Bike Riding
Anshul Bajpai
Senior Product Security Engineer
Gurgaon
Summary
Security professional with extensive experience in securing digital assets and implementing robust security protocols within the medical devices industry. Known for a collaborative approach and a proven track record of delivering secure solutions in dynamic environments. Proficient in embedded security, vulnerability assessments, and penetration testing across hardware and communication systems, with a strong focus on identifying and mitigating risks, while ensuring compliance with industry standards..
Overview
5
5
years of professional experience
3
3
years of post-secondary education
2
2
Certifications
Work History
Senior Product Security Engineer
Stryker
Gurgaon
08.2023 - Current
- Led a team of security engineers specializing in hardware penetration testing for embedded systems and medical devices, regularly exploiting protocols like JTAG, SWD, UART, SPI, I2C, Bluetooth, and Wi-Fi to identify vulnerabilities.
- Conducted end-to-end penetration tests across medical devices, network security, and web apps, assessing embedded devices, communication protocols, and network infrastructure.
- Applied advanced testing techniques, including fault injection, side-channel attacks (SPA, timing, DPA), and EMFI using ChipWhisperer and ChipShouter to evaluate and exploit hardware weaknesses.
- Conducted telecom security assessments, including 4G/5G research with USRPs, identifying vulnerabilities in next-gen communication protocols.
- Worked on Secure Boot and TPM projects, performing penetration testing to ensure system protection.
- Utilized open-source tools for reverse engineering, analyzing firmware and binaries to identify security flaws.
- Led product security bootcamps and training sessions, fostering a security-first culture and empowering teams to implement secure development practices.
- Mentored junior engineers and interns, enhancing team expertise in penetration testing, vulnerability analysis, and continuous learning.
Senior Information Security Analyst
Bharti Airtel Limited
Gurgaon
11.2020 - 07.2023
- Responsible for ensuring security of embedded devices of various chipset providers(Qualcomm, Unisoc, ZTE, Mediatek etc.), providing mitigation solutions
- Conduction of Security assessment that included analyzing debug ports(JTAG, UART, SWD etc), probing PCB buses, business logic testing, crafting PoC for exploits, firmware dumping(SPI, I2C etc) and reversing, identifying and fiddling with communication protocols specific to IoT(BLE, RFID, etc.)
- Web, API vulnerability assessment of various types of clients and applications
- Creating an exhaustive list of test cases specific to type of device and chipsets
- Responsible for creating and updating IoT security framework applicable organization wide
VA/PT Engineer
Bharti Airtel Limited
Noida
05.2020 - 12.2020
- Conducting regular vulnerability assessments for the entire infra of Bharti Airtel
- Lead Penetration testing for the entire infra of Bharti Airtel
- Worked with multiple teams for timely closure and mitigation of reported issues
- Vulnerability assessment and penetration assessments for web and network organization wide
- Hands on experience with tools like Nessus, Acunetix, Burpsuite etc
- RF related analysis and attacks Power analysis & Fault injection using ChipWhisperer
- UART & JTAG analysis using OpenOCD Firmware dumping & Reverse engineering
- I2C & SPI analysis and assessments Mobile application testing using Frida
- Vulnerability Assessment and Penetration Testing MDM lock solution assessments
Education
Bachelors - Computer sciences and applied sciences
University of Delhi
Delhi, Delhi 03.2017 - 06.2020
Skills
- Security Penetration Testing for Embedded Systems
- Protocols: UART, JTAG, SPI, I2C, SWD, Bluetooth (Classic and LE), WiFi, RFID and NFC
- Fault Injection Attacks (Voltage and EM)
- Side Channel Attacks (Timing and SPA)
- Telecom Security (4G and 5G)
- Network security and Infrastructure Pentests
- Reverse Engineering using open source tools (Basic)
- Tools: Ubertooth, Alpha Card, Jtagulator, Proxmark, Flipper, Facedancer, ChipWhisperer, Chipshouter, Picoscope, USRP, HackRF, LimeSDR, Jlink, Burpsuite, Nessus
Accomplishments
- Awarded with "Employee of the Quarter" within 4 months of joining Stryker.
- Awarded with "Best Vulnerability of the Quarter"
- Awarded with "Extra Miler" divisional award.
- Nominated for "Rookie of the Year" award Organization wide in Stryker
- Awarded with "Einstein Award" in Airtel for uncovering some crucial vulnerabilities in Android devices.
Certification
Offensive Security Wireless Professional (OSWP)
Interests
Car Enthusiast
Netflix Connoisseur
Timeline
Senior Product Security Engineer
Stryker
08.2023 - Current
Senior Information Security Analyst
Bharti Airtel Limited
11.2020 - 07.2023
VA/PT Engineer
Bharti Airtel Limited
05.2020 - 12.2020
Bachelors - Computer sciences and applied sciences
University of Delhi
03.2017 - 06.2020
Similar Profiles
Greg GriblerGreg Gribler
Sr Segmentation Specialist at StrykerSr Segmentation Specialist at Stryker
Steven LopezSteven Lopez
Onsite Specialist at StrykerOnsite Specialist at Stryker
Austin GilyardAustin Gilyard
Surgical Skills Lab Supervisor at StrykerSurgical Skills Lab Supervisor at Stryker
Naaila VorajeeNaaila Vorajee
Senior Sales Representative at StrykerSenior Sales Representative at Stryker
Smriti RanaSmriti Rana
Technical Architect & Lead at Builder.aiTechnical Architect & Lead at Builder.ai