Geetha Gunda
Hyderabad
Summary
Information security professional equipped to handle complex security challenges. Skilled in risk assessment, threat analysis, and incident response. Strong team collaboration and adaptability ensure reliable performance in dynamic environments. Proven ability to implement security protocols and safeguard critical data.
Overview
13
13
years of professional experience
1
1
Certification
Work History
Business Information Security Officer – Sr. Security Engineer - Lead
Deloitte Technologies
Hyderabad
07.2024 - Current
- Lead the end-to-end vulnerability management lifecycle – identification, prioritization, remediation tracking, and closure – ensuring alignment with enterprise SLAs.
- Champion Secure SDLC practices across multiple applications, conducting security design reviews, code analysis, and threat modeling to proactively address risks.
- Review and analyze findings from tools such as Fortify, Contrast, Synk, Mend, penetration tests, Prisma cloud and translate results into business risk insights for leadership.
- Act as a security advisor to application teams, assisting in issue resolution and guiding developers on secure coding practices.
- Present weekly executive dashboards to leadership highlighting trends, remediation progress, and risk hotspots.
- Drive initiatives to streamline risk processes by establishing standardized workflows, escalation paths, and governance models.
Security Analyst
Tata Consultancy Services (TCS)
Hyderabad
02.2016 - 05.2024
- Performed security assessments of applications and assets across multiple domains.
- Conducted Dynamic Application Security Testing (DAST) using WebInspect, Burp Suite, ZAP, following OWASP guidelines.
- Performed Static Code Reviews (SAST) for Java/J2EE applications using HP Fortify SCA, Contrast
- Used OWASP Dependency-Check , Snyk for component scans and analysis.
- Designed semi-automation solutions to reduce assessment effort and turnaround time.
- Collaborated with stakeholders to analyze findings and recommend secure remediation approaches.
- Performed Penetration testing for web and Mobile applications.
Java Developer
Infosys Technologies Pvt. Ltd.
Hyderabad
07.2013 - 02.2016
- Involved in application enhancement, bug fixing, and sprint-based testing.
- Participated in functional testing, GAT testing, and sprint validation.
- Created and executed test cases, logging issues in JIRA for resolution.
Education
M.Tech - Digital Electronics & Communication Engineering
GNITS
Hyderabad01.2012
Intermediate - undefined
B.Tech - Electronics & Communication Engineering
Sree Chaitanya College of Engg., JNTU
01.2010
Skills
- Vulnerability assessment
- Identity and Access management
- Threat intelligence
- Endpoint security
- Security awareness training
- Web and Mobile security
- Cybersecurity management
- Penetration testing
- Developing security plans
- Application security
Accomplishments
- Used Microsoft Excel to develop inventory tracking spreadsheets.
- Achieved Applause award for effectively helping with App Team.
- Achieved star award by completing Security assessmentswith accuracy and efficiency.
- Supervised team of 5 staff members.
- Achieved many on spot awards through effectively helping with Development team.
Certification
- CISA - Certified Information Systems Auditor
- Certified ISC2
Languages
Hindi
Advanced (C1)
English
Advanced (C1)
Telugu
Advanced (C1)
Timeline
Business Information Security Officer – Sr. Security Engineer - Lead
Deloitte Technologies
07.2024 - Current
Security Analyst
Tata Consultancy Services (TCS)
02.2016 - 05.2024
Java Developer
Infosys Technologies Pvt. Ltd.
07.2013 - 02.2016
Intermediate - undefined
B.Tech - Electronics & Communication Engineering
Sree Chaitanya College of Engg., JNTU
M.Tech - Digital Electronics & Communication Engineering
GNITS