Application Security Cybersecurity Engineer

Vardhan Reddy - 314-***-**** **************@*******.*** LinkedIn

CySA+, CASP+, OSINT, CISM, CISSP

SUMMARY

Highly skilled Cybersecurity Engineer with over 8 years of experience specializing in application security, including SAST and DAST. Adept at designing, implementing, and managing enterprise-wide security strategies, with a strong ability to identify, assess, and mitigate security threats across the application lifecycle. Expertise spans asset security, identity and access management, security assessments, testing, operations, and change management. Proven track record in conducting end-to-end API security testing using tools like Postman and Burp Suite, uncovering critical vulnerabilities, and enhancing authentication protocols with OAuth 2.0, TLS 1.3, and JWT. Implemented robust network security policies and firewalls (e.g., Cisco ASA, Palo Alto) to safeguard against cyber threats. Led company-wide API threat modelling initiatives that reduced risk by 40% and integrated SAST/DAST tools such as Check Marx and Veracode into CI/CD pipelines, resulting in a 30% improvement in code quality. Led infrastructure upgrades to incorporate advanced virtualization technologies, reducing hardware costs and improving network performance. Experienced in securing multi-cloud environments (AWS, Azure, GCP), hardening Kubernetes clusters, and using Prisma Cloud and Cloudflare WAF for real-time threat detection. Successfully implemented secure cloud-based deployments, strengthened microservices architectures, and improved application resilience through automated security configurations. Skilled in developing security automation workflows, reducing false positives by 25%, and accelerating vulnerability remediation cycles by 20%. Proficient in conducting enterprise-wide risk assessments, designing risk treatment plans, and ensuring compliance with ISO 27001, NIST, and GDPR standards.

Security Tools Programming Cloud Platforms API Security Network Management Stakeholder Relations Policy Development Information Security Management

EXPERIENCE

NextGen Solutions LLC, Philadelphia, Pennsylvania Sr. Security Engineer

March 2024 – Present

Lead the application security program, ensuring compliance with industry standards such as GDPR and CCPA, while aligning security initiatives with business objectives to enhance overall security posture.

Oversee vulnerability assessments and penetration testing efforts for diverse applications, utilizing SAST and DAST tools to identify and mitigate security risks, achieving a 30% reduction in vulnerabilities.

Designed and implemented hybrid cloud infrastructures using AWS, Azure, and Google Cloud to optimize cost, performance, and scalability.

Designed and managed physical and virtual network infrastructures, ensuring high availability and scalability.

Develop and implement automated security testing within CI/CD pipelines, integrating tools like Jenkins and GitLab CI to enhance security practices without compromising development agility.

Conduct regular risk assessments based on ISO 27001 standards, creating and executing risk treatment plans that prioritize security initiatives according to organizational risk tolerance.

Designed and deployed microservices-based architectures for improved application scalability and flexibility.

Conducted regular vulnerability assessments and penetration tests to identify and mitigate security risks.

Collaborate with the threat intelligence team to analyse emerging threats and vulnerabilities, providing actionable insights to strengthen the organization’s overall security and incident response strategies.

Automated code review processes to ensure compliance with security standards and best practices.

Design and deliver security awareness training programs for development teams to foster a security-first mindset, improving secure coding practices and reducing security risks across projects.

Work closely with product management and engineering teams to integrate security requirements into the software development lifecycle, ensuring new features and applications are built with robust security controls.

Participate in incident response activities, investigating security breaches, conducting post-mortem analyses, and recommending improvements to technologies and practices to prevent future incidents.

Stay current with emerging trends and threats in the cybersecurity field, recommending and implementing improvements to enhance existing security practices, tools, and overall security posture.

Develop and enforce comprehensive security policies and procedures, ensuring alignment with regulatory requirements such as GDPR, HIPAA, and SOC 2, while collaborating with stakeholders to ensure organizational compliance.

Tradovate, Philadelphia, Pennsylvania Application Security Engineer

May 2019 – March 2024

Led the deployment of a large-scale intrusion detection system (IDS), improving network security and reducing unauthorized access attempts by 40%.

Architected a robust security framework incorporating zero-trust architecture, decreasing breach risk by 35% across critical company applications.

Managed network virtualization solutions like VMware NSX and Hyper-V Network Virtualization to improve network efficiency and scalability.

Integrated and maintained VMware, Hyper-V, and other virtualized environments to optimize resource usage and streamline operations.

Directed a team of 5 security engineers to overhaul endpoint security, effectively mitigating 99.9% of malware incidents across the organization.

Pioneered the use of machine learning algorithms to predict and prevent security threats, reducing false positive rates by 50%.

Collaborated with cross-functional teams to roll out a company-wide security awareness training program, improving security compliance by 60%.

Formulated and executed vulnerability assessments, leading to a 20% improvement in system resilience and protection against cyber-attacks.

Automated regular security audits, saving 15 hours per month in manual review time and enhancing the overall efficiency of security processes.

Configured and managed Prisma Cloud to secure cloud workloads and prevent data breaches in multi-cloud environments.

Contributed to the development of a custom SIEM solution, improving incident response time by 30% and streamlining threat detection.

Managed and optimized Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST) tools, effectively identifying and remediating critical vulnerabilities.

Deployed IDS/IPS systems (Snort, Suricata) and advanced DDoS protection measures, strengthening network perimeter resilience against external threats.

Hardened APIs and applications using OWASP Top 10 and secure coding practices, resulting in a 40% reduction in vulnerabilities and improving application security.

Led the integration of advanced web application firewalls (Cloudflare, AWS WAF) to block 98% of incoming web-based threats, enhancing perimeter security.

Capgemini India PVT LTD, Hyderabad, India Cyber Security Analyst

May 2017 – April 2019

Designed and implemented a centralized application security program to secure client applications for a company with 600 employees.

Managed the web application vulnerability lifecycle, utilizing DAST and SAST tools to reduce application vulnerabilities by 86%.

Conducted security monitoring and investigated SIEM alerts, improving incident response times and enhancing threat detection.

Integrated SDN controllers for dynamic traffic management and optimized performance across the network infrastructure.

Led SIEM analysis and use case management, ensuring an effective framework for threat detection and incident response.

Developed and implemented security testing frameworks for thick client applications, protecting against emerging threats.

Led penetration testing initiatives using OWASP Top 10 standards, identifying and mitigating critical vulnerabilities in client systems.

Collaborated with architects to implement secure cookie and session storage practices, enhancing overall application security.

Designed and maintained a baseline security testing framework for consistent regression testing, ensuring ongoing security.

Configured and optimized web application firewall rules, significantly strengthening the security posture of the organization.

CERTIFICATIONS

ISO/IEC 27001

Blockchain Basics and Ethereum Smart Contract Development

CompTIA Security+

Mobile Platform, IoT, and OT Hacking

Mobile Platform, IoT, and OT Hacking

CASP+: Security Engineering and Cryptography

CySA+: Security Operations

Reconnaissance and Enumeration Basics

Cryptography

Certified Information Security Manager (CISM)

Cloud Computing

Certified Information Systems Security Professional (CISSP)

Cyber Kill Chains

Offensive Security Operations

EDUCATION - Jawaharlal Nehru Technological University, Hyderabad 2014- 2018

Contact this candidate