Yogendra Swaroop Srivastava

DevOps Engineer

Bengaluru, Karnataka, India6 yrs 2 mos experience
Most Likely To Switch

Key Highlights

  • Over 5 years of experience in cybersecurity.
  • Led successful Bug Bounty programs.
  • Expertise in Cloud Security and DevSecOps.
Stackforce AI infers this person is a Cybersecurity expert specializing in Cloud Security and DevSecOps for Fintech and Gaming industries.

Contact

LinkedIn

Skills

Core Skills

Vulnerability Assessment And Penetration Testing (vapt)DevsecopsProduct SecurityCloud Security

Other Skills

API Discovery PlatformAWS SecurityAndroid DevelopmentAndroid SecurityApplication SecurityApplication TestingAutomated vulnerability scansBug BountyBurp SuiteCI/CDCapture The Flag (CTF)Cloud Infrastructure SecurityCloudflareCyber-securityDAST

About

Experienced security professional with a proven track record of over 5 years in the industry. Throughout my journey, I've honed my expertise in Product Security, Cloud Security (AWS/GCP),DevSecOps, Secure SDLC ,strategically implementing security reviews and effectively managing WAF for GCP/AWS environments. As a dedicated professional, I thrive on creating robust Security Automations, performing thorough Mobile/Web/API security pentesting, and orchestrating Incident Response procedures using cutting-edge tools like Crowdstrike and Cortex. Furthermore, my skills extend to the proactive safeguarding of cloud infrastructure by deploying various CSPM tools, ensuring comprehensive protection for organizations in the digital landscape. One of my proudest achievements is spearheading a successful Bug Bounty program for my company, where I continuously manage its growth and impact. Passionate about cybersecurity and its critical role in today's digital world, I remain committed to staying at the forefront of emerging trends and challenges. My goal is to contribute my expertise in securing assets and mitigating risks, thereby bolstering the resilience of organizations against evolving threats.

Experience

6 yrs 2 mos
Total Experience
1 yr 6 mos
Average Tenure
2 yrs 7 mos
Current Experience

Upstox

2 roles

Senior Application Security Engineer

Apr 2025Present · 1 yr 2 mos · Bengaluru, Karnataka, India · Hybrid

Security Engineer - 2

Oct 2023Mar 2025 · 1 yr 5 mos · Bengaluru, Karnataka, India · Hybrid

  • Led VAPT Audit to identify and address security vulnerabilities for Upstox.
  • Led the integration of security practices into the CI/CD pipeline, employing SAST/SCA to ensure only secure code is merged into the master branch.
  • Implemented automated vulnerability scans for new domains to proactively identify security risks.
  • Established security controls in public GitHub repositories for Upstox, preventing accidental exposure of sensitive information.
  • Collaborated with stakeholders to address VAPT findings, developing an automated workflow for weekly updates, achieving timely closure of all reported findings a month ahead of schedule.
  • Conducted Threat Modeling and security architecture reviews to ensure minimal security issues in feature deployments.
  • Configured Cloudflare rules to enhance security posture.
  • Delivered multiple brown bag sessions to engage the engineering team in addressing security vulnerabilities.
  • Created and executed a Capture The Flag (CTF) event for Cyber Security Month, fostering organizational awareness.
  • Identified and reported PII data within service logs, enhancing visibility for the engineering team.
  • Automated the approval process via Slack to streamline security reviews, reducing delays for engineering teams.
Vulnerability Assessment and Penetration Testing (VAPT)CI/CDSASTSCAAutomated vulnerability scansThreat Modeling+5

Mobile premier league (mpl)

2 roles

Security Engineer-1

Promoted

Jul 2022Oct 2023 · 1 yr 3 mos

  • Lead Product Security of one of the MPL's App.
  • Managed WAF Security for AWS/GCP
  • Security Automation
  • Leading and Managed API Discovery Platform for MPL
  • Lead and Managed Bug Bounty for MPL.
  • Secured Cloud Infrastructure (GCP/AWS)
  • Incident Response - Crowdstrike and Cortex XDR
  • Worked with the team to setup Product Security Review process in the organisation.
  • SAST/DAST Penetration Testing of Web/Mobile/API Applications.
  • Internal Red Teaming
Product SecurityWAF SecuritySecurity AutomationAPI Discovery PlatformBug BountyCloud Infrastructure Security+5

Security Analyst

Jul 2021Jul 2022 · 1 yr

  • Product Security
  • Red teaming
  • AWS Security
  • Managing Bug Bounty program for MPL
  • Incident Response
Product SecurityRed TeamingAWS SecurityIncident Response

Virsec systems

Security Research Engineer

Mar 2021Jul 2021 · 4 mos · Bengaluru, Karnataka, India

Hackeru

2 roles

Cyber Security Instructor

Promoted

Nov 2020Mar 2021 · 4 mos

Cyber Security TA

Feb 2020Oct 2020 · 8 mos

Jaipuria computer club

Chief Secretary

Oct 2015Oct 2015 · 0 mo · Kanpur Area, India

  • Comfest is organised by the students of Jaipuria Computer Club.
  • It's India's Biggest Student organised Computer Festival.

Education

Seth Anandram Jaipuria School

HSC

Jan 2007Jan 2016

Trainee at Zoom Technologies

Linux

Jan 2016Jan 2017

MADHAV UNIVERSITY

Bachelor of Technology - BTech — Computer Software Engineering

Aug 2016Aug 2020

Stackforce found 100+ more professionals with Vulnerability Assessment And Penetration Testing (vapt) & Devsecops

Explore similar profiles based on matching skills and experience

Jason Martin

Jason Martin

VP FDE

at Databricks

San Francisco, United States33 yrs 5 mos exp
Professional ServicesConsulting
Howard Kelly

Howard Kelly

Founder & Director | Cyber Security, Technology, Data & AI

at Meliora

Hong Kong, Hong Kong SAR13 yrs 7 mos exp
Cyber SecurityRisk Management
NY

Nanarao Yarragunta

Lead Software QA Engineer

at Molina Healthcare

Dallas, United States13 yrs 10 mos exp
Quality AssuranceAutomationTest ManagementTest Automation
Pratik G.

Pratik G.

Security Engineer

at eGain Corporation

Sunnyvale, United States5 yrs 1 mo exp
Cloud Security ArchitectureIAM Governance & Access ControlRisk Assessment & ManagementThreat & Vulnerability ManagementSecurity Controls Implementation & Validation
NithishSharavanan S K

NithishSharavanan S K

Software Development Engineer

at BlueSapling

Coimbatore, India2 yrs 2 mos exp
Software DevelopmentAPI Development
Sathish Kumar

Sathish Kumar

DevOps Engineer

at VivaOps

India1 yr 8 mos exp
DevOpsAutomationData Engineering
Suman Roy Chowdhury

Suman Roy Chowdhury

OSS Specialist

at UltraViolet Cyber

Bengaluru, India1 yr 7 mos exp
Radheshyam Kori

Radheshyam Kori

Information Technology Consultant

at freelance

Noida, India19 yrs 9 mos exp
Full Stack DevelopmentSoftware ArchitectureWeb Application DevelopmentWeb DevelopmentTechnical Architecture