Summary
Overview
Work History
Education
Skills
Websites
Certification
Languages
Personal Information
Honor Awards
Hobbies and Interests
Timeline
Generic

Rohit Gondane

Nagpur

Summary

Results-driven cybersecurity and application security professional with 6.5+ years of hands-on experience across AppSec, InfoSec, penetration testing, red teaming, DevSecOps, AI/LLM security, and vulnerability management. Proven expertise in securing web, mobile, API, cloud, infrastructure, IoT, and thick client applications, delivering risk-based security assessments aligned with business objectives. Strong background in ISO security audits and compliance, configuration reviews, and security governance, supporting organizations in meeting regulatory and industry standards. Adept at project leadership, stakeholder communication, and mentoring teams, with a research-driven mindset to identify complex vulnerabilities, and drive effective remediation strategies in modern, cloud-native, and AI-enabled environments.

Overview

7
7
years of professional experience
1
1
Certification

Work History

Asst. Manager/Sr. Security Consultant

Varutra Consulting Pvt.Ltd.
Pune
11.2022 - Current
  • Team Management, Performing VA/Penetration Testing of Web App, Mobile App(Android & iOS), API (Soap & Rest), Infra VAPT, Source Code Review (Fortify SAST & DAST, Web Inspect), Network Security Architecture Review, Thick-Client (Windows Application),ISO Audit,Risk Assessment, Rule Set review & Configuration Audit, IOT VAPT, CIS Compliance, Red Teaming.
  • Project Lead, Identifying the critical, High, Medium, Low Vulnerabilities in the application based on the Risks & Vulnerability Management.
  • Network Architecture review and Security audit of Network devices.
  • Conducting Basic and Advanced training for freshers in Cyber Security via Internal Training Program.

Sr. Security Analyst

AQM Technologies Private Limited
Mumbai
03.2020 - 11.2022
  • Team Lead & Project Lead. Web, Mobile (Android & iOS), Server VA & Network PT, Thick-Client application, API (Soap & Rest) & IOT Device's VAPT Source Code Review, Network configuration, Configuration Audit, Rule Set Review.
  • Conduct penetration test and launch exploits using open-source tools.
  • Yearly security analysis activities for one of the leading banks in India & Mid East.
  • Monitoring and Configuration of Web and Network Firewalls.
  • Advice Management on Security Improvements.
  • Work with Other employees to improve Organizational Cybersecurity.
  • Solving clients' queries and questions about applications security architecture.
  • Monitoring and Configuration of Web and Network Firewalls.

Security Analyst

Auriseg Consultancy Private Limited
Chennai
05.2019 - 02.2020
  • Web Application & Mobile Application Penetration testing with Compilation (Dynamic & Static Testing).
  • Router & server VAPT with Configuration Performing scans to identify vulnerabilities in web, Mobile, Windows (Thick-client) & API using Nmap, Nessus, Burpsuit, EchoMiraj, DNSpy, Sparta, Acunetix, Postman.

Education

Bachelor Of Engineering -

Nagpur University
05.2018

Skills

  • Web App Security
  • Risk management
  • Security architecture
  • Source code review
  • Mobile APP Security
  • AppSec
  • InfoSec
  • Red Teaming
  • API Security
  • Cloud Security
  • Offsec
  • IoT Security
  • AI/LLM Security
  • Configuration Audit & Review
  • Infra VAPT
  • Thick Client App PT
  • DevOps
  • Vulnerability Management
  • Source Code Review
  • EDR/DLP Config
  • CIS Audit & Compliance
  • Team Lead
  • Pre-Sales
  • Team Management
  • Conducting Interview

Websites

Certification

  • CRTP, 05/2022 - 05/2028
  • C|PTE, 05/2022 - 05/2028
  • C|EH, 05/2022 - 05/2028
  • Security Awareness, 05/2022 - 05/2028
  • MicroFocus (SAST & DAST) Specialist, 05/2022 - 05/2028

Languages

  • English, full professional proficiency
  • Hindi, native
  • Marathi, native

Personal Information

Date of Birth: 11/14/96

Honor Awards

  • Bug Bounty, Hackerone, 10/2021 - 12/2022
  • Bug Hunting, Facebook, Hackerone, MP GOVT., Mozilla, 09/2020 - 11/2020

Hobbies and Interests

  • CHESS
  • CARROM
  • Listening Songs
  • Playing online PC Games

Timeline

Asst. Manager/Sr. Security Consultant

Varutra Consulting Pvt.Ltd.
11.2022 - Current

Sr. Security Analyst

AQM Technologies Private Limited
03.2020 - 11.2022

Security Analyst

Auriseg Consultancy Private Limited
05.2019 - 02.2020

Bachelor Of Engineering -

Nagpur University

Similar Profiles

CREATE PROFILE
Rohit Gondane