profile-pic
Vetted Talent

Navya Madhavi T

Vetted Talent

An enthusiast in reaching the apex of Cyber Security domain, where I have grabbed my interest towards IoT Security as it is collated domain of all specs of Cyber Security like, Cloud security, Data Provenance, IAM and so on .

With the evolution of 4IR (Fourth Industrial Revolution) era, Blockchain piqued my interest where I have not left a single pie in understanding the technology which led to a progressive success.


More than six years of IT experience with a burgeoning career graph . Gained expertise in various Blockchain frameworks, Data Science, Application Security , VAPT and relevant security strategies specific to the respective application.

  • Role

    Software Development - Other

  • Years of Experience

    7.00 years

Skillsets

  • Hyperledger Indy - 2 Years
  • NO SQL - 2 Years
  • Docker - 5 Years
  • Kubernetes - 5 Years
  • APIS - 5 Years
  • AWS - 5 Years
  • Smart Contracts - 5 Years
  • CouchDB
  • CockroachDB
  • Zero-knowledge blockchain architectures
  • DAO
  • Consensus Protocols
  • VAPT
  • MySQL
  • Ethereum
  • hyperledger fabric
  • IoT
  • Node Js
  • cloud platforms
  • Application Security
  • Mongo DB - 5 Years
  • Blockchain - 6 Years
  • Go Lang - 1 Years
  • Shell Scripting
  • Java

Vetted For

9Skills
  • Roles & Skills
  • Results
  • Details
  • icon-skill_image
    Blockchain Developer (Remote)AI Screening
  • 61%
    icon-arrow-down
  • Skills assessed :Testing Framework, adonisjs, Blockchain, Ethereum, Node Js, Polygon, Postgre SQL, Problem Solving Attitude, Type Script
  • Score: 55/90

Professional Summary

7.00Years
  • May, 2022 - Present3 yr 8 months

    Senior Software Engineer III

    Carelon Global Solutions
  • Mar, 2021 - May, 20221 yr 2 months

    Associate Consultant

    Infosys
  • Jul, 2017 - Feb, 20213 yr 7 months

    Software Developer

    Virtusa

Applications & Tools Known

  • icon-tool

    Docker

  • icon-tool

    Kubernetes

  • icon-tool

    Istio

  • icon-tool

    Terraform

  • icon-tool

    OWASP Top 10

  • icon-tool

    OWASP ZAP

  • icon-tool

    BurpSuite

  • icon-tool

    NMap

  • icon-tool

    Nikto

  • icon-tool

    Metasploit

  • icon-tool

    Nessus

  • icon-tool

    Semgrep

  • icon-tool

    AWS

  • icon-tool

    GCP

  • icon-tool

    Pega

  • icon-tool

    Git

Work History

7.00Years

Senior Software Engineer III

Carelon Global Solutions
May, 2022 - Present3 yr 8 months
    Leading a team of seven by mentoring the teammates at all stages of SDLC. Contributing in multiple areas of the project, i.e Design, Development, Infrastructure, Deployment, Testing and so on. First-ever deploying complete decentralized network with huge amounts of data in health care as part of Health Utility Network. Trainer for a team of 30 in Hyperledger Fabric and Kubernetes. Troubleshot critical issues and resolved with most efficient solution thereby giving a business value.

Associate Consultant

Infosys
Mar, 2021 - May, 20221 yr 2 months
    Worked as Blockchain SPOC for enhancing the platform with more security measures at all OSI layers of the project at client location. Interaction with client for the design and deployment process where architectured the approach by reducing the latency thereby gaining the business value. Improved the performance of the application by taking all the considerate measures especially with respect to Hyperledger Fabric. Interaction with client for the design and deployment process where architectured the approach. Mentored a team of six as part of the project development and also for Blockchain trainings like DAML, Hyperledger Fabric and so on. Developed scripts for keycloak, Aries Agents, API Development and so on Troubleshot the issues and resolved with most feasible solution. Contributed in multiple areas of the project i,e Design, Development, Infrastructure, Deployment, Testing and so on. Interacted with clients where predominantly involved in architecture and business flows of the process.

Software Developer

Virtusa
Jul, 2017 - Feb, 20213 yr 7 months
    Worked on IoT platform named Cognisense which facilitates the user with bulk- provisioning of devices, multi-cloud feature and applied strategies ensuring security. Designed and developed solution for a health-care usecase, Supply chain management usecase using Blockchain. Developed bulk-provisioning of devices, rules engine and other features as part of the IoT platform we developed named Cognisense and deployed the same to AWS Marketplace. Designed and implemented security framework for the entire IoT platform. Applied strategies to eradicate MITM, DoS, Mirai Botnets and so on by following 4C strategy. Developed solutions in various aspects of Cyber security i.e Network security, IoT security and so on. Researched on various Blockchain solutions specially Blockchain as a security feature to IoT. Dealt with the workflow of an Identity Management Solution Interacted with client on the design and technical flow of the solutions. Developed an automation process for a bot to communicate with the clients web application. Handled complete process flow of two countries as part of the project where predominantly was involved in the complete development and design. Played key role in all the scrum calls thereby helping the team in understanding the business and technical flow of the process. Developed a Business process for booking flight tickets online.

