Vipin Saxena
Security Architect
New Delhi
Summary
Dynamic cybersecurity professional with extensive experience at Stryker, specializing in risk assessment and threat modeling. Proven track record in developing security documentation for FDA submissions and enhancing vulnerability management processes. Adept at collaborating with cross-functional teams, demonstrating strong analytical skills and a commitment to regulatory compliance.
Overview
12
12
years of professional experience
2
2
Certifications
2
2
Languages
Work History
Staff Engineer
Stryker
10.2023 - Current
Responsibilities:
Analysis of cybersecurity and regulatory requirements for robotic-assisted surgery systems.
Development of threat models (STRIDE) and cybersecurity risk assessments by FDA premarket guidance.
• Created security documentation for FDA 510(k) submission, including SBOM and Cybersecurity Test Summary.
• Designed and reviewed penetration testing and vulnerability assessment plans for robotic subsystems.
• Implemented secure design controls and access control policies.
• Collaborated with R&D and Quality teams for security alignment with safety risk management.
Post-market vulnerability management and incident response planning.
Senior Security Consultant
Capgemini
08.2019 - 09.2023
Responsibilities :
- Led comprehensive security assessments, identifying vulnerabilities and implementing solutions that enhanced overall risk management practices.
- Developed and executed security policies and frameworks, ensuring compliance with industry regulations and improving organizational security posture.
- Collaborated with cross-functional teams to design and implement security architectures, resulting in streamlined processes and reduced incident response times.
- Mentored junior consultants on best practices in cybersecurity, fostering professional growth and enhancing team capabilities.
- Performing penetration testing.
Senior Testing Engineer
Sopra Steria
02.2017 - 08.2019
- Conducted threat modeling and risk assessments for software and hardware modules.
- Performed vulnerability triage and coordinated remediation for findings from penetration testing, SAST, and SCA tools.
- Developed security deliverables for FDA 510(k) submissions, including SBOM, Risk Assessment, and Maintenance Plans.
- Defined post-market cybersecurity processes, including Coordinated Vulnerability Disclosure (CVD).
- Conducted Data Protection Impact Assessments (DPIA) to ensure compliance with data privacy regulations.
- Managed Third-Party Risk Management (TPRM) activities, including supplier security assessments and remediation tracking.
- Integrated SDL practices and conducted supplier risk evaluations.
Test Engineer
Fareportal
04.2014 - 01.2017
- Developed and executed comprehensive test plans to ensure software functionality met quality standards and user requirements.
- Collaborated with cross-functional teams to identify and troubleshoot defects, improving system reliability and user experience.
- Automated testing processes using industry-standard tools, resulting in enhanced efficiency and reduced testing timeframes.
- Led the implementation of Agile methodologies, fostering a culture of continuous improvement and timely project delivery.
- Conducted performance and regression testing to validate software updates, ensuring seamless integration with existing systems.
Education
B.Tech - Information Technology
UPTU
Ghaziabad, India 04.2001 -
Skills
Cybersecurity analysis
Risk assessment
Threat modeling
Vulnerability management
Penetration testing
Security documentation
Incident response planning
Regulatory compliance
Secure design controls
Data Protection Impact Assessment
Third-Party Risk Management
Certification
CISSP
Timeline
Staff Engineer
Stryker
10.2023 - Current
Senior Security Consultant
Capgemini
08.2019 - 09.2023
Senior Testing Engineer
Sopra Steria
02.2017 - 08.2019
Test Engineer
Fareportal
04.2014 - 01.2017
B.Tech - Information Technology
UPTU
04.2001 -