Suraj Biswas
Senior Information Security Analyst
Mumbai
Summary
An experienced Information Security professional in risk management and a wide range of vulnerabilities and threats. Able to thrive in fast-paced and challenging environments where accuracy and efficiency matter.
Overview
7
7
years of professional experience
7
7
years of post-secondary education
2
2
Certifications
Work History
Senior Information Secuirty Analyst
eClinicalWorks Pvt Ltd
Mumbai
10.2020 - Current
- VAPT done on over 150 web Applications, API, Thick client, Android & IOS Application (SAST & DAST).
- Manual Code review of build and Patches within SDLC process.
- Worked on Contrast SAST tool.
- Worked on SonarQube tool to perform automatic reviews with static analysis of code to detect vulnerabilities.
- Resolved problems, improved operations and provided exceptional service.
- Managing new joiner's with there on-job training for SDLC.
- Performed security architecture review of web Application and Chat Bot.
- Performed secure configuration of web apps on Azure server.
Information security consultant
qSEAp Infotech Pvt Ltd
Mumbai
05.2018 - Current
- Pen-testing for web and mobile applications
- Pen-testing API
- Pen-testing networks (Internal VAPT & External VAPT)
- Create detailed risk assessment reports which explain identified security weaknesses, describe potential business risks, present prioritized recommendations for remediation
- Handling of various security risks with AI-powered Digital Risk Monitoring tool like Xvigil.
Senior technical support Executive
Infosys Limited
Pune
02.2016 - 03.2018
- Perform various tasks in mainframe application like AS400
- Ensuring to resolve issues of client within SLA
- Outlook Express, MS-Outlook, Windows mail configuration & troubleshooting
- Talk with clients through series of actions, either via phone, email or chat, until issue is been resolved
- Maintain accounts and various objects in active directories.
Education
Bachelor in Engineering - Computer Science
IBSS, Amravati University
Amravati 07.2010 - 04.2014
HSC -
St. Mary's Convent High School And College
Chandrapur 05.2008 - 06.2010
S.S.C -
St. Mary's Convent High School
Chandrapur 03.2007 - 05.2008
Skills
Web application/ API Penetration testing
Configuration AuditNetwork VAPTOWASP TOP 10Team Management
Android and IOS application Penetration Testing
Code review- SonarQube, Contrast
Tools
- Burpsuite /Fiddler
- Hopper
- Cycript
- Frida
- Sonar Qube
- Contrast
- Jira
- Defect Dojo
- MetaSploit
- Nmap
- Nessus
- Xvigil
Certification
EC-COUNCIL Certified Security Analyst - Credential ID ECC2046571839
Accomplishments
- Achieved Best team player award.
- Achieved Star performer award.
- Won second prize in web development at college tech fest.
Timeline
Elearn web application penetration testing xtreme (eWPTXv2)
12-2021
Senior Information Secuirty Analyst
eClinicalWorks Pvt Ltd
10.2020 - Current
EC-COUNCIL Certified Security Analyst - Credential ID ECC2046571839
07-2019
Information security consultant
qSEAp Infotech Pvt Ltd
05.2018 - Current
Senior technical support Executive
Infosys Limited
02.2016 - 03.2018
Bachelor in Engineering - Computer Science
IBSS, Amravati University
07.2010 - 04.2014
HSC -
St. Mary's Convent High School And College
05.2008 - 06.2010
S.S.C -
St. Mary's Convent High School
03.2007 - 05.2008