Summary
Overview
Work History
Education
Skills
Certification
Tools
Timeline
Generic

Nidhi Anil Kumar

Security Delivery Team Lead
Bengaluru

Summary

Experienced Application Security Team Lead with over 6.5 years of dedicated experience in Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Penetration Testing (Pentest). Proven track record of managing and leading security teams to ensure the confidentiality, integrity, and availability of applications. Seeking a challenging role to leverage my skills and experience in securing enterprise-level applications. I am looking to work in a professional work driven environment where I can utilize and apply my knowledge, skills which would enable me to grow while fulfilling organizational goals.

Overview

8
8
years of professional experience
4
4
Certifications

Work History

Security Delivery Team Lead

Accenture
08.2019 - Current
  • · Lead and manage a team of application security professionals responsible for conducting SAST, DAST, SCA and Pentest activities.
  • ·Develop and implement application security strategies, policies, and procedures to mitigate risks and vulnerabilities.
  • ·Perform security assessments and reviews of applications to identify and remediate security weaknesses.
  • ·Conduct source code reviews, security testing, and vulnerability assessments using tools such as Burp Suite, Veracode, Fortify, Web Inspect, App Scan and Snyk.
  • ·Collaborate with development teams to integrate security practices into the software development lifecycle (SDLC).
  • ·Optimizes tool to give better scan results by configuring scan settings and code cleanup.
  • Implementing shift-left approach by integrating SAST in CI/CD pipelines.
  • · Provide guidance and recommendations on secure coding practices, security best practices, and compliance requirements.
  • ·Conduct training sessions and workshops to raise awareness of application security among team members and stakeholders.

Project Engineer

Wipro
03.2017 - 08.2019
  • Experience in working on Veracode for Static Application Security Testing (SAST) .
  • Handling 8-9 service request on a daily basis including both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).
  • Coordinate with various Subject Matter Experts (SMEs) and Project Managers and ensure the scans are completed and the flaws are mitigated within the given deadline.
  • Manage the engagement process (request for scan) from start to end.
  • Go through each request to determine the type of scanning required.Liaise with multiple project teams and multiple clients to ensure smooth functioning of the process.
  • Support budget and resource forecasting. Respond to various technical/process queries from various Project Teams/Project Managers within SLA.

Education

B.Tech in Computer Science -

Amity University Rajasthan
Jaipur
04.2001 -

Skills

DAST

SAST

Pentesting

Secure Coding Practices

BURP Suite, Veracode, Web-Inspect, App Scan and Snyk

Risk Assessment and Mitigation

Certification

CEH

Tools

  • HCL Appscan Standard and enterprise
  • Webinspect
  • Veracode
  • Fortify
  • Snyk
  • BurpSuite(community and pro)
  • Postman
  • JIRA

Timeline

Security Delivery Team Lead

Accenture
08.2019 - Current

Project Engineer

Wipro
03.2017 - 08.2019

B.Tech in Computer Science -

Amity University Rajasthan
04.2001 -
Nidhi Anil KumarSecurity Delivery Team Lead