Dinesh Shetty

Director of Engineering

United States15 yrs 11 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Expert in Mobile and Embedded application pentesting.
  • Led a Mobile Security Center of Excellence.
  • Managed a team of 20 security engineers.
Stackforce AI infers this person is a Mobile and Embedded Security Expert with extensive experience in security engineering and team management.

Contact

LinkedIn

Skills

Core Skills

Security EngineeringTeam ManagementMobile SecurityEmbedded SecurityApplication SecurityRisk AssessmentCode ReviewInformation Security ManagementPolicy ImplementationSoftware DevelopmentSecurity Systems

Other Skills

Account ManagementApplication Penetration TestingCCNACEHComputer ForensicsComputer SecurityCyber SecurityCyberSecurity Gap AnalysisDocumentationEmbedded Security ResearchEthical HackingFirewallsHTMLIPSISMS Implementation

About

As the Director of Security Engineering at Security Innovation, I provide managerial oversight for my team's performance on the service engagements for multiple high profile customers. My main responsibility is to recruit, hire, develop, promote and retain top security engineering talent. I have performed innumerable penetration tests on Web, Mobile and IoT technologies - however my core area of expertise is Mobile and Embedded application pentesting and exploitation.

Experience

15 yrs 11 mos
Total Experience
3 yrs 2 mos
Average Tenure
12 yrs 6 mos
Current Experience

Security innovation

4 roles

Director, Security Engineering - Security Innovation

Promoted

Jan 2022Present · 4 yrs 5 mos

Managerial OversightSecurity EngineeringTeam Management

Security Engineering Manager

Jul 2020Feb 2022 · 1 yr 7 mos

  • Worked as the Security Engineering Manager at Security Innovation. I also led their Mobile Security Center of Excellence.
  • Activities Included:
  • Drive performance management of direct reports by means of targeted objectives and key results
  • Managing a team of approx 20 direct technical reports
  • Oversee team's performance on the service engagements
  • Provide managerial oversight for the team's performance on the service engagements
  • Recruit, hire, develop, promote and retain top security engineering talent
  • Develop, mentor, manage and support direct reports
  • Conducts ongoing research on Mobile Application, communication channels, and commonly-used hardware components.
  • Perform SDLC CyberSecurity Gap Analysis and Optimization for high profile customers
  • Perform Security assessments for high profile customers
  • Helping the Sales and Marketing team improve SI visibility
  • Promote thought leadership by engaging as an all-around security SME
Performance ManagementTeam ManagementRecruitmentMentorshipCyberSecurity Gap AnalysisSecurity Assessments+1

Principal Security Engineer - Information Security

Promoted

Feb 2019Jul 2020 · 1 yr 5 mos

  • Working as the Principal Security Engineer at Security Innovation. I also lead their Mobile Security Center of Excellence.
  • Activities Include:
  • Ensure alignment of programs with overall company strategy
  • Conducts ongoing research on Mobile Application, communication channels, and commonly-used hardware components.
  • Perform SDLC CyberSecurity Gap Analysis and Optimization for high profile customers
  • Involved in Embedded security research
  • Help with initiatives that support operating needs
  • Create vulnerable embedded hardware devices for embedded system security awareness
  • Improving Mobile Security Testing Methodology
  • Helping the Sales and Marketing team improve SI visibility
  • Perform Training Program Gap Analysis and Role based Learning paths for organizations
  • Train new engineers on Testing techniques
  • Manage individual employees on a day-to-day tactical level on projects and other issues
  • Handle employee reviews
  • Involved in Automotive security research
  • Security Assessment of Crypto implementations
  • Secure Code reviews
  • Security Assessment of applications using Bio-metric capabilities of Mobile devices
  • Embedded system security testing
  • Web Application security testing
  • Mobile Application security testing
  • Architecture and Design reviews
  • Developing Computer Based Training Content
  • Developing Instructor Led Training Content
  • Creating sample vulnerable and safe applications for training purposes
  • Creating Large scale enterprise wide mobile based CTF challenges
Program AlignmentResearchCyberSecurity Gap AnalysisEmbedded Security ResearchTraining Program DevelopmentMobile Security+1

Senior Security Manager - Information Security

Nov 2013Jan 2019 · 5 yrs 2 mos

Freelance

Independent Information Security Consultant

Feb 2013Nov 2013 · 9 mos

  • Worked as an Information Security Consultant providing Application and Infrastructure Risk assessments to a high profile client.
  • Activities Include:
  • Assessing the existing software development process to identify objectives and gaps.
  • Planning and implementing the remediation roadmap to mitigate possible security issues.
  • Performed application portfolio assessment.
  • Performed Threat modeling and designed custom Test plans.
  • Created Secure coding guidelines for Scala and Play framework.
  • Performed Source code review of multiple applications.
  • Performed Application Penetration testing of multiple applications.
Risk AssessmentsThreat ModelingSecure Coding GuidelinesApplication Penetration TestingApplication SecurityRisk Assessment

