Summary
Overview
Work History
Education
Skills
Accomplishments
Timeline
Generic
Revati Potnuru

Revati Potnuru

Security Architect
Visakhapatnam

Summary

Passionate and self-driven Security Professional with around 6 years of experience in the cyber security industry, adept at crafting and implementing robust security frameworks spanning healthcare, banking, e-commerce, and diverse sectors. Skilled in maximizing Akamai's security solutions to fortify defenses, mitigate threats, and deliver proactive analysis and bespoke security strategies. Expertise includes configuring and troubleshooting IP/Geo firewalls, WAF, CDN optimization, conducting technical security reviews to ensure compliance and improve security posture. Skilled in Web app and web services VA/PT and remediation recommendations to various customers across the globe.

Overview

6
6
years of professional experience
7
7
years of post-secondary education

Work History

Security Architect

Akamai Technologies India Pvt. Ltd.
7 2022 - Current
  • Designed and implemented security architecture for various customers across different domains comprising of healthcare, banking, credit card, HR, e-commerce, and various PCI-DSS compliant applications, leveraging Akamai's security products to enhance clients' cybersecurity defenses.
  • Implemented various Akamai products such as, App and API Protector(AAP), Bot Manager Premier (BMP), Site shield, Client Reputation,Website Delivery and Acceleration(DSA) solutions for aligned customers.
  • Offered technical guidance on best practices for securely deploying customer hostnames on Akamai servers.
  • Conducted regular Technical Security Reviews for configured firewall controls involving, DOS, WAF, Bot and N/w firewall controls, to identify weaknesses and implement appropriate countermeasures to enhance customer's security posture and improve Akamai security solutions.
  • Collaborated with cross-functional teams for seamless integration of CDN and security products into existing infrastructure.
  • Assisted in troubleshooting and mitigating live DoS attack targeting an Indian government website and helped customers with mitigation of similar DOS, DDOS, Bot and Application layer attacks and other P1 issues.
  • Implemented Network layer firewall (IP Geo Block rules and exceptions), WAF(Cloud Security) rules and exceptions, SLOW POSTprotection, Bot Protection, etc.
  • Reviewed and closed possible security gaps for aligned accounts ensuring strict and tightened Security Posture.
  • Configured Akamai's Content Delivery Network (CDN) to optimize performance and mitigate DDoS attacks for global clients.
  • Basic hands on upon Akamai's Website Acceleration products like DSA(Dynamic site acceleration), troubleshooted latency issues,configuration tuning, assistance for performance upgrades,etc.
  • Log analysis using CAT, Curl, openssl commands, and various other Akamai's internal tools to troubleshoot issues.
  • Wrote different blogs internal to Akamai on corner cases for WAF, e.g. Troubleshooting 2 similar requests containing same payload, but one gets bypassed and the other gets blocked by WAF.
  • Implemented custom security rules tailored to clients' specific needs and risk profiles using both UI and security metadata.
  • Led end-to-end ownership of technical integration processes for Security and CDN Solutions, encompassing configuration, debugging, documentation, testing, and successful go-live execution.
  • Collaborated with cross-functional teams including sales, to scope, set timelines, create technical solutions, and support the ongoing implementation.
  • Led training sessions and workshops to educate clients on Akamai's security features and capabilities.

Security Services Associate Consultant

Synopsys Inc. (Formerly known as Cigital Asia Pvt. Ltd.)
09.2018 - 06.2022
  • Performed automated and manual penetration testing to ensure proper security measures are taken for Applications and backend APIs belonging to different domains comprising of healthcare, banking, credit card, HR, e-commerce, and various PCI-DSS compliant applications.
  • Worked on eliminating all false positives reported by automated tools and delivered detailed reports outlining findings,recommendations, and remediation strategies for stakeholders.
  • Involved in performing retests for reported vulnerabilities once the fix was implemented at customer's end.
  • Collaborated with development teams to implement security best practices and ensure secure coding standards.
  • Provided security awareness training to educate teams on common vulnerabilities and best practices.
  • Hands-on experience on testing application security as per the guidelines/requirements from OWASP.
  • Sufficient insight on Critical Vulnerabilities such as XSS, CSRF, SQL, and other custom vulnerabilities like Account compromise through various ways and RCE through exposed Apache Tomcat login Interface, etc in the applications.
  • Performed numerous(150+) Web Applications, Web Services Security Testing.
  • Understood basics of Mobile Application security testing and Source Code Review.
  • Experienced manual testing for web APIs as well as the business logic testing.
  • Able to analyze the root cause of the vulnerability and deliver strategic recommendations during security review.
  • Experience in report read out call with stakeholders and managed the cycle of project continuity for numerous clients.
  • Experience in defining Test Methods, in-scope items, out-scope items and Policies.
  • Trained and mentored new hires for efficient and timely project delivery by sharing expertise, knowledge, and best practices to enhance overall team performance.
  • Worked as alternate Technical Oversight, to provide technical guidance to fellow assessors
  • Delivered high-quality presentations showcasing key findings and recommendations to both internal stakeholders and clients.
  • Developed strong relationships with clients, fostering trust and ensuring long-term partnerships.
  • Managed multiple VA/PT assessments simultaneously while maintaining attention to detail, organization, and adherence to deadlines.

