Bayt.com
Rajath Magadi, Unit Manager - Security Testing

Rajath Magadi

Unit Manager - Security Testing

National Bank of Kuwait

Location
Kuwait - Al Kuwait
Education
Bachelor's degree, Information Science
Experience
12 years, 5 Months

Share My Profile

Block User


Work Experience

Total years of experience :12 years, 5 Months

Unit Manager - Security Testing at National Bank of Kuwait
  • Kuwait - Al Kuwait
  • My current job since May 2018

Managed Cybersecurity team of 15+ employees globally.
 Managed various Cybersecurity activities like Purple Teaming, Red Teaming, Blue Teaming,

Internal/External Penetration Testing, Vulnerability Management, PCI DSS Security Assessments,
Web/Mobile Application Security Assessments, Cloud Security Assessments, API Security Testing,
Operating Systems / Databases Misconfiguration Reviews and implement DevSecOps with Secure
Code Reviews etc.

 Managed various Cybersecurity Audits like PCI DSS, SWIFT CSP and ISO27001.
 Managed Robotic Process Automation (RPA) Security Assessments by providing security

recommendations at every phase of each process by performing Threat Modelling, Process Security
Assessments on RPA tools like BluePrism, Selenium etc.

 Managed various Building Management Systems Security Audits like CCTV, Intercom, Water

Leakage, Fire Alarm, Elevator, Intrusion Alarm, SCADA etc.

 Provided Secure Architecture recommendations to during any new/existing initiatives/projects

implementation/upgrades/changes of infrastructures/applications.

 Provided cloud security recommendations based on SaaS, PaaS, IaaS services on AWS and Azure.
 Provided security recommendations on monitoring tools like F5 WAF, LogRythm, and Imperva

Database Access Monitoring etc.

 Advised on various Cybersecurity advisories based on the advisories/researches from CERT,

TrendMicro, Fortiguard, CISA Alerts, Microsoft, CISCO Talos, to mitigate new trending
cybersecurity threats and Zero-day attacks.

 Managed brand reputation vendors for analyzing organization external posture for brand abuses, site

impersonations, domain/sub-domain infringement, leaked credentials, phishing, scams, fake Ads, evil
twin sites, baiting news sites etc.

 Present overall security posture of the organization to Management with various dashboards
 Advised on Cybersecurity advisories based on the advisories/researches on emerging attacks
 Advised Security Governance/Compliance teams on Key Performance Indicators and Key Risk

Indicators to enhance the security posture of the organization.

 Conducted Risk Assessments during Risk Acceptance process by evaluating vulnerabilities to

examines probable threats exposed and advice management.

Senior Consultant at Protiviti Member Firm Kuwait WLL
  • Kuwait - Al Kuwait
  • May 2017 to May 2018

External Applications Security Testing.
Internal Applications Security Testing.
External Network Penetration Tests.
Internal Network Penetration Tests.
Configuration Audit/Vulnerability Assessment for various critical servers and devices of organization.
Mobile Application Security Testing.
Secure Code Review.
Wi-Fi Penetration Testing.
Proposal Preparations based on the RFP
Managed Security Services

Senior Information Security Analyst at Bankbazaar.com
  • India - Bengaluru
  • February 2015 to April 2017

1. Product Security
2. External Applications Security Testing.
3. Internal Applications Security Testing.
4. External Network Penetration Tests.
5. Internal Network Penetration Tests.
6. Configuration Audit/Vulnerability Assessment for various critical servers and devices of organization.
7. Mobile Application Security Testing.
8. Secure Code Review.
9. Vulnerability Management

Senior Analyst - Information Security at Paladion Networks Pvt. Ltd
  • India - Bengaluru
  • April 2012 to February 2015

1. Application Security Testing for many Banking and Core Banking application.
2. Application Security Testing for Online Shopping and business applications.
3. Internal and External Network Penetration Tests.
4. Configuration Audit/Vulnerability Assessment for various critical servers and devices for many organizations.
5. Mobile Application Security Testing

Software Engineer at NuWare Systems Pvt. Ltd
  • India - Bengaluru
  • December 2011 to March 2012

1. Application Security Testing for internal applications.
2. Involved into development of an internal application.
3. Worked on various QA deployments and bringing the changes to production environment.

Education

Bachelor's degree, Information Science
  • at Maharaja Institute of technology, Mysore
  • July 2011

Bachelors Engineering in Information Science

Specialties & Skills

Code Review
+Endorse 0
Wireless Security
+Endorse 0
Security Testing
+Endorse 0
Web Application Security
+Endorse 0
Penetration Testing
+Endorse 0
Wi-Fi Penetration Testing
+Endorse 0
Managed Security Services
+Endorse 0
Application Security Testing
+Endorse 0
Secure Configuration Audit
+Endorse 0
Mobile Application Security Testing
+Endorse 0
Secure Code Review
+Endorse 0
Penetration Testing
+Endorse 0
Vulnerability Management
+Endorse 0
Security Architect
+Endorse 0

Languages

English
Intermediate
Kannada
Intermediate
Hindi
Intermediate

Training and Certifications

CISSP (Training)
Training Institute:
ISC2
Date Attended:
July 2020
Duration:
80 hours
Qualys Certified Vulnerability Management Specialist (Certificate)
Date Attended:
February 2018
Xtreme Web Hacking (Training)
Training Institute:
NullCon
Ethical Hacking Expert (Level 1) (Training)
Training Institute:
TechDefence Pvt. Ltd
Ec-Council Certified Security Analyst (Certificate)
Certified Ethical Hacker (Certificate)

Hobbies

  • Playing Counter Strike game
  • Shuttle Badminton
  • Chess
  • Playing Guitar