataka, India · Hybrid

Team BuildingThreat ModelingGovernance, Risk Management, and Compliance (GRC)Cloud SecuritySecurity Architecture DesignKey Performance Indicators+4

Blockfi

Lead Security Engineer

Nov 2020Sep 2021 · 10 mos · Remote

  • Threat Modelling
  • Penetration Testing for Mobile, Network, API and Web
  • Managing AWS WAF
  • Secure Code Reviews
  • Humio Monitoring
  • Managing, Reviewing: HackerOne reports submitted by researchers or bounty hunters
  • Day-to-day Tools/Platform: BurpSuite, Humio, Synk, Tenable, Orca, Splunk, Trufflehog, DefectDojo etc
Team BuildingDevSecOpsProduct SecuritySecure Code ReviewApplication SecurityApplication Security Architecture+1

Attify inc.

3 roles

Lead Security Researcher

Oct 2018Oct 2020 · 2 yrs

  • In Attify I work with research team. Where I work on breaking into the most Secure Web and Mobile applications.
  • Web Application Security
  • Mobile Security
  • Infrastructure Security
  • DevOps Security
  • IoT Security (Only Software Related)
  • Performed various code assessments, Security auditing.
  • Alongside I work on IoT Security as well. Firmware explotation, BLE Hacking, Zigbee Hacking, Arduino, RPi, etc (Software related stuff)
  • And also deep contribution to various courses and training's such as Web Security, Mobile Security, Infrastructure Security, DevOps Security, IoT Security.
Team LeadershipProject ManagementProject DeliveryProject PlanningDevOps SecurityCloud Security+1

Senior Security Researcher

Dec 2016Oct 2018 · 1 yr 10 mos

  • Worked with research team. Where I work on breaking into the most Secure Web and Mobile applications.
  • Web Application Security
  • Mobile Security
  • Infrastructure Security
  • DevOps Security
  • IoT Security (Only Software Related)
  • Performed various code assessments, Security auditing.
Security ResearchResearch and Development (R&D)Internet of ThingsAmazon Web Services (AWS)DevOpsContinuous Integration and Continuous Delivery (CI/CD)+1

Mobile Security Expert

Jul 2015Dec 2016 · 1 yr 5 mos

  • Worked on more than 30+ Android and iOS pentesting projects. Also created new content (recent exploits) for Mobile Security Exploitation Course.
Web Application SecurityAndroid SecurityiOS SecurityVulnerability Assessment and Penetration Testing (VAPT)Mobile pentestingAppsec+2

The secure lab

Founder

May 2013Oct 2020 · 7 yrs 5 mos · Remote

  • I managed few corporate clients from Austria, Denmark, Netherlands, Singapore, Hong Kong, Thailand, Cambodia, Vietnam and India independently for about 8 years, until the COVID pandemic. My responsibilities included acquiring projects, understanding their scope, conducting end-to-end penetration testing and delivering results on time with comprehensive reports and presentations. Most of these were onsite projects, which required me to travel internationally, giving me valuable global exposure.
Business OwnershipStart-up LeadershipCustomer AcquisitionClient RelationsKey Client RelationshipsProject Management+8

Yahoo!

Software Engineer Intern

Feb 2012May 2012 · 3 mos

  • Worked on various projects and got exposure on various Yahoo tools and open sources. Also worked on project which is a front-end library used across all applications developed by yahoo team.
Software IndustrySoftware InfrastructureSoftware DevelopmentData StructuresAlgorithm AnalysisSelf Learning+1

Education

Indian Institute of Management Bangalore

Postgraduate Certificate Program — General Management

Visvesvaraya Technological University

Bachelor of Engineering - BE — Electronics and Communication

Maharashtra State Board Of Secondary And Higher Secondary Education, Pune

Higher Secondary School Certificate

Maharashtra State Board Of Secondary And Higher Secondary Education, Pune

Secondary School Certificate — Science

Stackforce found 100+ more professionals with Application Security & Cloud Security

Explore similar profiles based on matching skills and experience

Nanda Anumolu

Nanda Anumolu

Senior Automation Engineer - AI

at Real

Fitchburg, United States6 yrs 2 mos exp
GenAIPythonData ScienceMachine LearningLeadership
Shivam Kumar

Shivam Kumar

Senior Software Engineer

at Azodha

Pune, India3 yrs 10 mos exp
Frontend ArchitectureReact.jsNext.js
Chandana Ponnaganti

Chandana Ponnaganti

Senior Consultant

at LTM

Hyderabad, India6 yrs exp
IT Service ManagementServiceNow
Subhasmita Meher

Subhasmita Meher

Staff Recruitment Specialist

at Insemi Technology Services Pvt. Ltd.

Hyderabad, India5 yrs 7 mos exp
Nitesh Singh

Nitesh Singh

Member of Technical Staff lll R&D

at Mavenir

Hazaribagh, India8 yrs 8 mos exp
5GC LTE Network Protocol TestingPerformance Testing
Jitendra Chaudhary

Jitendra Chaudhary

Software Engineer II - HCM Product Quality & Delivery

at UKG (Ultimate Kronos Group)

Delhi, India7 yrs 11 mos exp
Quality AssuranceAgile/ScrumScrum
Dhanya S

Dhanya S

Senior Engineer

at Analog Devices

Bengaluru, India8 yrs 10 mos exp
Sumukh H S

Sumukh H S

Inclusive Futures Manager

at Cisco

Bengaluru, India8 yrs 1 mo exp
Community EngagementEvent ManagementCommunity ImpactStakeholder ManagementPublic Speaking