RAKESH BANERJEE
Security Architect
Kolkata
Summary
Seasoned cyber security leader with over a decade of experience driving product security strategy, cross-functional collaboration, and secure software practices across cloud and legacy environments. Proven ability to embed security into SDLC, lead threat modeling efforts, and mitigate risk at scale. Extensive experience in secure SDLC, penetration testing, cloud security, and threat modeling. Demonstrated track record of embedding security into product development, leading PSIRT initiatives, managing CVE processes, and deploying DevSecOps practices across CI/CD pipelines. Expertise in SAST, DAST, Kubernetes security, binary injection, fuzzing, and security automation. Recognized for driving measurable security improvements and delivering cross-functional impact.
Overview
11
11
years of professional experience
4
4
years of post-secondary education
6
6
Certifications
Work History
Senior Product Security Engineer
Intel Corporation
Bangalore
11.2022 - Current
- Led end-to-end security initiatives for Intel Advisor and VTune products, managing Secure SDLC, PSIRT lifecycle, and performing comprehensive threat modeling, significantly strengthening product security posture.
- Integrated shift-left security practices and DevSecOps into CI/CD pipelines, with weekly triage of vulnerabilities and security events to ensure early detection and remediation.
- Conducted penetration testing, SAST, DAST, and Software Composition Analysis (SCA) using tools like Coverity, developing custom filters and validating false positives, leading to a 95% improvement in vulnerability detection accuracy.
Product Security Engineer
Cisco Systems
Bangalore
12.2020 - 11.2022
- Secured Cisco's Next-Gen Firewall (NGFW) by conducting in-depth API, application, and system security testing, significantly improving overall product security posture.
- Performed AWS security assessments, integrating SAST and DAST tools into development workflows for continuous security validation, achieving a 90% improvement in testing efficiency.
- Led Kubernetes security initiatives and executed threat modeling for containerized environments, achieving a 90% reduction in vulnerabilities through hardened configurations and proactive risk mitigation.
- CVE's found : CVE-2022-20627, CVE-2022-20628, CVE-2022-20629
Security Consultant - Risk & Financial Advisory
Deloitte & Touche LLP
Bangalore
03.2019 - 12.2020
- Conducted comprehensive VAPT across web, network, API, and thick client applications, resulting in a 95% improvement in overall security posture for clients across finance, automotive, ecommerce, and healthcare sectors.
- Performed cloud security testing on AWS, validating compliance and ensuring robust configuration and access control across cloud-native assets.
- Leveraged DAST tools (Burp Suite Pro, IBM AppScan, OWASP ZAP) and SAST tools (HP Fortify, Coverity, Checkmarx) to enhance detection accuracy and reduce false positives by 95%, optimizing testing for both short- and long-duration engagements.
Associate - Projects (Cyber Security Consultant)
Cognizant Technology Solutions
Kolkata
03.2018 - 03.2019
- Conducted VAPT for healthcare applications and networks, ensuring HIPAA compliance and driving a 95% improvement in overall security posture.
- Utilized DAST tools (IBM AppScan, Burp Suite) and SAST tools (HP Fortify, Checkmarx) to identify and remediate vulnerabilities, achieving a 95% reduction in false positives and accelerating secure release cycles.
- Performed API security testing using Postman and SoapUI, validating authentication, authorization, and data protection mechanisms, resulting in a 95% improvement in API-level data security.
Software Development Analyst
Accenture Technology Services
10.2014 - 03.2018
- Conducted VAPT and security product development, enhancing security posture by 95% through comprehensive testing and remediation.
- Built web analytics (heatmaps) for behavioral analysis, providing actionable insights to improve user experience.
- Automated processes using Python (e.g., voice-to-text, chatbots), increasing efficiency and reducing manual effort by 50%.
Education
B.Tech -
West Bengal University of Technology
Kolkata, India 01.2010 - 01.2014
Skills
Certification
Intel Green Belt Security Certification, Intel
Honors And Awards
- Intel Security First Award, Intel
- Accenture Celebrates Excellence Award, Accenture
- On the Spot Performance Award
CVE's found
CVE-2022-20627
CVE-2022-20628
CVE-2022-20629
Technical Tools
SAST: Fortify, Coverity, Checkmarx, Veracode
DAST: Burp Suite Pro, IBM AppScan, OWASP ZAP
Cloud: AWS Security Hub, IAM, VPC, S3 security, GuardDuty
Container & DevOps: Kubernetes, Docker, Kube-bench, Trivy, Bandit
API Testing: Postman, SoapUI
Automation: Python, Dependabot, GitHub Actions
Vulnerability Management: Black Duck, Qualys WAS, CVE Coordination Tools
Timeline
Senior Product Security Engineer
Intel Corporation
11.2022 - Current
Product Security Engineer
Cisco Systems
12.2020 - 11.2022
Security Consultant - Risk & Financial Advisory
Deloitte & Touche LLP
03.2019 - 12.2020
Associate - Projects (Cyber Security Consultant)
Cognizant Technology Solutions
03.2018 - 03.2019
Software Development Analyst
Accenture Technology Services
10.2014 - 03.2018
B.Tech -
West Bengal University of Technology
01.2010 - 01.2014
Similar Profiles
Preeti RaoPreeti Rao
Program Manager Technical at Intel CorporationProgram Manager Technical at Intel Corporation
Ashutosh DahalAshutosh Dahal
Process Engineer (Grade 8) at Intel CorporationProcess Engineer (Grade 8) at Intel Corporation
Joshua StreeterJoshua Streeter
Mask Manufacturing Technician at Intel CorporationMask Manufacturing Technician at Intel Corporation
Soumyadeep NagSoumyadeep Nag
Intern at AI Institute of South Carolina (AI @ USC)Intern at AI Institute of South Carolina (AI @ USC)
INDRAJIT MAJUMDARINDRAJIT MAJUMDAR
Management Trainee at Gitanjali Finance Private LimitedManagement Trainee at Gitanjali Finance Private Limited