Requesting a Call: +91 98100 70969

Team Details

Chaudary S

Technical Resource

Proficient Information Security specialist with over 11 years of experience in several domains

  • CEH, ISO 27001:2013 Lead Auditor and ISEB certified professional with experience primarily in the area of Information Security Frameworks design, Implementation and Management, Vulnerability Analysis and Penetration Testing, Security & Privacy Assurance & Audits, Security/Privacy Risk Management and Secure Software Development Governance
  • Experienced with design and implementation of comprehensive Information Security Management framework from scratch, in accordance with global security and privacy standards such as ISO 27001:2013, PCI-DSS, SOC2, Cloud Security (CSA), NIST frameworks, HIPAA
  • Experienced in setting up organization’s information security program, security control design as per business requirement, adoption of latest technical solutions with focus on key problem areas like data loss prevention, organization’s IT infrastructure and hosting environment security, vulnerability management, business continuity, incident management, security tools & technologies implementation, and reporting metrics & effectiveness measurement
  • Designed and lead successful implementation of Information security and privacy program to attain security & privacy certification ISO27001:2013, SOC2, PCI, and Hi-Trust for small and mid-sized organizations
  • Experienced in Vulnerability Assessment and Penetration Testing of IT Infrstructure, Network, and Web & Mobile applications using manual and automated techniques; leveraging SAST & DAST methodologies
  • Hands-on with threat modeling, Secure SDLC implementation, security/privacy controls configuration and reviews
  • Experience with security and privacy risk management with focus on people, process, technology and business impacts
  • Experienced in leading risk management programs and vendor management for security engagements
  • B.Tech (Computer Science Engineering) from Amity School of Engineering and Technology (Amity University)

 TECHNICAL EXPOSURE & SKILLS

  • Compliance Frameworks: ISO 27001:2013, PCI, HIPAA, HITRUST, GDPR, NIST, MPAA-TPN
  • Tools: BURP, ZAP, SQL Map, nMAP, WireShark, Kali Linux Security Tools for manual and automated VAPT assessments
  • Security Assessment: SAST, DAST, IAST & Configuration Reviews
  • Software Development Model: SSDLC, Agile, V Model, Waterfall
  • Languages: Python

Operating Systems: Unix, Kali Linux, Windows, iOS, Android