Hi, I’m
Priyanshu Gupta
Deputy Manager, Deloitte
Noida
Summary
Deputy Manager with over 8 years of experience in cybersecurity, specializing in penetration testing and vulnerability assessments for web and API's, as well as infrastructure. Adept at delivering high-quality projects within strict deadlines, and recognized in the Hall of Fame by numerous industry giants, including MasterCard, Intercom, ibotta, Western Union, Unilever, Lenovo, ASUS, Grofers, JISC, Kohl's etc.
Overview
9
years of professional experience
5
years of post-secondary education
4
Certificates
Work History
DeloitteGurgaon
Deputy Manager
08.2019 - Current
Job overview
- Currently overseeing end-to-end penetration testing activities for one of Australia's largest banking institutions, ensuring robust security measures and thorough vulnerability assessments to maintain secure digital environment.
- Successfully led and managed team of 6 application security engineers, and provide developers valuable guidance and direction on various security projects.
- Conducted comprehensive secure code reviews, API security assessments, and penetration testing for Australian banking client, identifying and addressing potential vulnerabilities before deployment to production environments.
- Utilized expertise in Agile methodologies to streamline security processes and enhance collaboration between development and security teams.
- Developed and implemented security best practices, policies, and guidelines, fostering culture of continuous improvement and risk reduction.
- Leveraged extensive experience with industry-leading security tools, such as SAST, SCA, BurpSuite Pro, Checkmarx, Fortify, Nessus, Nmap, and Acunetix, to enhance security posture of projects.
- Effectively communicated complex security concepts to non-security stakeholders, ensuring shared understanding of security priorities and objectives.
DeloitteGurgaon
Assistant Manager (Promoted From Consultant)
08.2019 - 05.2022
Job overview
- Conducted multiple application security, API security assessments, and secure code reviews for high-profile clients, including one of largest banks based in Australia, ensuring highest level of security across their digital products.
- Led application and infrastructure VAPT for major clients, such as a leading global provider of Data-Centric Security & Rights Management Solutions, identifying security risks and vulnerabilities to protect their IT infrastructure and systems.
- Conducted thorough risk and vulnerability assessments, delivering results and recommendations to senior management, enabling informed decision-making and strategic planning for enhanced security measures.
Think Future TechnologyGurgaon
Senior Cyber Security Engineer
09.2018 - 07.2019
Job overview
- Directing application security team in assessing client web and mobile applications containing sensitive customer data, ensuring highest level of security and data protection.
- Managing Bug Bounty Program, including triage, report validation, response, and closure, to efficiently address potential vulnerabilities and maintain robust security posture.
- Conducting Vulnerability Assessment and Penetration Testing (VAPT) for in-house developed projects, providing tailored remediation recommendations for each product to enhance security measures.
- Developing and disseminating cybersecurity best practice communications to educate staff about known threats and potential attack vectors, fostering security-conscious culture across organization.
Fujitsu Consulting IndiaPune
Technical Consultant
07.2016 - 09.2018
Job overview
- Performed security testing in test environments using both automated tools and manual analysis techniques, ensuring thorough evaluations of potential risks and weaknesses.
- Managed infrastructure vulnerability assessments by creating and implementing Nessus policies for various scanning requirements and coordinating security efforts using vulnerability scanners, such as Nessus and Skybox.
- Collaborated closely with cross-functional teams to address vulnerabilities and related security patches for major products from companies such as Microsoft, Adobe, and Oracle, ensuring timely and effective remediation.
- Developed and delivered customized vulnerability reports that were easily understandable by developers, streamlining communication and reducing time and effort required for vulnerability remediation.
Paytm (One97 Communications)Noida
Fraud Analyst
08.2014 - 07.2015
Job overview
- Responsible for wide range of duties related to investigation and elimination of online E-Commerce risk
- Report monitoring and analysis of trend of transactions to curb menace of E-Commerce Fraud
- Identify and trace any suspicious or high-risk transactions and determine if there is improper activity involved and if there is any risk to bank or its customer.
Education
CDAC BangaloreBangalore
PG-Diploma from IT Infrastructure And System Securities
05.2015 - 05.2016
Hindustan Institute of Technology And ManagementAgra
B.Tech
05.2010 - 05.2014
Skills
- Application Security
- API Security
- DevSecOps
- SAST (Static Application Security Testing) Tools
- SCA (Software Composition Analysis) Tools
- Team Leadership & Management
- Risk and Vulnerability Assessment
- Metrics & Reporting
Accomplishments
- Top 300 security researchers in Bugcrowd (Vulnerability Coordination Platform) all-time Leader board.
- Bugcrowd MVP Q1 2020 & Q1 2021
- Stood as a runner-up in the "Cybersecurity Hackathon 2021" event conducted by Winjit Technologies Pvt Ltd.
- Awarded "Dot Of Fame" in individual and team category by Deloitte in recognition of outstanding contribution and demonstrating the following values: Change and Innovation, Client Centricity, Collaboration
- Listed in the Hall of Fames of many Internet giants like MasterCard, Intercom, ibotta, WesternUnion, Unilever, Lenovo, ASUS, Grofers, JISC, Kohl's Saitenforum.de, NCIIPC INDIA (UNIT OF NTRO), KASKUS etc
Certification
EWPTXv2, eLearnSecurity
Timeline
EWPTXv2, eLearnSecurity
01-2022
ICSI | CNSS Certified Network Security Specialist, ICSI
06-2020
Deputy Manager
Deloitte
08.2019 - Current
Assistant Manager (Promoted From Consultant)
Deloitte
08.2019 - 05.2022
Certied Ethical Hacker(CEHv10), eccouncil
01-2019
Senior Cyber Security Engineer
Think Future Technology
09.2018 - 07.2019
Technical Consultant
Fujitsu Consulting India
07.2016 - 09.2018
PG-Diploma in IT Infrastructure System and Security, CDAC, Bangalore
03-2016
CDAC Bangalore
PG-Diploma from IT Infrastructure And System Securities
05.2015 - 05.2016
Fraud Analyst
Paytm (One97 Communications)
08.2014 - 07.2015
Hindustan Institute of Technology And Management
B.Tech
05.2010 - 05.2014