Apurva Bhalerao
Cyber Security Lead
Bangalore
Summary
Cyber security specialist with nearly 9 years of experience in vulnerability assessment and penetration testing. Proven expertise in threat and risk analysis, delivering actionable insights to enhance security posture. Seeking opportunities to apply technical skills in a dynamic organization while contributing to security initiatives.
Overview
9
9
years of professional experience
3
3
Certifications
3
3
Languages
Work History
Cyber Security Lead
ABB Global Industries and Services Pvt Ltd
05.2021 - Current
- Security and network robustness assessment testing of embedded devices and host-based industrial software applications
- Protocol Fuzzing that includes Modbus, OPC-UA, Wireless Client & AP, and protocol analysis using Wireshark.
- Security analysis of Windows & Linux based thick client applications, BLE.
- Writing technical reports with description of issues and recommendation for the developers.
- Evaluation of new testing methodologies relevant for the organization testing for Software applications and Bluetooth.
- Providing suggestions/fixes for improvement to the product development teams
- Performing test scope analysis of ABB products.
- Lead Technical operations and discussions with team members.
- Worked on Industrial automation standards such as IEC 62443-1
Cyber Security Engineer
Robert Bosch Engineering and Business Solutions
09.2017 - 01.2021
- Responsible for developing attack test cases related to TCP/IP stack using Python for an in-house tool for detecting Network anomaly (protocol-based known vulnerabilities) in implementation of Automotive Ethernet Network stack [ARP, IP, ICMP and TCP protocols]
- Familiar with Fuzz testing techniques of Ethernet stack protocol fuzzing in networks.
- Worked on automotive standards such as ISO SAE 21434
- Carried out the Security Threat and Risk Analysis by following Threat Assessment & Remediation Analysis (TARA) methodology to comply with Automotive Cybersecurity standards
- Expertise and experience of conducting VAPT (Vulnerability Assessment and Penetration Testing) as per standards such as NIST, CIS benchmarks and OWASP Top 10.
Education
PG-Diploma - IT Infrastructure, Systems and Security (DITISS)
CDAC - ACTS
Pune08-2017
M.E - Computer Science & Engineering
Indore Institute of Science Technology (IIST)
Indore06-2016
B.E - Computer Science & Engineering
Ashoka Institute of Technology & Management (AITM)
Rajnandgaon, Chattisgarh06-2012
Skills
- Automotive networking protocols: CAN/UDS and Ethernet
- TCP/IP Network Protocols
- Vulnerability assessment tools: Nmap and Nessus
- Protocol testing solutions: Synopsys Defensics
- Thick client pentesting methodologies
- Web application security assessments: Burp Suite and Nessus
- Mobile application security techniques: Root detection bypass, SSL pinning, dynamic analysis, reverse engineering
- Operating system knowledge: Windows and Linux
- Programming skills in Python
- Threat modeling frameworks: Microsoft Threat Modeling Tool
Accomplishments
- Received spot award for successfully testing Automotive Ethernet Switch security features
- Received Bronze award for Ethernet strategic topic.
- Team Excellence Award - Penetration Test Scope Enhancement.
- Nominated from department for W2RT program for women techies by NASSCOM for year 2020-21
Certification
Certified Ethical Hacker (CEHv10)
DECLARATION
I hereby declare that the above furnished details are fully true to the best of my knowledge and belief. Yours Truly Apurva Bhalerao
Timeline
Cyber Security Lead
ABB Global Industries and Services Pvt Ltd
05.2021 - Current
Cyber Security Engineer
Robert Bosch Engineering and Business Solutions
09.2017 - 01.2021
PG-Diploma - IT Infrastructure, Systems and Security (DITISS)
CDAC - ACTS
M.E - Computer Science & Engineering
Indore Institute of Science Technology (IIST)
B.E - Computer Science & Engineering
Ashoka Institute of Technology & Management (AITM)