KIRAN GAWADE
Cyber Security Engineer
Mumbai
Summary
Dedicated Security Engineer with 1+ years of experience in Web Application Security Testing, specializing in vulnerability assessments, penetration testing, and security issue remediation. Skilled in identifying and resolving application-level vulnerabilities to ensure secure web experiences and enhance user satisfaction. Proficient in leveraging security tools and methodologies to strengthen cybersecurity. Eager to apply expertise to drive impactful security solutions.
Overview
1
1
year of professional experience
Work History
Security Analyst
Codesplit Technologies
04.2024 - Current
- Collaborated with IT teams to develop comprehensive cybersecurity strategies, reducing risks from external attacks.
- Assisted in the successful completion of security audits, resulting in a boost of client trust and confidence.
Education
Diploma In Electronics & Tele-Communication - Science
Vivekananda Education Society's Polytechnic College
Mumbai 04.2001 -
Bachelor of Science - Information Technology
Mahatma Phule College
Mumbai 04.2001 -
Skills
Web application security evaluation
Project
Project Name - Beta Swagify
- Beta Swagify is an e-commerce platform specializing in personalized printed gifts, offering users a seamless shopping experience.
- Customizable product selection for unique, personalized gifting.
- Secure transaction processing to protect user data and payment details. Comprehensive VAPT assessment conducted to identify and remediate security vulnerabilities.
- Enhanced application security ensuring a safe and reliable shopping experience.
- Beta Swagify prioritizes both user experience and cybersecurity, delivering a secure and engaging ecommerce platform
RESPONSIBILITIES
Web application vulnerability Assessment and penetration testing
- Information Gathering/Requirement analysis of application to be tasted.
- Application security test planning.
- Preparation of Threat Modeling Scenarios, VAPT, Security testing, test cases, reports.
- Designing different types of attacks like User Interface attacks, Authentication, Authorization attacks, session hijacking, CSRF attacks, DB related attacks, Static vulnerability scanning, penetration testing.
- Perform security testing using BURP Pro suite, OWASP Zap, SQLMap, NMAP, NIKTO, DIRB, Sslscan Wireshark tools.
- Identification of vulnerabilities and reporting them to the client.
- Tracking and retesting the features for validation.
API vulnerability Assessment and penetration testing:
- Proficient in exploiting API OWASP TOP 10 vulnerabilities.
- Proficient in Analyze the API Swagger collection.
- Proficient in REST API Vulnerability Assessment & Penetration Testing.
Timeline
Security Analyst
Codesplit Technologies
04.2024 - Current
Diploma In Electronics & Tele-Communication - Science
Vivekananda Education Society's Polytechnic College
04.2001 -
Bachelor of Science - Information Technology
Mahatma Phule College
04.2001 -
Similar Profiles
Venkata Nagaraju InakolluVenkata Nagaraju Inakollu
Technical Lead(System Design) at Relysys Technologies Pvt Ltd (now Invendis Technologies pvt ltd)Technical Lead(System Design) at Relysys Technologies Pvt Ltd (now Invendis Technologies pvt ltd)
Anurag PatelAnurag Patel
SERVICE DELIVERY ENGINEER at Norwin Technologies (Dell Technologies)SERVICE DELIVERY ENGINEER at Norwin Technologies (Dell Technologies)
Sachin HatoleSachin Hatole
Quality Analyst at Mindpool Technologies Pune, Mindpool TechnologiesQuality Analyst at Mindpool Technologies Pune, Mindpool Technologies
AAKASH SABALEAAKASH SABALE
Support Executive Service Engineer at Dak System IncSupport Executive Service Engineer at Dak System Inc
ROHAN SINGHROHAN SINGH
Client Advisor at GUCCIClient Advisor at GUCCI