technitin

Viewer II

Activity Feed

Got a Kudo for Re: Passed CCSP- My Suggestions and experience. ‎06-11-2023 08:22 AM
Posted Re: Passed CCSP- My Suggestions and experience on CCSP Study Group. ‎06-11-2023 05:55 AM
Kudoed Passed CCSP- My Suggestions and experience for iluom. ‎06-11-2023 05:55 AM
Kudoed Re: Passed CCSP- My Suggestions and experience for ChrisR. ‎06-11-2023 05:55 AM

Member Profile

Application Security Architect ( C|EH™ | C|HFI ™ | CSM®| SAFe® Agilist) A technocrat with 19+ years of experience in Application Security consulting, Technical Project Management, Program Management and Client Relationship Management Actively involved in transforming Application Security model integration with existing software development practices and DevSecOps approaches through the design and implementation of Application Security technologies Effective implementation of OWASP TOP 10 security standards (Web. Mobile, API), DAST, SAST, DevSecOps, Vulnerability Management across all project portfolio Mainly involved in Threat modeling, AppSec security requirements, Source code review, Web / Mobile App, API vulnerability testing and risk assessment, Open-source binary inspection, Dockers/ container image vulnerability analysis. Working closely with Business team, Project Management, DevSecOps, Cloud support, DBA, Info Security, and offshore security team to ensure solution following and implemented organizational security requirements Actively involved in the AppSec Security tool evaluation and selection, tool onboarding process from client side as part of AppSec DevSecOps activities. Security Application Specialist - Core Skill Set • DevSecOps • Application Security Architecture • Threat modeling • Secure Code Review • Application vulnerability testing and risk assessment • Open-Source binary Vulnerability Analysis, • Docker / Container image Vulnerability Analysis • Application Security Issue Analysis and Risk score implementation as per analysis Tools / Technology • Microsoft Threat Modeling tool • BurpSuite Pro, Microfocus WebInspect , MobSF , Frida , OWASP-ZAP • HP AppScan, Microfocus Fortify, SonarQube • SonaType Nexus-IQ, Dependency checker • Visual Studio Code, Android Studio, Eclipse, Jenkins • Cloud hosted Application security testing • Awareness and good understanding of multiple Open-Source platform hosted security testing tools #MicrosoftThreatModeling #BurpSuite #Fortify #Scoutsuite #AppScan #AppSource #WebInspect #Nexus #SonaType #SonarQube #ZAP #Trivy #Python #DevSecOps #OWASP #MobSF , #Frida

Community Stats

Posts	1
Solutions	0
Kudos Given	3
Kudos Received	1
Member Since	‎02-12-2022

Online Status	Offline
Date Last Visited	‎09-04-2023 07:44 AM

CCSP Study Group