Vijay Kapoor
Cyber Security
Delhi,New DELHI
Summary
An application security professional with 11+ years of total experience in the IT industry. Proficient in managing application security projects, along with having expertise in vulnerability assessment and penetration testing of websites, mobile applications, and APIs. My career is challenging yet motivating as it allows me to work with the latest technology, including Gen AI application security, cloud security, and DevSecOps. Recognition has been given for outstanding projects, consistent excellence, client satisfaction, and leadership and management skills.
Overview
11
11
years of professional experience
5
5
Certifications
3
3
Languages
Work History
Project Lead
Sopra Steria
4 2022 - Current
- I am working as a Security Project Lead at Sopra Steria
- My role and responsibility is to demonstrate my team capability and expertise in cybersecurity to the client
- Leading the team to conduct vulnerability assessments on the project while assessing different types of applications.
Senior Security Specialist
Tech Mahindra
07.2018 - 04.2022
- I worked at Tech Mahindra as a Senior Security Analyst
- I performed VAPT on web applications, web services, APIs, and have experience in source code review as part of my role and responsibilities.
Senior Security Specialist
Hcl Technologies
05.2017 - 07.2018
- I worked at HCL Technologies as a Senior Security Specialist
- My role and responsibility was to perform vulnerability assessments on network devices using the Qualys tool
- I conducted a web application's vulnerability assessment and penetration testing (VAPT).
Information Security Consultant
SecurEyes
01.2016 - 05.2017
- I worked at SecurEyes as an 'Associate Security Consultant'
- To audit the client's web application security posture according to industry standards such as OWASP 10, SANS 25, and business logic
- Identify vulnerabilities in the web application and make recommendations on how the security posture of web applications can be improved
- Submit a documented report.
Programmer Analyst
Magna Infotech
08.2015 - 01.2016
- I worked at Magna Infotech as a secure 'Program Analyst', and my role and responsibility was to collect specifications and requirements from clients
- Preparation of secure design documents, write sudo code, triggers, stored procedures, and source code review
- Secure application development in Visual Studio 4.5, writing secure SQL queries, and application auditing using OWASP Top 10.
Programmer
GA Digital Web Word
06.2014 - 08.2015
- I worked at GA Digital Web Word as a Secure Developer
- Collecting specifications/requirements from senior members
- The creation of design documents, coding, testing, and the development of secure applications.
Trainer
Softcrayons
05.2013 - 06.2014
- I worked at SoftCrayons as an Asp.net trainer
- My role and responsibility is to teach students how to develop web applications.
Education
Master in Computer Application (M.C.A) - Computers
Indira Gandhi National Open University (IGNOU)
Bachelor Of Computer Application (B.C.A) - Computers
Indira Gandhi National Open University (IGNOU)
Skills
Application Security Testing
API Security Testing
Network Vulnerability Assessment
Source Code Review
Secure Design Review
Thick Client Security Testing
DevSecOps
AI based application security (LLM vulnerability)
Cloud Security Testing
Risk Analysis
Time management abilities
Certification
CCSK Certified (issued by Cloud Security Alliance)
Tool& Technologies
BurpSuite, Checkmarx, Checkmarx SCA, Directory Buster, sqlmap, nmap, Acunetix web vulnerability scanner, Source code review fortify, Qualys Scanner, Prowler Cloud security CLI tool, Xamp, IIS 5.0/6.0, My sqlsevre, Mssql, Oracle, Ms Access, C#, HTML, XML, Java, C++, Python
Domain
- Banking Domain
- Healthcare Domain
- Web governance
- Financial Domain
Awards
- Pat on back, 02/2021, I was handle multiple project at some time so that manager give me award "Pat on Back" to me.
- Pinnacle Award, 12/2023, Delivered very insightful session on application security during security by design week. Very active contribution in organizing architecture practice activities.
- Pinnacle Award, 08/2023, Vijay continues to shine for the CE DU Security Testing Goals. Always proactive in customer demo's and POC's. Key owner of the security testing learning journey and enabling drive security testing in the DU. Thanks for all your effort Vijay.
- Pinnacle Award, 11/2022, Vijay has shown high level of responsibility and ownership in contribution to security by design week event. He has delivered a great session on Application Security along with demos. He has worked on this beyond his assigned project work. I highly appreciate contribution by Vijay Kapoor.
Timeline
Senior Security Specialist
Tech Mahindra
07.2018 - 04.2022
Senior Security Specialist
Hcl Technologies
05.2017 - 07.2018
Information Security Consultant
SecurEyes
01.2016 - 05.2017
Programmer Analyst
Magna Infotech
08.2015 - 01.2016
Programmer
GA Digital Web Word
06.2014 - 08.2015
Trainer
Softcrayons
05.2013 - 06.2014
Project Lead
Sopra Steria
4 2022 - Current
Master in Computer Application (M.C.A) - Computers
Indira Gandhi National Open University (IGNOU)
Bachelor Of Computer Application (B.C.A) - Computers
Indira Gandhi National Open University (IGNOU)