Summary
Overview
Work History
Education
Skills
Websites
Certification
Websites, Portfolios, Profiles
Personal Information
Languages
Additional Information
Work Preference
Timeline
Generic
Open To Work

Valligayatri Rachakonda

Hyderabad

Summary

Security-focused Software Engineer with 10+ years of experience in cybersecurity and infrastructure engineering across cloud-native and enterprise environments. Proven track record in driving improvements to cloud security postures, implementing secure CI/CD pipelines, and developing automated remediation tools. Deep expertise in penetration testing, security architecture, and container security across Kubernetes platforms. Experienced in leveraging AWS services to build and secure scalable infrastructure in line with industry standards. A collaborative communicator and thought leader, recognized in global bug bounty programs, and active in the InfoSec community. Strategically minded professional in technology management, known for high productivity and efficient task completion. Skilled in cloud computing, cybersecurity, and project management. Excel at leadership, communication, and problem-solving to navigate complex challenges and drive team success. Hardworking employee with customer service, multitasking, and time management abilities. Devoted to giving every customer a positive and memorable experience. Results-oriented individual with a passion for continuous learning and innovation. Known for leveraging analytical thinking and creativity to solve problems and deliver high-impact solutions in fast-paced environments.

Overview

12
12
years of professional experience
1
1
Certification

Work History

Technical Lead

Wipro Technologies
04.2024 - Current
  • Mentored junior developers through regular 1-on-1 meetings, providing guidance on best practices, coding standards, and career growth opportunities.
  • Enhanced network security by conducting comprehensive vulnerability assessments and penetration tests.
  • Conducted security audits to identify vulnerabilities.
  • Provided technical guidance on best practices for securely deploying cloud-based services and infrastructure.
  • Managed relationships with external vendors, ensuring timely delivery of hardware and software solutions that met strict security requirements.
  • Collaborated with cross-functional teams for seamless integration of security protocols into existing infrastructure.
  • Enhanced security measures by designing and implementing comprehensive network architecture strategies.
  • Reduced cyber threats through thorough vulnerability assessments and risk analysis.
  • Created policies and procedures for emerging security technologies and proposals.
  • Security Architecture Review Assess the security design of systems and applications to identify vulnerabilities and recommend improvements.
    Perform threat modeling to proactively address potential risks.
    Conduct cloud security architecture reviews to ensure alignment with best practices.
  • Guidance and Frameworks provide expert recommendations for designing secure systems and mitigating risks.
    Develop and verify proof of concept designs in non-production environments.
    Ensure compliance with security frameworks and standards.
  • Browser Extensions Security Testing: Evaluate browser extensions for vulnerabilities, risks to user data, and privacy.
    Recommend actionable steps to improve the security posture of browser extensions.
  • Active Directory Security Assessment: Analyze Active Directory configurations to identify risks, such as privilege escalation and unauthorized access.
    Utilize tools like Nessus and Raas to detect and remediate vulnerabilities.
  • Establishing security guardrails creates and enforces security guardrails to ensure secure coding practices and configurations.
    Align security measures with industry standards, including CIS and NIST benchmarks.
  • Application Security Testing: Perform comprehensive security testing as part of the application architecture review.
    Identify weaknesses, and validate resilience against potential threats.
  • Streamlined enterprise-wide security policies, improving overall compliance with industry standards and regulations.
  • Developed comprehensive documentation for software projects, simplifying the onboarding process for new team members.
  • Evaluated emerging technologies for potential inclusion in future security architecture designs.
  • Spearheaded cybersecurity awareness training programs, fostering a culture of vigilance among employees at all levels of the organization.
  • Drafted detailed technical documentation outlining architectural design principles, guidelines, and best practices.
  • Familiarity with LLM/AI system vulnerabilities (e.g., prompt injection, data poisoning, and adversarial attacks).
  • Experience securing cloud-native (Azure background is an added advantage) environments (Kubernetes, containers, microservices, APIs).
  • Proven ability to identify, triage, and resolve security issues across both traditional and AI-based systems.
  • Expert knowledge of the AWS ecosystem.
  • Expert knowledge of cloud security architectures and infrastructure.
  • Familiarity with compliance frameworks such as GDPR, PCI-DSS, and AI-related regulations.

