Nidhi Anil Kumar
Security Delivery Team Lead
Bengaluru
Summary
Experienced Application Security Team Lead with over 6.5 years of dedicated experience in Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Penetration Testing (Pentest). Proven track record of managing and leading security teams to ensure the confidentiality, integrity, and availability of applications. Seeking a challenging role to leverage my skills and experience in securing enterprise-level applications. I am looking to work in a professional work driven environment where I can utilize and apply my knowledge, skills which would enable me to grow while fulfilling organizational goals.
Overview
8
8
years of professional experience
4
4
Certifications
Work History
Security Delivery Team Lead
Accenture
08.2019 - Current
- · Lead and manage a team of application security professionals responsible for conducting SAST, DAST, SCA and Pentest activities.
- ·Develop and implement application security strategies, policies, and procedures to mitigate risks and vulnerabilities.
- ·Perform security assessments and reviews of applications to identify and remediate security weaknesses.
- ·Conduct source code reviews, security testing, and vulnerability assessments using tools such as Burp Suite, Veracode, Fortify, Web Inspect, App Scan and Snyk.
- ·Collaborate with development teams to integrate security practices into the software development lifecycle (SDLC).
- ·Optimizes tool to give better scan results by configuring scan settings and code cleanup.
- Implementing shift-left approach by integrating SAST in CI/CD pipelines.
- · Provide guidance and recommendations on secure coding practices, security best practices, and compliance requirements.
- ·Conduct training sessions and workshops to raise awareness of application security among team members and stakeholders.
Project Engineer
Wipro
03.2017 - 08.2019
- Experience in working on Veracode for Static Application Security Testing (SAST) .
- Handling 8-9 service request on a daily basis including both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).
- Coordinate with various Subject Matter Experts (SMEs) and Project Managers and ensure the scans are completed and the flaws are mitigated within the given deadline.
- Manage the engagement process (request for scan) from start to end.
- Go through each request to determine the type of scanning required.Liaise with multiple project teams and multiple clients to ensure smooth functioning of the process.
- Support budget and resource forecasting. Respond to various technical/process queries from various Project Teams/Project Managers within SLA.
Education
B.Tech in Computer Science -
Amity University Rajasthan
Jaipur 04.2001 -
Skills
DAST
SAST
Pentesting
Secure Coding Practices
BURP Suite, Veracode, Web-Inspect, App Scan and Snyk
Risk Assessment and Mitigation
Certification
CEH
Tools
- HCL Appscan Standard and enterprise
- Webinspect
- Veracode
- Fortify
- Snyk
- BurpSuite(community and pro)
- Postman
- JIRA
Timeline
Security Delivery Team Lead
Accenture
08.2019 - Current
Project Engineer
Wipro
03.2017 - 08.2019
B.Tech in Computer Science -
Amity University Rajasthan
04.2001 -
Similar Profiles
JESWIN JAINJESWIN JAIN
Performance Tester at AccenturePerformance Tester at Accenture
Amanjot Kaur LambaAmanjot Kaur Lamba
Workday Integration Consultant at AccentureWorkday Integration Consultant at Accenture
Sumit PatilSumit Patil
SAP Security and GRC Consultant at AccentureSAP Security and GRC Consultant at Accenture
Priyanka GhoshPriyanka Ghosh
Instructional Design Analyst at AccentureInstructional Design Analyst at Accenture
Hemendu JoshiHemendu Joshi
Lead Technology Manager – Creative Technology & Innovation Management at UnileverLead Technology Manager – Creative Technology & Innovation Management at Unilever