Achievements

  • Rewarded with Impact points for the exceptional work done for Q3 FY22 at Carelon Global Solutions.
  • Received Project Excellence award for Q2 FY22 in Infosys, Nov 2021 for successfully delivering the project on time and also been rewarded for the same.
  • Awarded as TECH DOMAIN MAESTRO for Q1 FY22 for on-time deliverables and continued dedication with excellence as part of Rise awards in Infosys, Jul 2021.
  • Rewarded for the best session on "IoT and its Security Risks" at Infosys on 27th May 2021.
  • Rewarded for the best session on IoT with 5G New Era and Risks, a workshop organized by National Cyber Defense Research Centre(NCDRC) at Annapoorna Engg College, Salem on 5th May 2021.
  • Rewarded for third place in Hackathon conducted at Virtusa for 2 days i.e Oct 15 2020 and Oct 16 2020.
  • Honored with a Shield and certificate for giving the Guest Lecture on Blockchain Essentials in VIT Bhopal as part of Workshop for 3 days i.e Oct 10 2019 to Oct 12 2019.
  • Rewarded multiple times for the best session on Blockchain Essentials at APE@Learn in Virtusa from 2019-2020.
  • Appreciated with a Medal as One of the 30 selected among 300 projects and for best performance in Anveshana 2015 (Alphabetical Trainer for visually impaired) & 2016 (Braille Printer) [both years], a state level symposium conducted by Agastya International foundation in collaboration with Synopsys.
  • Paper Presentation: Awarded second prize at a National Level Paper Presentation on Information Technology for Satellite Communication organized by BVRIT at PROMETHEAN 2k14.
  • Mentored for Venable Assistive Solutions in Minutes, a workshop on rapid prototyping and App Development held at Assistive Technology Lab, handling approx. 200 members in 2016.

Major Projects

8Projects

Provenance (Blockchain Org)

May, 2022 - Present3 yr 8 months
    Production-grade complete decentralized system supporting health care industry for ease membership enrollments by maintaining the Data Integrity and ensuring no data loss.

SDH (Shareholder Rights Directive)

Jan, 2022 - May, 2022 4 months
    A live application which supports 135 clients and used as a stock exchange platform which is blockchain enabled for ensuring Data Integrity specifically for PHI/PII data of the UK Citizens.

Blockchain Core (BCCORE)

Sep, 2021 - Jan, 2022 4 months
    A Decentralized Verifiable Credentials solution for Infosys Learning/Educational platform where the users pursued certificates & courses get stored as the credentials in the users mobile wallet.

TTS (Toyota Systems)

Mar, 2021 - Aug, 2021 5 months
    Worked for TTS Japan Client Data Migration of smart contracts from one cloud platform to another thereby ensuring portability of Blockchain and the migrated data is captured in the clients web application called TBlock portal, a comprehensive Blockchain contracts exchange system that processes contracts from proposal to final approval for all transactions.

Solutions (IoT Emerging CC - Research & Development)

May, 2019 - Feb, 20211 yr 9 months
    Worked on IoT platform named Cognisense which facilitates the user with bulk-provisioning of devices, multi-cloud feature and applied strategies ensuring security. Developed solutions in various aspects of Cyber security i.e Network security, IoT security and so on.

Solutions (Cyber Security Research & Development)

Jan, 2019 - Jun, 2019 5 months
    Building Solutions in all the aspects of Security specially for Cyber Security loopholes like Network Security , IoT Security , and so on.

TTS (Treasury and Trade Solutions) RPA Penang, Export Payments

Apr, 2018 - Jan, 2019 9 months
    Malaysian client- A third-party clients web application called TRIMS (Trade Information And Management System) which is Clients comprehensive Global Trade Finance Division(GTFD) system that processes transactions from initial registration to final payment for all GTFD products.

Flight Booking Online (Proof of Concept) for a Pega application

Jan, 2018 - Mar, 2018 2 months
    Developed a Business process for booking flight tickets online.

