Security Analyst

• Aug 2021 - Present

1. Performing periodic manual/automated vulnerability and penetration (VA/PT) tests on web applications, mobile (Android, iOS), APIs, Internal network & assets, AWS Cloud Infrastructure.Assessment, Evaluation and performing PoCs for different enterprise and open-source cyber security solutions/toolings/softwares.2. Orchestrating and helping the organization to be compliant for, not limited to PCI-DSS, ISO, NPCI, RBI PPI Master Directions, Vendor Risk Assessments, Due Diligence Assessments, DL SAR, SAR Tokenization, CICRA, Card-on-File Tokenzation etc.3. Developing end-to-end CI/CD pipelines with the Shift Left ideologies & DevSecOps tooling, SAST, DAST, Secure Code Review (Manual & Automated)4. Managing the Bug Bounty program for MobiKwik.5. Imparting learning and awareness sessions for cross-teams to generate security awareness and hygiene. Working in close proximity with different departments not limited to Board & Senior Management, Product, Business, Tech, Development, Quality Assurance, Android, iOS, Frontend, DevOps, Server Reliability, Legal to ensure expectations, requirements and alignments with their internal roadmaps/sprints with proper resources and feedback channels to ensure continuity of the security posture of the organisation.6. Technical Writing : Developing, Maintaining & Supporting Enterprise Information & Datasets, preparing root cause analysis for Incidents, technical writeups for PoCs for in-house security assessments and exploits, report writing, creating policies and procedures.

Security Analyst

• Aug 2021 - Present

Security Analyst

• Dec 2020 - Jul 2021

* Part of the Digital Security Team * Key responsibilities include securing the cloud assets, resources via the Azure Security Center, and enforcing the compliance and regulations over the entire cloud environment. * Our team also worked with different tools like Proofpoint CASB, Tanium, Qualys, ServiceNow. * Part of the Digital Security Team * Key responsibilities include securing the cloud assets, resources via the Azure Security Center, and enforcing the compliance and regulations over the entire cloud environment. * Our team also worked with different tools like Proofpoint CASB, Tanium, Qualys, ServiceNow.

Information Security Analyst

• Jun 2020 - Sep 2020

During my tenure, I improved the security posture of the organization by 1. Conducting regular Vulnerability Assessments on their different web applications, mobile applications, and API endpoints. 2. Conducting different types of API Load tests using SOAPUI & LOADPro 3. Auditing the native as well as cross-platform mobile applications via SAST & DAST tools like MobSF, WebInspect, androbugs framework, During my tenure, I improved the security posture of the organization by 1. Conducting regular Vulnerability Assessments on their different web applications, mobile applications, and API endpoints. 2. Conducting different types of API Load tests using SOAPUI & LOADPro 3. Auditing the native as well as cross-platform mobile applications via SAST & DAST tools like MobSF, WebInspect, androbugs framework,

Coordinator

• May 2018 - May 2019

Headed the Counseling & Guidance Cell - a team of 60 students responsible for organising Orientation for freshers and other events throughout the year. Headed the Counseling & Guidance Cell - a team of 60 students responsible for organising Orientation for freshers and other events throughout the year.

Trainee

• May 2018 - Jul 2018

Trainee at Codec Networks Trainee at Codec Networks