Suraj Khatkale
Cyber Security Engineer
Hyderabad
Summary
I am Application Security Specialist with over 3.5 years of experience in both manual and automated penetration testing (SAST &DAST). My expertise lies in conducting vulnerability assessments for web and mobile applications,collaborating with developers to remediate vulnerabilities, and implementing secure coding practices. I am committed to an adaptable approach in dynamic environments, with a strong commitment to enhancing application security and fostering secure software development.
Overview
4
4
years of professional experience
6
6
years of post-secondary education
Work History
Cyber Security Engineer
SISENSE INFO TECHNOLOGY
06.2021 - Current
- Key Technical Skills
Application Security Testing: OWASP 2021, Netsparker, Checkmarx.
Testing Methodologies: Manual Testing, Automated Testing, API Testing.
Defect Tracking and Management: JIRA.
Security Analysis: Vulnerability collection, reporting, and tracking.
Domain Expertise: Healthcare, E commerce, and internal client applications.
Development Collaboration: Assisting teams in enhancing security posture and resolving security issues. - Performed comprehensive application security testing using OWASP 2021 methodologies, identifying and remediating attack vectors, vulnerabilities, misconfigurations, and weaknesses in web and API-based applications
- Hands-on experience in applying OWASP 2017 and OWASP 2021 penetration testing methodologies to identify and address web application attack vectors
- Proficient in creating robust security test cases based on OWASP standards to ensure web application security
- Skilled in identifying security threats through detailed black-box testing of web applications
- Evaluated potential breach impacts and recommended containment strategies to mitigate risks effectively
- Utilized tools like Netsparker and Checkmarx leveraging proxy tools such as Burp Suite and OWASP ZAP to detect and analyze vulnerabilities, providing actionable feedback to development teams
- Developed detailed vulnerability reports with screenshots and recommended solutions, ensuring clear communication with clients
- Created comprehensive test plans, test cases, and test procedures for manual and automated testing based on business and software requirements, and collaborated closely with development teams to ensure fixes and quality improvements
- Managed resources for vulnerability assessment, tracking updates, and project progress in JIRA
- Guided and supported development teams on best security practices and solutions for identifying vulnerabilities
- Assisted in analyzing source code review results for multiple programming languages, improving the overall security posture of products
- Familiar with all stages of the Software Development Life Cycle (SDLC) and adept at integrating security testing methodologies throughout
Education
Bachelor of Engineering -
Ramrao Adik Institute of Technology, Mumbai
06.2016 - 04.2019
Diploma -
D. Y. Patil Polytechnic Institute, Mumbai
06.2013 - 04.2016
Skills
Mobile security
Web application security
Vulnerability assessment and Penetration testing
Kali Linux
OWASP ZAP Implementation Skills
Sublister
Nuclei
Kubernetes (K8s)
Jenkins
Nmap
Proficient in HCL AppScan
Rapid7 Nexpose Utilization
Burp Suite Expertise
Checkmarx Proficiency
Postman
Accomplishments
- Improved application security through vulnerability assessments.
- Performed security testing on 80+ Web Applications, 60+ API's and 10+ Secure Code Reviews.
- Implemented secure coding practices, reducing code errors by 15%.
Timeline
Cyber Security Engineer
SISENSE INFO TECHNOLOGY
06.2021 - Current
Bachelor of Engineering -
Ramrao Adik Institute of Technology, Mumbai
06.2016 - 04.2019
Diploma -
D. Y. Patil Polytechnic Institute, Mumbai
06.2013 - 04.2016
Similar Profiles
Suneetha MSuneetha M
PPC Executive at Sisense Info Tech Pvt LtdPPC Executive at Sisense Info Tech Pvt Ltd
SAMANTHA F. STOCKWELLSAMANTHA F. STOCKWELL
Talent Acquisition Lead, Revenue at SisenseTalent Acquisition Lead, Revenue at Sisense
Lisa HammackLisa Hammack
Global Director, Sales Enablement at SisenseGlobal Director, Sales Enablement at Sisense
S N Aditya MurthyS N Aditya Murthy
Lead Product Manager - Digital Supply Chain at Dr Reddy's LaboratoriesLead Product Manager - Digital Supply Chain at Dr Reddy's Laboratories
Abhiram BarikAbhiram Barik
Architect at ZscalerArchitect at Zscaler