Education

  • Master of Technology (Data Science & Engineering) Working professional Program

    Birla Institute of Technology and Science (BITS)

  • Bachelor of Technology (Information Technology)

    Jawaharlal Nehru Technological University, Hyderabad / Dr. B.V. Raju Institute of Technology

Certifications

  • Certified ahm (academy for healthcare management)-250

  • Certified daml(digital asset modeling language) associate

  • Certified infosys blockchain professional

  • Certified csa (certified system architect) in pega 7.2.1

  • Certified rpa (robotic process automation) specialist on workfusion spa v8.5

  • Certified ibm blockchain foundation developer

  • Certified and recognized as a microsoft technology associate (mta) in .net/fundamentals

AI-interview Questions & Answers

Well, Hi. Uh, I'm Nava Madeline. You know, 7 years of experience in IT. Predominantly 5 years of experience in, uh, blockchain. And, uh, I have started my career in 2017, uh, as a first company in So I've started my career as a developer where I've worked for a small POC, uh, for 3 months and then uh, worked for worked as a blockchain spark, uh, for an IoT product where I've worked around two and a half years, uh, for the specific product and could get the patents for the organization or and also could deploy, uh, the product to AWS marketplace. And post that, I moved to Infosys where I've worked for 4 different projects where I've started the product, uh, which is similar to, uh, Coursera, the internal, uh, educational platform where Infosys used to have. And, uh, the complete digital credentials, uh, pro form a is what I've started there. And when I left Infosys, that was into production. And also worked for 3 different clients. One client, which was in Japan, uh, which was in the manufacturing industry, even that was a blockchain project based out of quota. So, uh, predominantly, it was to migrate their entire network setup from Azure to AWS. And then I, uh, worked for a client, uh, called Broadridge, which is a financial institution. There also I worked as a blockchain spark, uh, which was a live application where we had more than 170 clients onboarded to the application. And there, uh, it was predominantly, um, uh, you know, to have all the PI data set of the blockchain. Then I, uh, moved to the current organization where I'm working for, um, where I've started a product to address couple of business problems with blockchain.

So, well, uh, when the app is built, um, so for any application, we have to follow the defense in-depth approach when it comes to security and security design of the security framework for any application plays a vital role because always with the Virgin in technology, there is always, uh, you know, security, uh, the security attacks going, uh, or increasing rapidly. So with the dApp, I think for the integrity of, uh, the user with Node. Js and Ethereum, um, first thing, with using the difference in-depth approach, I'll ensure that all the layers of the OSI of the specific application are secured enough. When I say all the layers of OSI, one being, like, we have forces. Like, wherever we see the application front, I think we can do the if it's a web application, web application security has to be followed. And mobile application mobile application security. If it's a web application, I I think we have a lot of OWASP top 10 tools, like OWASP. Zap is one of the tool, and BurbnSut is one of the tool where we can actually, uh, ensure that, uh, the web application or mobile application is secured enough. And then I think we have 4 c's that is cloud, cluster, uh, code, and container security. We have to ensure all these four c's have been secured enough. Uh, and, like, if it is, like, for container, we see, like, if it is a docker, right, we we will try to do the image scanning. And if it is a pod cluster security, we have to ensure all the firewalls and network layers is secured enough. And when it comes to, uh, the code, if it is Node. Js, I think we have, uh, tools like Node. Js scan and other things to ensure that the top, uh, OS top 10 are secured enough. And I think for, uh, Node. Js, when if it is, like, application or code centric, we have to ensure all the API request limit is, uh, you know, being there. All this, uh, all the, uh, API request, uh, request limit is actually, uh, configured rightly. And other things like, uh, the API key whenever the external party is trying to access our a p API, we should ensure that it is private enough. Probably, it is used if it is using API gateway of AWS, then we have to ensure that the API gateway itself is, uh, belonging to a private region. So, yeah, all these we have to consider when it comes to, uh, you know, security of, uh, a specific app.

Well, I think, uh, for let's assume the blockchain, whatever framework I'm using is Hyperledger Fabric. And I think the smart contract integration is always easy with Node. Js, but major reason being Node. Js comes up with the event grouping mechanism and also the design patterns like observer pattern, singleton, all these patterns. Right? The event queuing system is what it gives an added advantage when it comes to the request, uh, request response model of any application. So whenever we have a request response model, it's always, uh, you know, it's always better we use either Node. Js or Colang. And even for lot of, uh, event queuing or synchronous or asynchronous patterns, I think it's always best to use Node. Js, especially when we have the data format or the input format in JSON. Then I think yeah. For Node. Js, uh, whenever even the, uh, live examples like Netflix, Hotstar, Uber, this all uses Node. Js as its back end because of the advantages it has.

So I think the integration layer matters as I've never worked on Polycom. I'm not really sure. But in generally, whenever we have an OJ's back end, there will be always a controller in between as a medium, which can connect to your network and your, uh, back end or API code.

