Revanashiddhayya Bennuramath
Bengaluru
Summary
Having 11.1 years of experience in cyber security(overall 13.1 years), to be a part of the organization where I can effectively utilize skills and impart knowledge in the area of Cyber Security and to synergize with the organization in achieving its vision, goals, and objectives and to grow with it.
Overview
13
13
years of professional experience
8
8
years of post-secondary education
3
3
Certifications
Work History
Architect
Hexaware Technologies
Bengaluru
2023.09 - Current
- Leading 4+ member’s vulnerability management team
- Performing Vulnerability Assessment for Servers, networking Devices, Security Devices and Endpoints
- Tracking complete vulnerability Management process for customer and sharing the dashboard to CISO on weekly basis
- Scanning the assets for regular vulnerabilities, exploitable vulnerabilities and zero day vulnerabilities and taking to operation team and fallow up with them until closure
- Initiation for automation, creating SOP’s, Runbooks and other required documents for the customers
- Compliance assessments.
Lead Consultant - QA
Virtusa Consulting Service Pvt. Ltd
Bengaluru
2022.04 - 2023.08
- Led 5+ person penetration testing team with having excellent knowledge of Information Security and Penetration Testing methodologies for Network, Web Application, API’s fallowing the OWASP top 10 and SANS 25 Framework
- Conducting Vulnerability Assessment and Penetration Testing of customers 20+ applications, Network, Infra VA and CIS benchmark to ensure adherence to security as per industrial standard
- Reported various major findings like: stored XSS, SQL injection, HTML injection, broken access control and other critical vulnerabilities in multiple application
- Handy experience in Fuzzing techniques using commercial and open source tools
- Weekly Executive briefing on project status to managers, Daily Status Report Tracking, and Standard operating procedure (SOP) Review with leads
- Working closely with multiple Development teams and QA teams to deliver highest quality SW releases in a timely manner
- Support software development team via various CI tools and build systems, identifying opportunities to continuously improve our processes with appropriate automation and reporting.CI/CD & Cloud: Jenkins, Gitlab, AWS.
Assistant Manager
Wipro Technologies
2018.05 - 2022.03
- Led 20+ people vulnerability assessment and penetration testing team
- Manage and conduct penetration testing for 300+ Wipro internal applications and Vulnerability assessment for 20K+ assets of Wipro (Servers, Network and Security devices)
- Performed vulnerability assessment for 2Lakh+ end points with compliance check
- Implemented CIS level1 policy compliance for servers, networking devices and security devices of the organization
- Implemented multiple vulnerability management tools like, Tenable SC, Qualys VMDR and Rapid7 for the organization
- Worked on weekly vulnerability status report with executive summary and shared with stakeholders as well as CISO of the organization
- Trained and mentored employees to maximize team performance
- Identify and resolve any false positive findings in the assessment results.
Technical Consultant
Inflow Technologies
2015.10 - 2018.04
- Conducted VA&PT for web application, networking, Infrastructure Vulnerability Assessment
- Implemented of ITGRC in RSA Archer platform for the modules threat, risk and compliance management
- Worked on Skybox implementation for one of our major client
- SIEM (IBM QRadar) and VAS integration with RSA Archer.
Sr. VAPT Auditor
Digital Age strategies Pvt. Ltd
2013.05 - 2015.10
- Penetration testing for web application and Vulnerability Assessment for Servers, Network and Security Devices
- As Distinction of being part of the 4 members team that cleared the DIT, Mumbai certification for auditor empanelment for Maharashtra state
- Reviewing ISO 27001 controls.
Network Engineer
Sigma Research and consulting
2011.02 - 2013.05
- Managing network and security devices configurations(Routers and Firewalls)
- Network administration and access control implementation
- Installing Antivirus software and rules configurations
- Patch management for servers, networking and security devices.
Education
Bachelor of Engineering in ISE -
BCET College, VTU University
2006.01 - 2010.04
XII - undefined
Hirekerur. K H Patil
2004.01 - 2006.04
SSLC - undefined
Kusanur. SPK High School
2003.01 - 2004.04
Skills
Penetration Testing: Burp Suite, Acunetix, Namp, Metasploit pro, Kali Linux, Wireshark, Postman, OWASP ZAP, AppScan, Webinspectundefined
Certification
Certified Ethical Hacker
Operating Systems
Kali-Linux, RHEL, Cent-OS, Ubuntu, Windows Servers
Sast Sca
Polaris, SonarQube, Black Duck & CheckMarx
Vulnerability Management
Nessus Pro, Tenable SC, Tenable IO, Qualys VMDR, Rapid7 Nexpose
Areas Of Interest
- Cloud & Container Security
- DevSec Ops
- Exploit Writing
Timeline
Architect
Hexaware Technologies
2023.09 - Current
Lead Consultant - QA
Virtusa Consulting Service Pvt. Ltd
2022.04 - 2023.08
Assistant Manager
Wipro Technologies
2018.05 - 2022.03
Technical Consultant
Inflow Technologies
2015.10 - 2018.04
Sr. VAPT Auditor
Digital Age strategies Pvt. Ltd
2013.05 - 2015.10
Network Engineer
Sigma Research and consulting
2011.02 - 2013.05
Bachelor of Engineering in ISE -
BCET College, VTU University
2006.01 - 2010.04
XII - undefined
Hirekerur. K H Patil
2004.01 - 2006.04
SSLC - undefined
Kusanur. SPK High School
2003.01 - 2004.04
Certified Ethical Hacker
Nexpose Certified Administrator from RAPID7
JAVA Certification provided by HCL Career Development Center
Similar Profiles
Shaheen KhanShaheen Khan
Subject Matter Expert at Hexaware TechnologiesSubject Matter Expert at Hexaware Technologies
JEGATHARANI MURALIKKRISNANJEGATHARANI MURALIKKRISNAN
Subject Matter Expert – Payments Commercial Cards at Hexaware TechnologiesSubject Matter Expert – Payments Commercial Cards at Hexaware Technologies
Manoj YadavManoj Yadav
Business Data Analyst at Hexaware TechnologiesBusiness Data Analyst at Hexaware Technologies