Cyber Security Consultant

Societe Generale Global Solution Centre
06.2023 - 02.2024
  • Enhanced network security by conducting comprehensive vulnerability assessments and penetration tests.
  • Reduced cyber threats by implementing robust security frameworks and incident response plans.
  • Collaborated with cross-functional teams to develop comprehensive cybersecurity policies and procedures.
  • Conducted security audits to identify vulnerabilities.
  • Performed risk analyses to identify appropriate security countermeasures.
  • Improved client cybersecurity posture through tailored risk assessments and mitigation strategies.
  • Achieved cost savings for clients by identifying areas for improvement in existing cybersecurity infrastructure.
  • Recommend improvements in security systems and procedures.
  • Experience securing cloud-native (Azure background is an added advantage ) environments (Kubernetes, containers, microservices, APIs).
  • Conduct architecture risk analysis, threat modeling, and code reviews across microservices, APIs, and AI pipelines.

Senior Associate -II

PwC Acceleration Centre
04.2021 - 05.2023
  • Formulated actionable recommendations through collaboration with multidisciplinary teams.
  • Gathered stakeholder requirements to define initial project scope.
  • Trained new team members to cultivate a collaborative culture.
  • Implemented project management strategies to elevate team performance.
  • Identified operational inefficiencies and proposed targeted solutions.
  • Managed competing priorities while delivering exceptional client results.
  • Conducted risk assessments to pinpoint potential project execution issues.
  • Facilitated workshops that promoted innovative solutions and process enhancements.

Lead CyberSec

Société Générale
06.2020 - 02.2021
  • Delegated daily tasks to enhance group productivity.
  • Tutored team members in development and support roles.
  • Demonstrated strong personal responsibility and self-motivation.
  • Adapted quickly to fast-paced environments while maintaining efficiency.
  • Collaborated effectively in team settings, providing support and guidance.
  • Utilized excellent verbal and written communication skills.
  • Maintained a respectful and friendly demeanor, assisting wherever needed.
  • Assisted with daily operations, working productively with all team members.

Security Engineer

Traveloka India Pvt.Ltd
05.2019 - 06.2020
  • Reviewed security audits to identify and address vulnerabilities.
  • Developed training materials on organizational policies and cybersecurity best practices.
  • Collaborated with IT teams to integrate security measures into software development.
  • Conducted regular penetration tests to proactively identify and mitigate risks.
  • Optimized security tools by tailoring custom rulesets for enhanced threat detection.
  • Implemented advanced threat detection systems, improving network security posture.
  • Streamlined interdepartmental communication on cybersecurity through effective reporting structures.
  • Contributed to business continuity planning by assessing risks and implementing backup strategies.

Technology Specialist

Philips India Pvt.Ltd
07.2017 - 04.2019
  • Executed web application penetration tests using Burp Suite, Acunetix, and NMAP.
  • Collaborated with engineers to design and implement innovative products and systems.
  • Actively listened to customer requests to ensure accurate understanding of concerns.
  • Streamlined departmental communications by effectively utilizing collaboration tools.
  • Mentored junior team members on technology best practices to promote continuous improvement.
  • Championed migration of legacy systems to modern platforms, enhancing data transfer efficiency.
  • Maintained knowledge of industry technologies, providing proactive suggestions for AV strategies.
  • Conducted staff training sessions on new technologies and systems.

