Noorain Shariff
Cloud Security Analyst
Bangalore,Karnataka
Summary
Information Security professional with 8+ years of expertise in Web Application Security, specializing in vulnerability assessments, penetration testing, and innovative security practices.
Overview
8
8
years of professional experience
5
5
years of post-secondary education
4
4
Certifications
Work History
Security Analyst
Accenture Solutions Private Limited
Bangalore
07.2021 - Current
- Company Overview: Security Operations Centre
- Manual walkthrough of the application to understand the application functionality
- Interacting with Developers Team for better understanding of Secure Application Development
- Experience in performing security testing on web Applications, Mobile Applications, cloud services, API based technologies using Postman and other open-source tools
- Handling the responsibilities in Performing DAST & SAST Security testing of web applications, mobile applications & web services by using different tools
- Reviewing the False positive analysis reports of the existing team members
- Hands on experience on performing SAST scan using checkmarks and send report to the FPA team
- Scheduling Team meetings to discuss queries/issues in Change Orders delivery on-time
- Working with application team to provide recommendations for the issues reported
- Research on new exploitation methodologies, tools to assist and update process of penetration testing
- Familiarity with open source, licensed versions of vulnerability scanning and Assessment tools
- Performing retests on the fixed issues and provide approval from security team perspective
- Supporting multiple projects and involve in client calls to understand the requirement and effort estimations needed to provide the quality results on time
- Security Operations Centre
- Reduced security risks by 18% through enhancing protocols and ensuring adherence to regulations.
- Developed and maintained detailed documentation on security processes, facilitating knowledge transfer and ensuring consistency in procedures.
Security Associate
Accenture Solutions Private Limited
Bangalore
07.2018 - 06.2021
- Gathered and documented business requirements by engaging with stakeholders
- Created detailed user stories and acceptance criteria to support development
- Used Azure DevOps for requirement tracking, defect management, and reporting
- Ensured smooth communication between business and technical teams to meet project goals
Security Associate
Alchemy Solutions Pvt Ltd
Bangalore
08.2016 - 07.2018
- Migration of AD accounts to the ADS accounts, the ADS account lacks email address and thereby reducing exposure for phishing attacks.
- Communicating and working along with various CIO teams based out in different geographies and driving them for completion
Education
BTECH - Computer Science
Rajarajeshwari College of Engineering
India 01.2012 - 08.2016
Skills
Strong determination and desire
Punctuality with good communication
Interpersonal learning
Team skills with quick learning capability
Good communication Skills
Enthusiastic to lead the group
Ability to work in a team
Solution-oriented attitude
Technicalexperience - Summary
- Experience in Web Application Security Testing and security testing followed by OWASP Standards.
- Experience with HCL App scan
- Expertise in manually analyzing requests/responses, look for the common vulnerabilities, segregate false positives findings for the perfect results.
- In-depth knowledge of common web application vulnerabilities such as SQL injection, cross-site scripting, CSRF, OTP Bypass, rate limit, cryptographic attacks, JWT attacks, click jacking, information disclosure and web application related attacks.
- Experience in preparing comprehensive security report detailing identifications and recommendations for the Vulnerabilities shared and presented with the Client.
- Skills and willingness to learn the latest technologies.
- Ability to explore, learn and apply technologies to increase business prospects.
Certification
CompTIA Security+ (pursuing)
Disclaimer
I hereby declare that the information furnished above is true to the best of my knowledge and belief.
Timeline
Security Analyst
Accenture Solutions Private Limited
07.2021 - Current
Security Associate
Accenture Solutions Private Limited
07.2018 - 06.2021
Security Associate
Alchemy Solutions Pvt Ltd
08.2016 - 07.2018
BTECH - Computer Science
Rajarajeshwari College of Engineering
01.2012 - 08.2016