• Leading the delivery of Cyber Security projects, leveraging global delivery capability• Managing strong relationships with leadership teams and internal/external stakeholders• Perform AI Penetration Test for both Standalone LLM and Outsourced applications to uncover the most common application security flaws based on OWASP Top 10 for LLMs and more• Security audits of AI/ML applications, including LLMs, to identify vulnerabilities and risks• Perform continuous managed automated Penetration testing using Horizon3.ai’s NodeZero platform• Delivering the CSRM-shared services to better serve the corporation and its business units• Integrate DevSecOps into CI/CD to automate security processes to ensure quicker delivery • Monitoring cyber threats, vulnerabilities, suspicious activities and intrusions• Respond to customer RFP, Develop designs and Effort Estimation for cost-effective solutions• Verification of vulnerabilities, threat analysis, and security checks• Provide technical reports and official papers based on test results• Provide security consulting to technology, operations and business on an ongoing basis• Providing support to Managed security service providers (MSSP) business to deliver client's enterprise networks and endpoints• Provide Incident Response support and analyze alerts of Security Information and Event Management (SIEM) in Security Operation Center (SOC)• Conducting security assessments and audits of existing cloud environments to identify vulnerabilities and weaknesses• Worked with security and risk standards including ISO 27001-2, PCI DSS, CIS Guidelines

• Assisted in engagement teams in evaluating client vulnerability management programs across people, processes, and technology• Worked with engagement teams to own distinct portions of vulnerability management solutions tailored to client environments• Conducted attacks following OWASP, SANS, PCI-DSS standards for SQL Injection, XSS, Session hijacking, Improper Access Control etc. using Burp suite Pro tool and ZAP Proxy• Infrastructure and Network Penetration Testing using Nessus, Nexpose, Kali Linux, Metasploit etc.• Mobile Application Penetration Testing for Static, Dynamic & Forensic (iOS and Android).• Assisted in the project management of cybersecurity projects including development of project charters, project plans, status updates, escalation management and root cause analysis.• Worked on Threat Modeling and implementing Secure-SDLC

• Web-Services Definition Language (WSDL) Testing using Ws-Digger, Fiddler etc• Mobile application penetration testing is done for Static, Dynamic & Forensic (iOS and Android)• Threat Matrix and Test Cases preparation based on requirement and design document• Source Code Analysis done on web application using manual and automated tool• Threat Profile and Test Cases preparation

• Performed VAPT on Web application, Mobile App and Infrastructure• Worked with Pre-Sales team and prepared Test strategy and Effort Estimation

• Focused on Web application Security Assessment.• Actively worked in Access Management, Reconciliation & IT Security profile