Security Consultant

Aujas Networks
03.2016 - 07.2017
  • Overseen application penetration testing of 90+ business applications, and acquainted with various approaches to grey and black box security testing.
  • Assessed the feasibility of client security management systems. Proficient in understanding application-level vulnerabilities, like XSS, SQL Injection, CSRF, authentication bypass, weak cryptography, and authentication flaws.
  • Reviewed existing organizational policies to ensure alignment with current security best practices, making revisions as needed to close gaps in protection.
  • Trained employees on ways to avoid security issues.
  • Improved communication by monitoring critical links between air and ground forces.
  • Optimized mission strategy development by conducting simulations for intelligence, surveillance, and reconnaissance team members.
  • Reduced workflow downtime by effectively training staff on best practices and company policies.
  • Conducted security audits to identify vulnerabilities.
  • Assessed security risks and vulnerabilities in client environments.
  • Developed comprehensive security strategies for diverse client needs.
  • Conducted security audits to evaluate system compliance and effectiveness.
  • Conducted vulnerability scans, penetration tests, and ethical hacking activities.
  • Reviewed system logs and identified suspicious activity.
  • Mitigated risk by providing immediate and effective emergency response security.

Information Security Analyst

Cycops India Pvt.Ltd
05.2014 - 02.2016
  • Developed mitigation plans after reviewing computer security procedure violations.
  • Monitored data file usage and regulated access to secure information.
  • Enhanced cybersecurity awareness through targeted training sessions and workshops.
  • Collaborated with IT teams to integrate security measures into existing infrastructure.
  • Provided detailed reports on findings and recommendations for improved security systems.
  • Conducted regular security assessments to maintain compliance with industry standards.
  • Streamlined vulnerability assessment procedures by automating repetitive tasks.
  • Performed thorough penetration testing to identify and reduce vulnerabilities.

Education

Information Technology

JNTUH
Hyderabad,India
06.2010

Skills

  • Cloud platforms: AWS (IAM, EC2, GuardDuty, S3, Lambda, KMS), Azure, GCP
  • Containers and orchestration: Kubernetes, EKS, GKE, Fargate, Docker, Helm
  • CI/CD and automation: GitHub Actions, Jenkins, GitLab CI/CD, SAST/DAST integration
  • Security engineering: zero trust architecture, secure SDLC, threat modeling
  • Security tools: Burp Suite, NMAP, Nessus, ZAP, Metasploit, Secure Annex, and crxaminertech for analyzing browser extensions
  • Customized browser extension vulnerability scanner using SecureAnnex MCP server
  • Implementing a solution using AI agents, which can help developers and architects
  • Build a security architecture review tool using OpenAI and OCR with Google AI
  • Documentation and reporting
  • Developed a security vulnerability scanner for browser extensions that provides proof of concept
  • Application security and Mobile Application Security
  • Cloud computing
  • Threat modeling

Websites

Certification

Azure 900, OSWE,OSCP(2019 and 2024 AD), CEH, CCNP, CCNA,

Websites, Portfolios, Profiles

https://open.spotify.com/show/0lLdQuyd6zJsFUt2i1rJSu?si=258926d7fae54122

Personal Information

Languages

  • English
  • Hindi
  • Telugu

Additional Information

  • CTF Player
  • Solving Vulnerable machines and OWASP Vulnerable projects
  • Writing Medium articles on penetration testing on Web Application and Mobile Applications
  • Actively engaged in bug bounty programs on platforms such as Bugcrowd and HackerOne, with recognized contributions to cybersecurity. Honored in the Hall of Fame by leading organizations including Edmodo, Google, Sony, Microsoft, Evernote, Symantec, eBay, Dyson, Mixmax, and several others.
  • Podcast Creator
  • Infosec Comic Creator

Work Preference

Job Search Status

Open to work

Salary Range

₹180000/yr - ₹250000/yr

Timeline

Technical Lead

Wipro Technologies
04.2024 - Current

Cyber Security Consultant

Societe Generale Global Solution Centre
06.2023 - 02.2024

Senior Associate -II

PwC Acceleration Centre
04.2021 - 05.2023

Lead CyberSec

Société Générale
06.2020 - 02.2021

Security Engineer

Traveloka India Pvt.Ltd
05.2019 - 06.2020

Technology Specialist

Philips India Pvt.Ltd
07.2017 - 04.2019

Security Consultant

Aujas Networks
03.2016 - 07.2017

Information Security Analyst

Cycops India Pvt.Ltd
05.2014 - 02.2016

Information Technology

JNTUH
Valligayatri Rachakonda