Education

PG-DIPLOMA - IT Infrastructure, Systems and Security

CDAC, Electronic City
Bengaluru
02.2018 - 08.2018

Bachelor of Technology(B-Tech) - Electronics and Communication Engineering(ECE)

NSRIT(Formerly VITS College of Engineering) (Affiliated To JNTU-Kakinada)
Visakhapatnam, India
09.2013 - 06.2017

Andhra Pradesh-SSC Board- 12th - Maths, Physics & Chemistry

Sri Chaitanya Junior College
Visakhapatnam, India
05.2011 - 04.2013

CBSE Board - 10th -

Sri Chaitanya Techno Schools
Visakhapatnam
05.2010 - 04.2011

Skills

Web Application and Web API Security

Akamai CDN and security products

DNS

SSL Certificates

VA/PT

Documentation and Reporting

Client Interaction

Effective Communication

Burp Suite

Netsparker

OpenSSL

Postman

IBM Appscan

Nikto

SOAP UI

Nmap

SSLyze

Test SSL

Kali Linux

Ubuntu

Windows

Nessus

Teamwork and Collaboration

Problem-Solving

Multitasking

Accomplishments

  • Vulnerability of the Month Award for reporting custom vulnerability, RCE through exposed Apache Tomcat login Interface for a PCI-DSS compliant web application for a major Credit Card-Service client. (03/2019 - 03/2019)
  • Rewarded for TWB Ideathon - Top contributions - "Top 20 ideas [with most votes] Category (05/2021 - 05/2021)
  • Recognition Awards from Team Lead and Project Manager for (09/2021 - 09/2021)
  • Received Spot Bonus from the organization for contributing to develop a custom Burp plugin ATOR and JARVIS by giving necessary inputs and different scenarios to develop it. (10/2019 - 10/2019)
  • Received appreciation from the client for delivering multiple DAST engagements within a limited time including weekends (09/2019 - 10/2019)
  • Stood as the TOPPER of the college in B-Tech 1st & 4th year in ECE for the academic year 2013-14 & 2016-17 respectively (02/2014 - 04/2017)
  • Delivered Alumni Tech talk to over a 100+ students in NSRIT on career guidance in Cyber Security
  • Creativity skills like writing short verses in English, photography and Cooking.
  • Got one of my poems published in Akamai's APJ PS Magazine.
  • Received various customer appreciation emails for dedicated efforts & commitment in ensuring timely delivery of various WAF and Bot

Timeline

Security Services Associate Consultant

Synopsys Inc. (Formerly known as Cigital Asia Pvt. Ltd.)
09.2018 - 06.2022

PG-DIPLOMA - IT Infrastructure, Systems and Security

CDAC, Electronic City
02.2018 - 08.2018

Bachelor of Technology(B-Tech) - Electronics and Communication Engineering(ECE)

NSRIT(Formerly VITS College of Engineering) (Affiliated To JNTU-Kakinada)
09.2013 - 06.2017

Andhra Pradesh-SSC Board- 12th - Maths, Physics & Chemistry

Sri Chaitanya Junior College
05.2011 - 04.2013

CBSE Board - 10th -

Sri Chaitanya Techno Schools
05.2010 - 04.2011

Security Architect

Akamai Technologies India Pvt. Ltd.
7 2022 - Current

Similar Profiles

  • Pallavi Ramani

    Pallavi RamaniPallavi Ramani

    Security Incident Responder.Senior at Akamai Technologies India PVT LTDSecurity Incident Responder.Senior at Akamai Technologies India PVT LTD

    View Profile
  • Mokshithdass Mohandass

    Mokshithdass MohandassMokshithdass Mohandass

    Senior Billing Analyst at Akamai Technologies India Pvt. Ltd.Senior Billing Analyst at Akamai Technologies India Pvt. Ltd.

    View Profile
  • Ganesh Kumar K K

    Ganesh Kumar K KGanesh Kumar K K

    Business Applications Manager at Akamai Technologies India Pvt. Ltd.Business Applications Manager at Akamai Technologies India Pvt. Ltd.

    View Profile
Revati PotnuruSecurity Architect