Summary
Overview
Work History
Education
Skills
Websites
Certification
Timeline
Interests
Generic

Shrinivas Jorapur

Dombivli

Summary

A Senior Cybersecurity Consultant who keeps firewalls standing tall and vulnerabilities running scared. Experienced in managing Vulnerability Management & WAF, and keeping servers patched before coffee runs out. Skilled in Vulnerability Management, Endpoint Protection, and Web Application Firewall. Collaborated across teams to strengthen defences and ensure smooth operations. Passionate about building resilient systems and making security look effortless (almost).

Overview

3
3
years of professional experience
1
1
Certification

Work History

Senior Cybersecurity Consultant

CyberNXT Solutions LLP
04.2025 - Current
  • Single Point of Contact (SPOC) for WAF: Oversee and manage the complete Web Application Firewall (WAF) domain, ensuring consistent protection across all business units within the organization, overseeing the onboarding/offboarding, troubleshooting issues.
  • Monthly Reporting and Insights Sharing: I prepare and distribute monthly WAF and CDCC (Cyber Defence Command Centre) insights to all business entities under our client, ensuring transparency and awareness of the security posture.
  • Vulnerability Assessment (VA) Coordination: I manage the vulnerability scanning process via our WAF scanner. This involves liaising between the application teams and the WAF team to investigate and resolve any false positives detected during scans.
  • Stakeholder Coordination: I collaborate with various stakeholders to understand and fulfil their WAF-related requirements, ensuring their security needs are met effectively.
  • Future Planning and Security Enhancement: I proactively identify and evaluate future requests or requirements aimed at strengthening our security posture, minimizing attacks, and reducing risks.

Cybersecurity Consultant

CyberNXT Solutions LLP
11.2023 - 03.2025
  • Performed regular vulnerability scans using Qualys VMDR, including authenticated, unauthenticated, ad-hoc, and scheduled scans across servers, endpoints, and cloud assets.
  • Maintained and optimized Qualys Asset Inventory, including tagging logic, asset groups, business unit classification, and CMDB alignment.
  • Ensured scanner appliances were online, updated, and efficiently load-balanced to avoid scan delays and operational bottlenecks.
  • Successfully eliminated recurring false positives by tuning scan profiles, improving accuracy and saving operational time.
  • Developed clear vulnerability dashboards and reports for leadership, increasing visibility into risk and improving decision-making.
  • Performed regular purging of stale or inactive assets in Qualys to maintain accurate inventory and ensure clean, reliable vulnerability data.
  • Implemented scheduled automation jobs to flag assets with no activity for 30 days, auto-tagging them as “Purge-Candidates” for monthly cleanup cycles.
  • Worked with cross-functional teams to reduce patching SLAs from 24 days to 8 days, accelerating the remediation lifecycle.
  • Analyzed scan results to validate true positives, remove false positives, and prioritize vulnerabilities based on risk and asset criticality.
  • Managed asset inventory accuracy within the VM platform to ensure complete and reliable scan coverage.
  • Ensured audit readiness by maintaining evidence of remediation actions and producing compliance reports.
  • Created and maintained SOPs, runbooks, and operational workflows for Qualys scanning, reporting, and remediation processes.
  • Provided guidance and best practices to system owners on vulnerability remediation and risk reduction.
  • Managed end-to-end processes for Qualys Gateway Service (QGS) deployment, including installation, troubleshooting, and optimization.
  • Installed and configured Qualys Cloud Agents for real-time vulnerability scanning across server environments.
  • Collaborated with cross-functional teams to address connectivity issues, and ensure effective reporting of vulnerabilities by the Cloud Agent.
  • Developed detailed threat advisories, offering actionable recommendations to mitigate risks effectively.
  • Maintained an average vulnerability compliance rate above 90% Quarterly, ensuring alignment with security standards and organizational objectives.

Cyber Security Associate

CyberNXT Solutions LLP
04.2023 - 10.2023
  • Executed end-to-end vulnerability remediation strategies, strengthening endpoint and server security across the environment.
  • Led patch management initiatives, ensuring systems remained robust and up-to-date.

IT System Assurance

RSM Astute Consulting India Private Limited
01.2023 - 03.2023
  • Conducted PCI DSS audits, ensuring compliance with stringent data security standards.
  • Executed web application vulnerability assessments using industry-standard tools such as Tenable, Nessus, Burp Suite Professional Edition, and N-Map.
  • Delivered insightful reports, categorizing vulnerabilities and suggesting impactful mitigations.
  • Reviewed IT General Controls and Application Systems for BFSI clients, focusing on policy compliance, physical security, and access management.

Education

Post-Graduate Diploma - Cyber Security

BSE Institute Limited
Mumbai
06.2022

Bachelor of Commerce (B.Com.) - undefined

S.I.E.S. College of Arts, Science & Commerce
Mumbai
05.2021

Skills

  • Vulnerability assessment
  • Security auditing
  • Teamwork and collaboration
  • Problem-solving
  • Attention to detail
  • Problem-solving abilities
  • ISO 27001 compliance
  • PCI DSS compliance

Websites

Certification

  • Fortinet Certified Associate in Cyber Security | Fortinet, 2024
  • Certified in Cybersecurity (CC) | ISC2, 2024
  • Qualys Cloud Agent Specialist | Qualys, 2024
  • Python 101 for Hackers | TCM Security, 2024
  • Cybersecurity Asset Management Specialist (CSAM) | Qualys, 2023
  • Qualys Patch Management Specialist | Qualys, 2023
  • Certified Ethical Hacker | EC-Council, 2023
  • Python Development | Quastech, 2022

Timeline

Senior Cybersecurity Consultant

CyberNXT Solutions LLP
04.2025 - Current

Cybersecurity Consultant

CyberNXT Solutions LLP
11.2023 - 03.2025

Cyber Security Associate

CyberNXT Solutions LLP
04.2023 - 10.2023

IT System Assurance

RSM Astute Consulting India Private Limited
01.2023 - 03.2023

Bachelor of Commerce (B.Com.) - undefined

S.I.E.S. College of Arts, Science & Commerce

Post-Graduate Diploma - Cyber Security

BSE Institute Limited

Interests

Passionate bike riding enthusiast & a keen interest in exploring emerging cybersecurity trends & Cyber Security Products.

Similar Profiles

  • Pradeep YadavPradeep Yadav

    Principal Consultant in Cyber Security at CyberNXT Solution LLPPrincipal Consultant in Cyber Security at CyberNXT Solution LLP

  • Kshitij SatardekarKshitij Satardekar

    Technical Support Specialist II at Connectwise LLP (Formerly Continuum Managed Solutions LLP)Technical Support Specialist II at Connectwise LLP (Formerly Continuum Managed Solutions LLP)

  • Aayush Devdhar JadhavAayush Devdhar Jadhav

    Project Engineer – Data Centre Infrastructure at Miyanos Designated Solutions LLPProject Engineer – Data Centre Infrastructure at Miyanos Designated Solutions LLP

  • Sanjoli KumbharSanjoli Kumbhar

    Shift Lead (Team Manager) at Accenture Services Pvt LtdShift Lead (Team Manager) at Accenture Services Pvt Ltd

  • Rangoli KalekarRangoli Kalekar

    Project Co-Ordinator at Smile Automation Pvt LtdProject Co-Ordinator at Smile Automation Pvt Ltd

CREATE PROFILE
Shrinivas Jorapur