San Jose, California, United States
Performed Application Security Assessments (iOS, Android and Web Applications) using dynamic and static analysis using automated tools and targeted manual testing. Performed automated and manual secure code reviews for Java, .NET, Ruby on Rails, iOS and Web Applications. Audited HPE Fortify, IBM AppScan and Checkmarx scan results for vulnerabilities reported. Presented the findings to the clients and supported the developers in remediation of the vulnerabilities discovered. Compiled detailed observations and recommendations reports catering to developers and executives.
Aided professors with conducting labs, recitation lectures and conducting exams. Reinforced topics presented by professors by assisting students.
Develop, configure and maintain cryptographic modules, encryption standards across variety of networking devices. Maintain and validate FIPS(Federal Information Processing Standards) encryption on products using cryptography for secure remote management, data encryption, digital signatures and information protection as per NIAP-National Information Assurance Program. Automate, develop and document new security test cases and standards as per NIST Cryptographic Module Validation Program (CMVP).
Performed forensic analysis of malware, spam, phishing, hacking and other security abuse incidents to understand modus operandi. Proactively tracked security breach and implement countermeasures in partnership with support and system admin teams, ensuring that the security policies are strictly adhered Configured IDS/IPS signature creation, packet analysis, configuration standards, firewall rule sets, vulnerability analysis, Forensics, web application security, pen-testing, reverse engineering, Honeypots, IOC, advanced threat detection, code analysis.