Swaroop Nagaraj
Bangalore
Summary
Security Delivery Specialist with 4.5 years of experience in Cyber Security, specialising in vulnerability assessments and penetration testing. Proven track record of enhancing security for diverse clients through effective risk management and ethical hacking techniques. Recognized for strong problem-solving abilities and efficient identification of security vulnerabilities, leading to the implementation of robust preventative strategies. Excellent interpersonal skills facilitate seamless collaboration with teams to improve overall system security.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Security Delivery Specialist
IBM
Bangalore
07.2023 - 03.2024
- Application Security Assessment based on OWASP standards on internal and external applications, covering authentication, authorization, input validation, cryptography business logic, session management and configuration.
- Performing tool-based Security assessment followed by manual validation of reported findings to remove false positives.
- Scanned the application for web vulnerabilities using OWASP ZAP, Burp Suite, IBM App scan, Kali Linux.
- Documentation of all testing methods and results, including impact, remediation and recommendation for identified vulnerabilities.
- Providing necessary recommendations for the findings if possible.
- Performing DAST on REST & SOAP Web services.
- Coordination between Client & Internal Team.
- Performing DAST on the applications using the Burp suite tool.
- Performing API security penetration testing using Burp suite and OWASP ZAP tools.
- Performing Mobile Penetration Testing using Android Studio, GenY Motion, NOx Player.
- Performing Network penetration testing using Nmap, Open vas, Tenable Nessus, and Kali Linux Tools.
- Creating a remediation plan for the flaws in the application and submitting the report to the developer.
- Performing tool-based Security assessment followed by manual validation of reported findings to remove false positives.
- Capable of building a database design system using API’s and data mapping methods.
- Assisting the development team to patch the vulnerabilities.
Security Analyst
Cyber Sapiens United LLP
Bangalore
09.2020 - 03.2022
- Performs real-time monitoring, security incident handling, investigation, analysis, reporting, and escalation for multiple clients.
- Responsible for conducting eyeball monitoring and converting qualified alerts into incidents within customer-defined timelines.
- Experienced in using SOAR (Security Orchestration, Automation, and Response) tools like Simplify to monitor real-time cases.
- Experience with SIEM (Security Information and Event Management) tools such as QRadar and Microsoft Sentinel for real-time event monitoring.
- Created and managed tickets using ticketing tools.
- Followed up on open incidents and closed tickets based on client responses.
- Collected logs from all network devices and analyzed them to identify suspicious activities.
- Monitored inbound and outbound traffic for firewalls and investigated related events.
- Contributed to and published security advisories.
- Took action on IOCs (Indicators of Compromise) and CVEs (Common Vulnerabilities and Exposures) received from advisories.
- Provided input for alert fine-tuning based on false positives and true negatives observed from past incident resolutions.
- Created reports tailored to client requirements.
- Sent device status reports to relevant teams to prioritize and resolve issues.
- Maintained up-to-date documentation for SOPs, daily incident trackers, and incident follow-up trackers.
- Take follow ups and closing of the tickets based on the client response.
- Created shift hand-off reports and checklists for the previous day.
Education
Bachelor of Science - Computer Engineering
PESITM
Shimoga06-2017
Skills
- SQL
- QRadar
- Sentinal
- Burpsuite
- OWASP ZAP
- Kali Linux
Certification
- CEH
- Security
Languages
- English
- Kannada
- Hindi
- Telugu
Disclaimer
I hereby declare that the above-mentioned information is correct up to my knowledge and I bear the responsibility for the correctness of the above-mentioned particulars.
Personal Information
- Father's Name: M. Nagaraj
- Date of Birth: 04/21/93
- Gender: Male
Timeline
Security Delivery Specialist
IBM
07.2023 - 03.2024
Security Analyst
Cyber Sapiens United LLP
09.2020 - 03.2022
Bachelor of Science - Computer Engineering
PESITM
Similar Profiles
RAJKUMAR PRAJKUMAR P
Azure Devops Engineer at IBMAzure Devops Engineer at IBM
PARIKSHITH UPADHYAYAPARIKSHITH UPADHYAYA
Onshore Lead & Business Analyst, Oracle CC&B at IBMOnshore Lead & Business Analyst, Oracle CC&B at IBM
MOHD YASIRMOHD YASIR
Senior Application Developer at IBMSenior Application Developer at IBM
Mário ValentínyMário Valentíny
CIO Finance Operations Manager at IBMCIO Finance Operations Manager at IBM
Muskan JainMuskan Jain
Associate – Bid Management at Subex Ltd.Associate – Bid Management at Subex Ltd.