Summary
Work History
Education
Skills
Personal Information
Custom Section
Disclaimer
Timeline
Generic

Amol Patil

Chalisgaon

Summary

To persist and grow in professional environment where I can utilize my abilities and technical skills, and that offers professional growth while being resourceful, innovative, and flexible.

Work History

Risk Manager – Information Security Group Team

HDFC Bank
Mumbai
- Current
  • Conduct Vulnerability Assessment /Penetration Testing on servers/Network Devices in DC and DR as well as NDR for the HDFC Bank
  • Perform the Application security testing for the HDFC Bank
  • Conduct DLA audit on switches, router and firewall using Nipper tool
  • Implement and deployment of Security Solution VAPT Such as Qualys Vendor management for all security Project such as Vulnerability assessment, Penetration Testing, Application Security.(Black Box,Grey Box,Network/Cloud VAPT and API Grey Box testing) Conduct and manage the portfolio of vulnerability assessment and penetration testing for the entire internet/Intranet facing infrastructure of the bank and its group companies
  • Work on RBI/CSITE report and RBI tranche Report
  • Create and deliver the presentations on information security awareness to the banks users which include the details about the net banking/phishing, wishing and social engineering
  • Co-ordination with different teams and associated members to carry out the smooth process and patching the vulnerabilities regarding the VAPT
  • Involve in simulation in Drill such as DDOS and others cyber security assessment

Cyber Security Executive

Tata Communication Ltd
Pune
12.2017
  • Performing Application Security assessments on a wide range of web application technologies
  • Performing white-box and black-box security assessments of client’s infrastructure
  • Performing Application Security assessments on a wide range of web application technologies
  • Mobile Application Penetration Testing with static/dynamic APK analysis
  • Discussion and explaining application owners and developers on existing vulnerabilities on applications to mitigate them effectively
  • API Security Testing and suggesting better access control measures
  • Worked as a Security Consultant for an on-site project, Banks Projects Long periods without absence from work
  • Met deadlines consistently.

Senior Executive – Information Security Team

IDBI Intech LTD
Navi Mumbai
  • Conduct Vulnerability Assessment /Penetration Testing on servers/Network Devices in DC and DR as well as NDR for the IDBI Bank
  • Perform the Application security testing for the IDBI Bank
  • Conduct DLA audit on switches, router and firewall using Nipper tool
  • Implement and deployment of Security Solution VMPT Such as Tenable.SC Vendor management for all security Project such as Vulnerability assessment, Penetration Testing, Application Security
  • Conduct and manage the portfolio of vulnerability assessment and penetration testing for the entire internet/Intranet facing infrastructure of the bank and its group companies
  • Work on RBI/CSITE report and RBI tranche Report
  • Create and deliver the presentations on information security awareness to the banks users which include the details about the net banking/phishing, wishing and social engineering
  • Co-ordination with different teams and associated members to carry out the smooth process and patching the vulnerabilities regarding the VAPT
  • Involve in simulation in Drill such as DDOS and others cyber security assessment

Education

BE - E & TC

University of Pune
01.2017

Diploma - E & TC

Maharashtra Board
01.2011

SSC -

Nashik Board
01.2008

Skills

  • Having 7 years of experience in IT industry in a cyber security
  • Knowledge of the OWASP TOP 10
  • Standards and knowledge of common web application attack vectors such as SQL injection, CSRF, XSS, Broken Authentication and Session Management issues etc
  • Http interception tools like Burp Suite Pro, Fiddler, SocialEngineering or Password generation/cracking tools such as Hydra, Ncrack, Crunch
  • Experince in evaluating application security tool for organisation
  • Having experince to handle multiple vendor for testing Black box, Grey Box, Network/Cloud VAPT and API testing
  • Vulnerability Assessment- Network Scanning tools Nessus, Qualys, TenableSC, Nmap, Nexpose
  • Network And System Penetration Testing- Network Scanning tools Nessus, Nmap, Nexpose Network Sniffing tools such as Wireshark
  • Knowledge of different networking protocols like TCP, UDP, FTP, TFTP, SSH, SNMP, TFTP, DHCP, NTP, SIP, RDP, DNS etc
  • Security Audit And Compliance- CIS Benchmark, PCI DSS, ISO27001:2013
  • Handled Audit in HDFC and IDBI
  • Conducted review on various other aspects of applications like Server Hardening, Configuration Review, Thick client application testing, Vulnerability Assessment and Penetration Testing
  • Proficient in identifying various critical vulnerabilities like SQL Injection, XSS attack, CSRF attack, session hijacking, authentication bypass, authorization, authentication flaws, remote & local file inclusion and also, business logic vulnerabilities
  • Discussion and explaining application owners and developers on existing vulnerabilities on applications to mitigate them effectively
  • Worked in various banking projects related to testing of their payment Applications
  • Positive attitude
  • Problem solving skills
  • Energetic and cooperative nature

Personal Information

  • Father's Name: Mr. Nandlal Patil
  • Mother's Name: Mrs. Bharati Patil
  • Date of birth: 05/29/92
  • Gender: Male
  • Nationality: Indian
  • Marital Status: Married

Custom Section

  • Completed 6 months training program of Information Security Consultant from Institute of Information Security, Pune.
  • Completed 2 days Industrial level grade 1 and grade 2 Winter Training Program on cyber security (Ethical Hacking) organized by Lucideus Technology Pvt. Ltd, New Delhi.
  • Finding vulnerabilities on internet based applications and reporting to the organization with POC's.
  • Hall of Fame Awarded by Dutch dare International, University of Twente, hoorn.nl and many more.

Disclaimer

I hereby declare that information furnished above is true and to the best of my knowledge.

Timeline

Cyber Security Executive

Tata Communication Ltd
12.2017

Risk Manager – Information Security Group Team

HDFC Bank
- Current

Senior Executive – Information Security Team

IDBI Intech LTD

BE - E & TC

University of Pune

Diploma - E & TC

Maharashtra Board

SSC -

Nashik Board

Similar Profiles

  • Justin ChestnuttJustin Chestnutt

    Hardware & Software Engineer/Digital Network Exploitation Analyst/Information Systems Security Engineer at National Security AgencyHardware & Software Engineer/Digital Network Exploitation Analyst/Information Systems Security Engineer at National Security Agency

  • John KayJohn Kay

    Senior Manager/Technical Lead – Risk Advisory – Detect and Respond at Deloitte Canada Inc.Senior Manager/Technical Lead – Risk Advisory – Detect and Respond at Deloitte Canada Inc.

  • Daniel Farnsworth, MS, PMPDaniel Farnsworth, MS, PMP

    Information Warfare Officer | Security Manager at US NavyInformation Warfare Officer | Security Manager at US Navy

  • Pranay Reddy BarajuPranay Reddy Baraju

    Information Security Analyst at Alten Calsoft Labs Private LimitedInformation Security Analyst at Alten Calsoft Labs Private Limited

CREATE PROFILE
Amol Patil