Summary
Overview
Work History
Skills
Certification
Timeline
Generic
Manindra Simhadri

Manindra Simhadri

Senior Security Engineer
Hyderabad

Summary

Resourceful Security Engineer experienced in evaluating and assessing requirements and implementing infrastructure to solve identified problems. Harnessed code and cloud-native technologies to create scalable and user-centric systems. Strong negotiator with excellent value-driven solutions.

Overview

7
7
years of professional experience
10
10
Certificates

Work History

Cloud Security Engineer

Coupa
Hyderabad
11.2022 - Current
  • Understanding organization security posture and improving it as per standard
  • Creating security policies like Tagging policies for instances.
  • Automating SIEM alerts verification
  • Working with board directors to understand security of the organization and planing on improving the posture in given timelines
  • Understanding Risk and assessing the impact on organization.

Security Operations Engineer

Simpl
Bangalore
01.2022 - 11.2022
  • Complete SAST analysis using Sonarqube and Github manually
  • End-to-end research on a vulnerability and impact of it on organization
  • Creating threat models of the infrastructure, application to understand threats and mitigating them
  • DAST analysis using Burp and penetration testing on web, network and mobile apps
  • Working with development, SRE and DevOps team to mitigate vulnerabilities
  • Designed tests and tools to break into security-protected applications and networks to probe for vulnerabilities.

Senior Security Researcher

Loginsoft Pvt Ltd
Hyderabad
03.2021 - 01.2022
  • Excellent experience in Web technologies
  • SAST for different technologies
  • Generating POCs based on the vulnerability and reproducing them
  • Creating OVAL files for different vulnerabilities for their identification on different end points
  • Worked in Checkmarx team to develop their tool

Senior Security Engineer

Aujas Networks
Bangalore
08.2019 - 01.2021
  • Conducted security audits to identify vulnerabilities.
  • Trained developers and helped in securing the products
  • Security tested QRadar and Splunk plugins
  • Complete SAST and DAST analysis
  • Understanding the requirement and designing the security nodes right from the starting of the project
  • Training developers for the most common places the security is overlooked and helping them to develop secure product
  • Testing docker containers, images for vulnerabilities and rebuilding them with the patch
  • Understanding the client architecture and informing how to securely configure the application for better security.
  • Threat modeling of the architecture to understand threat surface

Security Researcher

Loginsoft
09.2018 - 08.2019
  • Excellent experience in Web technologies
  • SAST for different technologies
  • Generating POCs based on the vulnerability and reproducing them
  • Worked in Sonatype team to develop their tool

Security Analyst

Vaster Life Sciences
Bangalore
02.2017 - 08.2018
  • Penetration testing for web application
  • Conducting Security Audits
  • Writing security assessment reports
  • Review current corporate policies and help redefine procedures for better security
  • Enhance current hardware and software with implementations of better security standards

Freelancing Blogger and security analyst

Freelancing
01.2016 - 01.2017
  • VAPT
  • Burp Suite, Acunetix, Nmap,Metasploit
  • CMS security testing

Skills

    Black box, White box and Grey box application testing

Networking security

ArcSight, Splunk, QRadar and Sumologic

Plugins for SIEM platforms

Experienced in E-commerce, Payments, Payment gateway and Banking

Extensive experience in security testing with BurpSuite and ZAP

Proficient experience in automation using Python and Workato

Sound knowledge in various Content Management Systems like WordPress, Magneto, Joomla and Drupal

Good hands on experience Data analysis using Numpy, PMatplotlib, Scrapy, Seaborn and Ipythonandas, Scikit

Great experience on Sonarqube, Bandit source code analysis tool

Good knowledge on CICD integration and pipelines

Teambuilding

Active Listening

Security consultation

Security infrastructure architecture

Security vulnerability assessment

Penetration testing

Architecture review

Security regulations compliance

Security logging

Programming literacy in Python

Data security

Developing security plans

Implementing security programs

Problem-Solving

Analytical and Critical Thinking

Certification

Certified Security Analyst from EC-Council

Timeline

Sumologic Cloud SIEM Fundamentals

12-2023

CyberArk Introduction to Identity Security

06-2023

Red Team Operator from Zero-Point Security

05-2023

ISC2 Certified in Cyber Security

01-2023

Automation Pro I from Workato

01-2023

Automation Pro II from Workato

01-2023

API Security Architect from API Academy

12-2022

The Sumo Security Pipeline Certificate from Sumologic

12-2022

Cloud Security Engineer

Coupa
11.2022 - Current

Security Operations Engineer

Simpl
01.2022 - 11.2022

Senior Security Researcher

Loginsoft Pvt Ltd
03.2021 - 01.2022

Senior Security Engineer

Aujas Networks
08.2019 - 01.2021

Security Researcher

Loginsoft
09.2018 - 08.2019

Certified Security Analyst from EC-Council

12-2017

Certified Ethical Hacker from EC-Council

09-2017

Security Analyst

Vaster Life Sciences
02.2017 - 08.2018

Freelancing Blogger and security analyst

Freelancing
01.2016 - 01.2017

Similar Profiles

CREATE PROFILE
Manindra SimhadriSenior Security Engineer