Well, I think all the hashes, whatever I get, uh, you know, whenever I, uh, try to generate a nonce, I should ensure that the hash of all the required data attributes are, uh, you know, put in the right way. And, also, I think, um, it uses key 256 as an algorithm, uh, all the, uh, around Ethereum framework. So for that, uh, whenever there is a transaction, I think whenever we are trying to generate a note, we should be we should ensure that probably the hash of the last four digits can be a number like zeros as such.

Well, the current, uh, whatever the the application I'm running on prod is actually made up of the TypeScript because of its own advantages when it's compared to node space. Special specifically, it would be the type strict. Right? And, also, I think we need not, uh, really, uh, think of, uh, type or probably the return, uh, type, whatever we are getting. So all this will make, uh, whatever the smart contract we're writing modular enough because, obviously, in this, uh, serverless computing, we we actually deploy or, uh, probably expose all our, uh, services in a distributed format, which are which actually we deploy in, uh, microservices format. So I think that is where we, uh, you know, ensure that the code is modular enough. So if you take an example of Facebook. Right? Let's say my home my Facebook home page is 1 service. Log in is 1 service, and, uh, probably, view page is 1 service. So these 3 can, uh, be segregated as 3 different microservices, and that's where we can ensure modularity.

Well, uh, I think here, uh, the attribute, uh, of of within the user, uh, whatever we are trying to give as an, uh, you know, JSON object. I think, uh, the first attribute we have utilized, it has name. But we are actually again calling, uh, the user as username as one of the attribute, which is wrong because we have declared, uh, the first variable as name with a type of string. But when you are actually assigning a value, you are assigning, uh, to a different variable called username. That is 1. And, also, the way we are passing the, uh, value is a little wrong here because within the JSON, right, uh, whenever it is a TypeScript, we we can actually, uh, you know, without giving the attributes as well, you can just pass the values. And here also, we get the pass by reference issue.

Well, uh, first thing, I think I don't see any try catch block in whatever the log request method we have here. Um, and because what whatever the response we get from that specific middleware or route we are getting. Right? Based on the response, we should first, uh, have our our own error handling. So there are different ways, uh, like, if it is like TypeScript of Node. Js, we have a package called Winston where you can actually log all your, uh, you know, error, uh, error handling, being it try catch, being it if it if we have a promise, probably async await. Uh, Like, whatever here, we have used async, and we have used await, and we have used next. But I think before that, we have to log, uh, all the response, all the requests, uh, you know, appropriately. And, also, for the error handling part, I think, uh, we need to use, uh, try catch, uh, as a base and also use probably Winston, uh, as a package where you can log all your errors if it is the info, if it is a debug, all that. You know, you can use Winston package here.

Well, for any Node. Js application, I think, uh, when we're building an, uh, application or a d app, the basic, uh, design pattern what we follow is an MVC where you'll have a model view and controller. So using that, uh, I I think whenever your controller would be your base, uh, model, uh, would be your back end and view would be our UI. So the technique, uh, I think, first thing, whatever I follow for the restful principle is that, um, I think one would be the observer pattern because for the Ethereum also, right, the design pattern is quite useful because, uh, whenever there is an asynchronous process, right, like, we have, let's say, task a and task b, a process a or process b. So in these two processes, as we all are aware, the 2 TS is not multithritic. Right? It's a single threaded pattern. So, uh, with that in mind, uh, I think whenever we have the process a and process b has to go in concurrent loop, that is where this event looping mechanism has been introduced or event queuing system has been introduced by Node. Js. So using that specific principle, I think we can ensure the concurrency still can go on. And, also, I think we have the, uh, worker threads in Node. Js where you can actually scale it up and or or, you know, actually fork an instance of a node. And, also, I think one more thing for Ethereum, I think we can have the sharding, uh, being it horizontal sharding or vertical sharding for all the scaling part of it.

I think for the pattern, I don't remember the exact pattern name. But to manage the dependencies, I think we can have the dev dependencies and, uh, the normal, uh, uh, you know, dependencies. Whatever we have, we'll import that and probably attach. And, also, if you're using TypeScript, probably we'll have a webpack, uh, config.js where you can actually have your external packages as well, uh, you know, linked to it.

Well, TypeScript is all about having a strict, uh, type of whatever variables you declare, uh, whatever methods you use in the entire program. So, uh, I think TypeScript, uh, eventually is popping up more because of, uh, the simple programming, uh, modular programming techniques it has with. And as said, uh, with the introduction of the serverless computing, I think, uh, everyone should use, uh, the request response model, uh, programming language, especially whenever you have, uh, adjacent type of, uh, input data. So, yeah, TypeScript ideally ensures all your event handling in a most appropriate way.