Varun Prusty Email & Phone Number

San Francisco Bay Area

• Partner with development teams to help design and implement secure application features.
• Security design review of features and services developed for Asana.
• Respond to security incidents.
• Help triage reported security bugs and guide them to a fix.
• Develop security training program for Program Managers and Software Engineers.
• Help build the Security Risk Management framework.

San Mateo, CA

• Security thought leader for the company
• Architect, deploy, manage, and maintain security tools and infrastructure.
• Review and guide all application and infrastructure designs and code to security approval.
• Help define standards and processes for secure application and infrastructure architecture.
• Help design security for new container platform and guide the move to microservice and service mesh paradigm.
• Threat model environments to identify vulnerabilities and prioritize mitigation and controls.

San Mateo, California, United States

• Conduct security design reviews for application and infrastructure.
• Was one of the technical leads supporting Coupa’s effort in getting FedRAMP certified.
• Help different software development teams to implement security tooling into their applications.
• Help maintain metrics to signify the current security risk associated with each application and its related infrastructure
• Build the security incident investigation and response process
• Work with acquired companies to deploy tooling for security monitoring and alerting

San Mateo, California, United States

• Manage security of hybrid cloud infrastructure (AWS, Azure, GCP, IBM cloud, Rackspace, and Data Center)
• Manage, develop, and maintain software tools to monitor the production environment for malicious activity.
• Review changes to application and infrastructure
• Help with patching and managing cloud infrastructure
• Maintain Chef cookbooks for security deployments
• Investigate and organize responses to security incidents

Sunnyvale, CA

• Design, Architect and implement Cyber Security producto Design and implement product feature to simulate various DDoS attacks
• Responsible for Protocol Fuzzing engine
• Scrum Master for Dev Team
• Setup malware sandbox to generate and analyses network traffic generated by malware installed on windows systems.
• Help maintain cloud application to provide latest security feeds to our customers.

Greater Los Angeles Area

• I work with the Security Content Team. My main responsibility is to add vulnerability fingerprints to Nexpose so it can figure out if a device on the network is vulnerable to any known attacks.Some of my.
• Automation to crawl vendor advisory pages and generate descriptors, checks and solutions for Security threats
• Write JESS fingerprinting code to retrieve installed software information from targets
• Meet Microsoft Patch Tuesday SLA (Generate and test checks for known Microsoft vulnerabilities)
• Write cucumber test framework to help the company test coverage and scanning
• Work with Release engineering in putting together an automated build chain on Jenkins

Atlanta

Application and Management application for SaaS

Developing modules, patches and bug-fixes for Cascade Server (Java EE)

I'am working on Drupal websites for conferences.

Complete design and implementation of soa.dcp.ufl.edu.

Coded a generic secure E-commerce suite using JSF and Hibernate deployed on JBoss.

- Initiated and managed more than 400 blog pages and the main company webpage for SRIS Law Group.- Made approximately 500 flash ads to promote different webpages- Used Wordpress, CSS and PHP extensively

Masters, Information Security

Senior Certificate, Computer Science

B-Tech, Information Technology