Principal, IT Compliance at CA tech.
More bioInformation Security Professional with 12+ years of experience in Web Application Penetration testing, Dynamic application security testing, Vulnerability assessment on Cloud environments, Architecture review of SaaS hosted model for DeVOpS Services, threat monitoring on SaaS hosting instances, Identity access management, Certificate management, Integrating Security controls on DeVOpS build pipeline.
TECHNICAL KNOWLEDGE & SKILLS:
Proficiency in utilization of information security tools such as Burp suite, Metasploit, Appscan, Web inspect, Nexpose, Qualys, Alertlogic SIEM etc and manual techniques to exploit vulnerabilities in the OWASP top 10 including but not limited to cross-site scripting, Privilege escalations, Authorization bypass, SQL injections, session management etc.,
I hold the CEH, CHFI and CISSP.