Paladion networks

Technical Team Lead - Code Review and Mobile Security Services

Dec 2010Feb 2013 · 2 yrs 2 mos · Mumbai Metropolitan Region

  • Worked as the Core member of Mobile Security Testing and Code review Services and Mobile Security Service Development team.
  • Also worked as a member of the Web Security Testing Team.
  • Contributions Include:
  • Performed GrayBox Security testing and Secure Source Code Review of multiple Android Applications
  • Performed GrayBox Security testing and Secure Source Code Review of multiple iPhone Applications
  • Performed GrayBox Security testing and Secure Source Code Review of multiple Java Based Mobile Applications
  • Performed GrayBox Security testing and Secure Source Code Review of multiple Blackberry Based Mobile Applications
  • Handled Onsite Proof of Concept activities for multiple international clients.
  • Performed Penetration Testing of 50+ IP's
  • Performed testing of Interactive Voice Response system
  • Performed Grey Box Security Testing of 20+ Applications ( Web / Mobile / Thick Client )
  • Performed Black Box Security Testing of 20+ Applications ( Web )
  • Designed and Implemented multiple Onsite IBM AppScan SDLC Architecture specially in Middle East Asia
  • Performed Secure Network Architecture review of critical infrastructures.
  • Performed Vulnerability Assessment of 30+ Servers
  • Performed Firewall Rule Based Analysis.
  • Trained internal members as well as clients to perform Security testing and Code review of various platforms.
  • Helped improve Anti-Phishing watermark script that helped improve Paladion SOC monitor phishing alerts.
  • Created Paladion's iOS, Android, Blackberry GrayBox and Code Review Checklist.
  • Created Android based Paladion's InsecureBank Application.
  • Created ScriptDroid, which is Advance Android and iOS Source code review tool.
Security TestingCode ReviewPenetration TestingVulnerability AssessmentMobile Security

Genomtech bio pvt ltd

Software Engineer

Jun 2010Sep 2010 · 3 mos

  • Worked as a part of 4 member team to design and develop fully functional Security system for Organizational purpose with users ranging from 1 to 10 million , using Fingerprint, Iris, Face, Palm, DNA etc recognition devices.
  • Phases including my contribution:
  • 1. Design: This involves Component Selection and Purchase, Interface and Layout Design, Software selection and Coding.
  • 2. Debugging of the Hardware and selected Software: Testing of the software for proper pattern recognition and privilege management levels using various means.
  • 3. Testing and Documentation: This involves running various regression tests and required Documentation
System DesignTestingDocumentationSoftware DevelopmentSecurity Systems

Conjoin group

Consultant

Apr 2010Oct 2010 · 6 mos

  • Worked as a member of the Information Security Management System Department to design and implement the various security policies that helped The ConJoin Group get certified as ISO/IEC 27001 certified organization.
  • Other contributions include:
  • 1. Defining, Implementing and maintain the ISMS policies in the organization for access control and every security mechanism.
  • 2. Creating and measuring metrics for Security level Measurement.
  • 3. Maintaining Firewall logs, checking and reporting exceptions.
  • 4. Creating and maintaining Software inventory for the department.
  • Also was the Part of Vendor Relationship Team and handled Communication with different International vendors and clients regarding projects requirements and interface and providing data and necessary details to the client as per the specified requirements.
Security PoliciesISMS ImplementationVendor CommunicationInformation Security ManagementPolicy Implementation

Education

Ramrao Adik Institute of Technology,University of Mumbai

BE (Computers) — Computer Engineering

Jan 2006Jan 2010

NES Junior College

HSC ( Vocational) — Computer Science

Jan 2004Jan 2006

Sou Laxmibai

Stackforce found 100+ more professionals with Security Engineering & Team Management

Explore similar profiles based on matching skills and experience

SG

Samhita Gurjar

Senior Systems Analyst

at Komodo Health

Bengaluru, India5 yrs 7 mos exp
Salesforce.comEmbedded Systems
MK

Mahesh Kumar

Technical Architect

at Quintica

India6 yrs 6 mos exp
ServiceNow
SA

Shaan Anshu

Principal Swarm Lead

at Salesforce

Hyderabad, India9 yrs 3 mos exp
SalesforceLeadership
SK

Suchit Kumar Pandey

Tech Architecture Senior Analyst

at Accenture

Noida, India8 yrs 4 mos exp
Cloud SecurityAutomationSharePoint
AB

Aravind Balakrishnan

Functional lead - Microsoft Dynamics 365 Finance and Operations (D365 F&O)

at UNIFY Dots

Bengaluru, India11 yrs 6 mos exp
Supply Chain ManagementMicrosoft Dynamics 365Functional Consulting
KV

Karthikeya Varma

Service Management Specialist

at Equinix

Bengaluru, India11 yrs 5 mos exp
Release ManagementIncident Management
BN

Bhavesh Naik

Senior Manager

at HCLTech

Canada10 yrs 2 mos exp
Oracle EPMFinance TransformationBusiness IntelligenceData ManagementSystems Analysis
JD

Jadi Devender

Senior Operations Specialist

at enGen Global

Hyderabad, India8 yrs 10 mos exp
Technical WritingSoftware DocumentationInstructional Design