profile-pic

Aswani Raveendran

A dedicated, driven professional seeking to secure Application Security Consultant position with an established company that will allow me the opportunity to use my skills in the area of risk analysis and application vulnerability assessment methodologies, as well as in information security concepts.
  • Role

    Senior Application Security Engineer

  • Years of Experience

    7.5 years

Skillsets

  • Java - 3 Years
  • Android - 2 Years
  • OWASP

Professional Summary

7.5Years

  • Senior Information Security Engineer

    WellsFargo

  • Security Analyst

    Accenture

Applications & Tools Known

  • icon-tool

    Veracode

  • icon-tool

    Checkmarx

  • icon-tool

    Acunetix

  • icon-tool

    HCL Appscan

  • icon-tool

    Charles

  • icon-tool

    ZAP

  • icon-tool

    apktool

  • icon-tool

    Dex2jar

  • icon-tool

    Drozer

  • icon-tool

    sqlite3

  • icon-tool

    adb

Work History

7.5Years

Senior Information Security Engineer

WellsFargo

Security Analyst

Accenture

Achievements

  • Senior Information Security Engineer in Enterprise Application Security Program(EASP) that develop policies, process and tools to proactively embed security into every phase of SDLC across Wells Fargo developed applications. Skilled in conducting threat modeling exercises to identify potential security risks and vulnerabilities in software applications. Capable of prioritizing risks and suggesting appropriate countermeasures. Experienced in performing static and dynamic application security testing (SAST/DAST) to identify security weaknesses in code and application behavior. Pro cient in using industry- standard tools such as Burp Suite, Checkmarx and Fortify. Familiar with integrating security into the software development process. Knowledgeable about implementing security checkpoints, code reviews, and security testing at di erent stages of the SDLC. Skilled in designing secure application architectures, including secure data storage, encryption, and access controls. Pro cient in reviewing and enhancing existing application architectures for better security. Worked on Jira tickets to resolve queries regarding on-boarding applications, maintaining and supporting the Thread and Software Component Analysis tools in EASP and helping the development team in xing the issues on time. Experience in supporting Secure Coding Stream by researching and updating the secure coding documents available as part of EASP based on new changes introduced in OWASP/SANS security standards. Also, migrating the Secure coding data to SD Elements tool that will help the development team to ne their Security requirements and understand how to resolve the vulnerabilities. Profound Knowledge in OWASP Top 10, SANS/CWE Best Practices and Security Compliance like GDPR, HIPAA, PCI DSS.
  • Hyderabad, India Technology Security Analyst in Accenture Security.

Education

  • MCA (Master of Computer Applications)

    Amrita School of Engineering (Amrita University

  • BCA (Bachelor of Computer Applications)

    Kongunadu Arts and Science College(Bharatiyar University)

Certifications

  • Fortify 20.1.0 VLT Workshop Attended Fortify 20.1.0