Summary
Overview
Work History
Education
Skills
Certification
Accomplishments
Timeline
Generic
MEGHA RAJAGOPAL

MEGHA RAJAGOPAL

Palakkad

Summary

A passionate and results-driven cybersecurity professional with over 6 years of experience in safeguarding organizations from internal and external threats. Expertise in vulnerability assessments, application security, and risk analysis, with a proven ability to preemptively detect and mitigate emerging threat vectors. Adept at implementing robust security frameworks, including Open Web Application Security Project (OWASP) principles, to identify and address vulnerabilities effectively.

Overview

6
6
years of professional experience
1
1
Certification

Work History

Senior Security Engineer

H&R Block
Trivandrum
11.2022 - Current
  • Handled SonarQube queries, and managed auto governance exceptions to ensure compliance and operational efficiency.
  • Gained hands-on experience with the Black Kite tool for cybersecurity assessments.
  • Conducted and managed the Developer Champion Program on a monthly basis, fostering collaboration and knowledge-sharing among developers.
  • Performed both manual and automated application security testing to identify vulnerabilities and strengthen application security.
  • Presented an overview of SonarQube integration with Azure DevOps (ADO), and demonstrated SonarQube tool features to the Canada team for implementation.
  • Designed and implemented a Power BI dashboard with enhanced features to support the Developer Champion Program.
  • Contributed content to the Block Cipher Information Security Newsletter, providing thought leadership in cybersecurity.
  • Mentored team members and suggested automation ideas to the SOAR Team, enhancing efficiency and innovation.
  • Delivered impactful presentations in leads and flash sessions to communicate complex security concepts effectively.
  • Implemented Single Sign-On (SSO) in SonarQube, performed user cleanup, and created a strategic plan for platform maintenance.
  • Executed a SonarQube version upgrade, ensuring the latest features and security patches were applied.
  • Managed the organization's Bug Bounty platform, streamlining vulnerability reporting and resolution processes.

System Engineer

Tata Consultancy Service (TCS)
Trivandrum
10.2021 - 11.2022
  • Conducted comprehensive vulnerability assessment operations for TCS infrastructures and devices, ensuring robust security posture
  • Performed automated scanning using the Nexpose tool to identify and address vulnerabilities efficiently
  • Acquired in-depth knowledge of infrastructure vulnerability assessments, including the application of exceptions to comply with organizational standards and policies

Cyber Security Analyst

UL Technology Solutions
Thondayad, calicut
01.2019 - 09.2021
  • Conducted vulnerability assessments for infrastructure and applications, identifying potential threats and remediation opportunities
  • Investigated tools and countermeasures to address detected vulnerabilities, recommending effective solutions and best practices
  • Analyzed and assessed the impact of security incidents on data and infrastructure, examined recovery tools and processes, and proposed actionable solutions
  • Researched and developed a custom tool, UL Encryptor, to enhance data protection capabilities
  • Performed comprehensive risk analyses to determine and implement appropriate security countermeasures
  • Designed and delivered cybersecurity best-practice communications to educate sales teams on mitigating known threats and attack vectors during sales and project delivery processes
  • Organized and led Cybersecurity Conclave Programs for banking professionals to raise awareness and enhance security practices
  • Provided hands-on training in cybersecurity essentials and practical techniques, fostering team development and skill enhancement
  • Established organization-wide security protocols and best practices to mitigate the risk of data breaches
  • Hands-on experience in deploying and configuring Wazuh for enhanced monitoring and threat detection

Cybersecurity Intern

UL Technology Solutions
Thondayad, Calicut
08.2018 - 01.2019
  • Conducted comprehensive risk analyses to identify and implement appropriate security countermeasures
  • Contributed to continuous improvement by generating actionable suggestions and engaging in collaborative problem-solving to enhance team efficiency
  • Recommended and implemented improvements in security systems, policies, and procedures to mitigate vulnerabilities
  • Regularly reviewed firewall logs and monitored network activities to identify potential threats
  • Gained hands-on experience with web application security auditing, identifying vulnerabilities and ensuring compliance with industry best practices
  • Familiarized with and adhered to various security standards, policies, and procedures to maintain a robust security posture

Education

Master of Advanced Study - Cybersecurity

Nehru College Of Engineering And Research Center
Ottapalam
01.2018

Bachelor of Technology - Information & Technology

MEA Engineering College
Melattor
01.2014

Skills

  • Ethical hacking techniques
  • Vulnerability assessment
  • Application security testing
  • Security architecture design
  • Firewall configuration and management
  • Security risk assessment
  • Wireless network security
  • Incident response management
  • Digital forensics investigation
  • Security policy development
  • Problem solving and decision-making
  • Project Management and Teamwork

Certification

  • Certified Ethical Hacker (CEH), EC-Council, 2020-2023
  • Certified Penetration Tester, Red Team Hacker Academy, 2020
  • Fortinet Network Security Expert Level 1: Certified Associate, Fortinet, 2020-2022
  • Fortinet Network Security Expert Level 2: Certified Associate, Fortinet, 2020-2022
  • Website Hacking/Penetration Testing & Bug bounty Hunting, Udemy, 2020
  • IBM Cybersecurity certificates
  • AI Driven Cybersecurity
  • Thick Client Application Pentesting
  • Cybersecurity Architecture Fundamentals
  • CISSP Certification (Learning in progress)

Accomplishments

  • Reported Vulnerability disclosures to NCIIPC.
  • Conducted Cybersecurity Awareness program for Sesame Technologies, Calicut.
  • Participated in IEEE-Microsoft App Developer Campaign Volunteer service at Novista-IEEE LINK Camp.
  • Attended workshop on Robotics in college.
  • Presented Paper on 'A SURVEY ON USER AUTHENTICATION TECHNIQUES AND ITS DRAWBACKS' at the National Conference on Recent Trends In Computing and Communications.
  • Published Paper on 'SECURITY EMPOWERMENT USING QR CODE AND SESSION TRACKING FOR CUED RECALL BASED TEXTUAL PASSWORD USERS' at International Research Journal of Engineering and Technology (IRJET).
  • Presented paper on 'SECURITY EMPOWERMENT USING QR CODE AND SESSION TRACKING FOR CUED RECALL BASED TEXTUAL PASSWORD USERS' at 'Research Conclave 2018' organised by KTU Palakkad Cluster.
  • Received the XOXO Better Together award for resolving SonarQube queries, writing content for the Information Security Newsletter, and leading the Developer Champion Program.
  • Awarded the ACE Award for AppSec Season Readiness Testing from H&R Block.
  • Earned the Problem Solver Badge for successfully implementing SSO and performing SonarQube cleanup at H&R Block.
  • Delivered a practical demo on forensic tools like Autopsy and Recuva during Cybersecurity Awareness Month.
  • Honored with the Quarterly Block Stars Award on November 26th 2024 for SSO integration efforts.

Timeline

Senior Security Engineer

H&R Block
11.2022 - Current

System Engineer

Tata Consultancy Service (TCS)
10.2021 - 11.2022

Cyber Security Analyst

UL Technology Solutions
01.2019 - 09.2021

Cybersecurity Intern

UL Technology Solutions
08.2018 - 01.2019

Master of Advanced Study - Cybersecurity

Nehru College Of Engineering And Research Center

Bachelor of Technology - Information & Technology

MEA Engineering College

Similar Profiles

CREATE PROFILE
MEGHA RAJAGOPAL