Jatin Jena
Delhi
Summary
Experienced Product Security Engineer with 5+ years of expertise in threat assessment, security solutions deployment, and risk mitigation. Skilled in incident response, compliance, and enhancing cyber resilience. Committed to protecting and fortifying digital environments by staying ahead of emerging threats and ensuring utmost security for organizations.
Overview
5
5
years of professional experience
Work History
Product Security Engineer 2
Eventbrite
11.2023 - Current
- Built an AWS security feature to detect manual write operations in the production environment, strengthening real-time monitoring and compliance enforcement
- Developed an automated cloud bot for managing stale IAM users and keys, reducing identity-related risks and enforcing least privilege principles
- Designed and implemented an Automated Incident Enrichment system using Exabeam API, streamlining security investigations and improving response efficiency
- Developed console based EC2 scanning using Qualys API
- Developed various reporting feature for IAM users using Lacework API
- Conducted security design reviews and threat modeling for cloud-native applications, proactively identifying and mitigating risks
- Performed secure code reviews, identifying vulnerabilities and collaborating with developers to enhance application security
- Automated security assessments and compliance checks for cloud environments, ensuring continuous monitoring of misconfigurations and vulnerabilities
- Designed and implemented security best practices for CI/CD pipelines, reducing the risk of supply chain attacks
- Improved security incident response processes by automating investigation workflows and enrichment using Exabeam and custom APIs
- Provided security guidance to engineering teams, translating complex security threats into actionable recommendations
Information Security Engineer
Microstrategy
10.2022 - 11.2023
- Implemented and managed Microsoft Defender across the organization
- Vulnerabilities management using Tenable Nessus sc
- For multiple cloud Environments and internal Endpoints
- Managed and executed OS patching for over 2500 Linux and Windows servers to ensure security compliance and optimal performance
- Onboarded and managed snyk for end to end SAST
- Managed EDR tools like SentinelOne, Bitdefender, and Crowdstrike
- Managed the Bug Bounty Division for the entire product portfolio
Information Security Officer
Sleepiz AG
12.2019 - 10.2022
- Conducted multiple risk assessments and vulnerability management scans to identify and mitigate potential security threats in the Backend of the Company
- Implemented and maintained Fortigate firewalls for intrusion detection and prevention systems, and access control systems to ensure the security of the company's network
- Conducted ISO and HIPAA security audits and compliance checks to ensure adherence to industry standards and regulations
Education
Bachelor of Engineering - Computer Science
Chandigarh University
08.2020
Skills
- Vulnerability assessment
- Identity and Access management
- Cloud security proficiency
- Security architecture design
- Incident response management
- Security policy development
- Incident response
- System enhancement
- Effective communication
- Strategic planning
Timeline
Product Security Engineer 2
Eventbrite
11.2023 - Current
Information Security Engineer
Microstrategy
10.2022 - 11.2023
Information Security Officer
Sleepiz AG
12.2019 - 10.2022
Bachelor of Engineering - Computer Science
Chandigarh University
Similar Profiles
Nicole NeeraasNicole Neeraas
Trust and Safety Associate at EventbriteTrust and Safety Associate at Eventbrite
Sri Nikhil Reddy SandadiSri Nikhil Reddy Sandadi
Lead Full-Stack Developer at EventbriteLead Full-Stack Developer at Eventbrite
Paul KeoganPaul Keogan
Senior Business Analyst at EventbriteSenior Business Analyst at Eventbrite