Goutham Reddy
Bangalore
Summary
10 years of experience in various domain having knowledge in DAST – Web app, API Security, Network VAPT, Threat modeling and Web automation testing, Cloud Security.
Overview
10
10
years of professional experience
1
1
Certification
Work History
Senior Software Engineer - Security
Encora Digital
07.2024 - Current
- Responsible for Web Application VAPT and Network VAPT
- Performed Database security audit on MSSQL, PostgreSQL, Oracle, Mongo, MemSQL databases for EOG client
- Part of Encora Security Auditors team and contributing towards securing Web Applications
- Responsible for Implementing/Providing security solutions for AWS cloud
- Knowledge on Industry standards & compliances for secure development and programming techniques(PCI DSS)
- Performed Mobile security testing using MobSF tool for Petmeds client
- Team Management and handling security projects
Security Lead Consultant
ITC Infotech Pvt Ltd
12.2021 - 06.2024
- Handling kick-off meeting with project teams to understand the detailed architecture/workflow of Applications & Network before starting the security assessment
- Vulnerability Assessment & Penetration testing for Web Application through automated tools and manually as well
- Preparing VAPT project report & presentation
- Providing Information security awareness training for technical and non-technical people
- Application penetration testing based on OWASP, Document and discuss security findings with clients to help them better understand the risk
- Managing a team of security pentesters
Security Test Engineer III
Paychex India Pvt Ltd
04.2020 - 12.2021
- Perform Manual / Automated DAST scans, Open-Source scans and API pen testing for various web applications
- Responsible for End to end security of HR application, Network Infrastructure and Third party application security.
- Managing a team of security researches
QA Engineer
First American India
07.2017 - 04.2020
- Performing VAPT, DAST, API Pentest & Threat Modeling for various applications under FAI Products & Platforms
- Drafting the detailed test report with various artifacts like the issue, impacts, risk assessment and counter measures
- Secure SDLC: Governance and tracking of multiple applications - Security training, Security Testing, Security Operations
- Security Operations: Governance tracking and remediation of vulnerabilities and monitoring
Test Engineer
EVRY India Pvt Ltd.
01.2015 - 07.2017
- Hands On experience in various network/host/ web application penetration testing
- Preparing reports by differentiating the severity of the vulnerability as per the threat level
- Detailed experience performing vulnerability/risk/threat assessments, network security solutions
- Hands on experience in suggesting and implementing the solution and workaround for the gaps and Vulnerabilities with prerequisite and administrative) to defend against potential attacks
- Good experience in cross platform testing including Mobile device
- Performed Load testing using JMeter for Evrytime Application
- Keep Track of all written Test Cases for Automation by Functional Testing team and Modifying Test cases according to Automation
Education
Bachelor of Engineering - Electronics and Communication
08.2014
- Graduated with68%
- GPA: 68%
Skills
- DAST Tools: Burp Suite, OWASP ZAP, Nessus, SQL Map, Nmap, MobSF
- API Testing: Postman
- Database Security: MSSQL, PostgreSQL, Oracle, MongoDB
- Programming: Python, Java (Basics)
- CI/CD: Azure DevOps
- Cloud Security: Infrastructure Security, Data Security, Application Security & DevSecops
- SAST Tools: Sonarqube & Bandit
- DevSecops: Synk & Clair
Certification
- Certified Ethical Hacker (CEH) – EC Council
- EC-Council Certified Security Analyst (ECSA)
- AWS Certified Security - Specialist
Accomplishments
- Club of Honor Award – ITC Infotech (2023)
- Spot Award – EVRY India (2016)
- Extra Mile Commitment Awards (2 times)
- Rising Star award at Encora
Additional Information
Interests: Cricket, Traveling, Reading, Exploring new culture & tradition
References
www.linkedin.com/in/gouthucr1393
Timeline
Senior Software Engineer - Security - Encora Digital
07.2024 - Current
Security Lead Consultant - ITC Infotech Pvt Ltd
12.2021 - 06.2024
Security Test Engineer III - Paychex India Pvt Ltd
04.2020 - 12.2021
QA Engineer - First American India
07.2017 - 04.2020
Test Engineer - EVRY India Pvt Ltd.
01.2015 - 07.2017
Navodaya College of Engineering - Bachelor of Engineering, Electronics and Communication
Similar Profiles
Shailesh UgileShailesh Ugile
Senior Lead QA Engineer at Encora DigitalSenior Lead QA Engineer at Encora Digital
Jessica SonjuJessica Sonju
Human Resources Business Partner at Encora Digital, LLCHuman Resources Business Partner at Encora Digital, LLC
Binita PradhanBinita Pradhan
Senior Software Engineer at Encora Digital Applications PlatformSenior Software Engineer at Encora Digital Applications Platform
Raghu Vamsi MRaghu Vamsi M
Associate Manager- Finance at Reverie Language Technologies LimitedAssociate Manager- Finance at Reverie Language Technologies Limited
Shwetha AgarwalShwetha Agarwal
Artist Manager at Nineone IncArtist Manager at Nineone Inc