- Conducts end-to-end security reviews on new applications and features, from Threat Modeling to SCA to SAST to DAST to internal penetration tests.- Manages Vulnerability Disclosure and Bug Bounty Programs, implementing the internal review and payment process workflow. Leads the team in triaging and reviewing reported findings via the Bugcrowd platform and coordinates with security researchers and product teams to get remediation and close security gaps.- Collaborates with product teams on the discovery and remediation of application vulnerabilities, ensuring timely remediation.- Conducts software composition analysis, and static and dynamic application security testing for both web and mobile applications, running scans via tools like Mend, Checkmarx, Data Theorem, Burp Suit and Whitehat Vulnerability Scanner, and triage of findings.- Runs full penetration tests on Cvent applications, both web and mobile.- Effectively communicates with clients about vulnerability status and the mitigating controls in place, leading to stronger confidence in the Cvent brand and reputation related to security.- Develops and improves the Cvent internal security tool for generating remediation plans to accompany third party penetration test reports for clients. Worked on development for other security tools with the team.- Collaborated with internal teams and third-party penetration test vendors to conduct penetration tests on Cvent applications.

- Conducted end-to-end security reviews on new applications and features, from threat modeling to SCA to SAST to DAST to internal penetration tests.- Managed the Vulnerability Disclosure Program, triaging findings reported by researchers via the Bugcrowd tool, and collaborating with researchers and product teams for remediation of findings. Implemented a paid reward program (Bug Bounty).- Collaborated with product teams on the discovery and remediation of application vulnerabilities, ensuring timely remediation.- Worked with product teams to create threat models and architecture documents to identify and remediate threats to the application using the Threat Modeler tool.- Conducted static and dynamic application security testing for both web and mobile applications, running scans via tools like Checkmarx, Data Theorem, Burp Suit and Whitehat Vulnerability Scanner, and triage of findings.- Ran full penetration tests on Cvent applications, both web and mobile.- Effectively communicated with clients about vulnerabilities status and the mitigating controls in place.- Led security training within product teams, managing the secure coding training program and training developers on OWASP Top 10 security risks.- Collaborated with internal teams and third-party penetration test vendors to conduct penetration tests on Cvent applications.

- Conducted end-to-end security reviews on new applications and features, from threat modeling to SCA to SAST to DAST to internal penetration tests.- Managed the Vulnerability Disclosure Program, triaging findings reported by researchers via the Bugcrowd tool, and collaborating with researchers and product teams for remediation of findings. Implemented a paid reward program (Bug Bounty).- Collaborated with product teams on the discovery and remediation of application vulnerabilities, ensuring timely remediation.- Worked with product teams to create threat models and architecture documents to identify and remediate threats to the application using the Threat Modeler tool.- Conducted static and dynamic application security testing for both web and mobile applications, running scans via tools like Checkmarx, Data Theorem, Burp Suit and Whitehat Vulnerability Scanner, and triage of findings.- Ran full penetration tests on Cvent applications, both web and mobile.- Effectively communicated with clients about vulnerabilities status and the mitigating controls in place.- Led security training within product teams, managing the secure coding training program and training developers on OWASP Top 10 security risks.- Collaborated with internal teams and third-party penetration test vendors to conduct penetration tests on Cvent applications.

- Collaborated with product teams on the discovery and remediation of application vulnerabilities, ensuring timely remediation.- Conducted dynamic application security testing for both web and mobile applications.- Conducted internal security assessments on new products and features to ensure compliance with Cvent security protocols.- Effectively communicated with clients about vulnerabilities status and the mitigating controls in place.- Led security training within product teams, managing the secure coding training program and training developers on OWASP Top 10 security risks.- Developed and implemented new security policies and procedures within the application security team's operational work.- Collaborated with internal teams and third-party penetration test vendors to conduct penetration tests on Cvent applications.

- Vulnerability Management: Collaborated with product teams on application vulnerabilities from discovery to remediation.- Dynamic Application Security Testing: Conducted dynamic application security testing for both web and mobile applications.- Internal Security Assessment: Conducted internal security assessments on new products and features to ensure compliance with Cvent security protocols.- Secure Code Training Program: Played an instrumental role in the management of the secure code training program.

o Manage Managed the CETLA website, ensuring that all pages and links were active and up to date.o Collaborated with management to make any necessary changes to the website.o Offered input on the overall design and development of the website to improve its functionality and user experience.

o Assisted faculty with a virtual class using Codio and Canvas platforms (32 students)o Course content included: Full Stack Development, Data Structures an Intro to Java, Interview prepo Assisted with grading assignments and troubleshooting student issues

o Worked on 7-man team while developing front end user interfaces for digitizing insurance claimso Project implemented using the MVC convention and Orchard CMS, ASP.NET, CSHTML, JavaScript, CSS & C#o Development process was Agile and version control was enforced using Git(terminal and Visual Studio interface)o Worked with the Quality Assurance representative to standardize code for smooth transfer at project close outo Participated in end to end testing and Alpha testing on another software project