Vinayak Adulkar
IT Security | VAPT | Application & Infrastructure Security | BFSI Compliance
Mumbai
Summary
IT Security Specialist with 4 years of experience in Application Security, VAPT, and Infrastructure Vulnerability Management. Skilled in securing BFSI/Banking projects through regulatory compliance, patch management, and advisory handling. Hands-on expertise in web, mobile, API, and thick client security testing, along with infrastructure hardening and remediation.
Overview
4
4
years of professional experience
4
4
Certifications
Work History
Associate Consultant
KPMG Global Services
04.2024 - Current
- Directed infrastructure vulnerability management including inventory scoping, scanning, prioritization, remediation, and closure tracking to maintain compliance and reduce risk exposure.
- Performed authenticated scans for Linux, Windows, and endpoint critical systems, validating deeper system-level security controls and strengthening overall defense posture.
- Oversaw patch management cycles, monitoring breach, freeze, near-fail, and pass statuses, and delivering actionable insights to management for timely decision-making.
- Conducted manual configuration reviews against defined hardening standards, identified overdue points, and collaborated with infrastructure teams to drive closure and compliance.
- Application security testing across web, mobile, API, and thick client platforms using advanced tools (Burp Suite, Postman, Frida, APKTool, Kali Linux), ensuring comprehensive vulnerability coverage.
Associate Information Security Consultant
QSEAP Info. Tech. Pvt. Ltd.
06.2022 - 04.2024
- Perform application vulnerability assessment and document vulnerabilities which were found and provide recommendations for remediation accordingly to BFSI guidelines and industries best practices.
- Support remediation effort and track open issue and follow up to ensure remediation.
- Prioritizing security vulnerabilities identified during assessment and its severity, impact identification.
- Complete given all applications for pen-testing within a time period.
Education
BE - Electronics & Telecommunication Engineering
Viva Institute of Technology
Virar03-2021
Skills
Core Skills Technical Skills
Team Collaboration
Strategic Planning & Execution
Problem-Solving
Effective Time Management
Organizational Change Management
Security Reporting & Executive Communication
Application Security Testing: Web, Mobile, API, Thick Client
Vulnerability Assessment & Penetration Testing (VAPT): Network Vulnerability (unauthenticated scan) for entire Infra as per defined scope Additionally Authenticated scan for Linux, Windows, and endpoint critical systems
Infrastructure Vulnerability Management: Inventory scoping, scanning, prioritization, remediation, and closure tracking
Patch Management & Advisory Handling Implemented advisories from Cert-IN, NCIIPC to drive timely vulnerability mitigation and compliance Coordinated patch cycles, tracked system status, and collaborated with infra teams to remediate critical risks
Configuration Review & Hardening Standards: Manual reviews, compliance checks, and remediation follow-ups
Certification
CEH (Certified Ethical Hacker)
SOFTWARE AND FRAMEWORKS
Rapid 7 , Nessus , N-map, Nessus, Burp-suite, Frida , MemuEmulator , Wireshark, Postman, Eco-mirage.
Interests
Volleyball, Cooking
Timeline
Associate Consultant
KPMG Global Services
04.2024 - Current
Associate Information Security Consultant
QSEAP Info. Tech. Pvt. Ltd.
06.2022 - 04.2024
BE - Electronics & Telecommunication Engineering
Viva Institute of Technology