Suraj Waghmare
Solapur
Summary
Information Security Specialist with passion for aligning security architecture plans and processes with security standards and business goals. Extensive experience developing and testing security framework for cloud-based software. Versed in robust network defense strategies.
Overview
6
6
years of professional experience
Work History
Senior Security Analyst
Bambu B2B Robo Advisor
05.2021 - Current
- Manual Security testing of the applications and APIs to identify the OWASP Top 10 vulnerabilities and SANS 25
- Own responsibility over our Product-related Security Compliance initiative, i.e., SOC 2
- Access control check to identify the privilege escalation issues on various roles and ensuring the closure by overall framework implementation
- Use Burp suite to identify issues like sql injection, XSS, CSRF etc
- Provide the report and explain issues to the development team
- Provide remediation steps to the team and follow up
- Retest the fixed issues and ensure the closure.
Senior Security Analyst
Suma Soft Pvt. Ltd
Pune
03.2017 - 04.2021
- Performed security testing on the Web Applications, Mobile (Android) Applications, ThickClient, Cloud Infrastructure and Web Services/APIs
- Identify vulnerabilities, recommend corrective measures, and ensure the adequacy of information security controls & security compliance
- Developed security related policies, procedures and standards that meet existing and newly developed regulatory requirements
- Performed security testing of applications which require CERT-in and STQC certificate.
- Additional job roles include leading a small team, team management and report review & approval of team members
- Worked in various domains, i.e., Defense, Banking, Finance, Agriculture, Healthcare, Law Enforcement.
- Conducted IT audit assessments for systems or applications to recommend solutions to mitigate risks.
- Assessed threats, risks and vulnerabilities from emerging security issues to advise pertinent stakeholders on measures.
- Developed risk assessment reports to identify threats and vulnerabilities.
Security Analyst
Jainam Technologies
Mumbai
05.2016 - 03.2017
- Conducted security audits to identify vulnerabilities.
- Identify vulnerabilities, recommend corrective measures, and ensure the adequacy of information security controls & security compliance
- Given security related policies, procedures and standards that meet existing and newly developed regulatory requirements
- Authored security and vulnerability reports, detailing logged incursions and suggesting remediation efforts.
Education
BCA -
Savitribai Phule Pune Foresight College of Commerce
HSC Board -
Sangameshwar College
Solapur2006
SSC - undefined
CBSE Board Delhi Jawahar Navodaya Vidyalaya
Skills
- Web Applications
- Application Security Assessment
- Kali Linux
Accomplishments
- ELearn Security's Certified Professional Penetration Tester (eCPPTv2)
- Certified Red Team Professional (CRTP) , Pentester Academy
- EC-Council-Certified-Security-Analyst (ECSA), EC-Council
- Certified-Ethical Hacker (CEH), EC-Council
- ISO 27001 Lead Auditor TUV Asia
- Made recommendations to management on new security software to improve [System or process].
Timeline
Senior Security Analyst
Bambu B2B Robo Advisor
05.2021 - Current
Senior Security Analyst
Suma Soft Pvt. Ltd
03.2017 - 04.2021
Security Analyst
Jainam Technologies
05.2016 - 03.2017
BCA -
Savitribai Phule Pune Foresight College of Commerce
HSC Board -
Sangameshwar College
SSC - undefined
CBSE Board Delhi Jawahar Navodaya Vidyalaya
Similar Profiles
GAURAV SALVIGAURAV SALVI
Freelance Web Developer at Bambu B2B Robo AdvisorFreelance Web Developer at Bambu B2B Robo Advisor
Vipul Chandra BobbiliVipul Chandra Bobbili
Project Manager at Bambu Robo AdvisoryProject Manager at Bambu Robo Advisory
Brandon SanaresBrandon Sanares
Shift Leader at Bambu Desserts & Drinks - TracyShift Leader at Bambu Desserts & Drinks - Tracy