Bayt.com
Rajath Magadi, Unit Manager - Security Testing

Rajath Magadi

Unit Manager - Security Testing

National Bank of Kuwait

Lieu
Koweït - Al Koweït
Éducation
Baccalauréat, Information Science
Expérience
12 years, 5 Mois

Partager Mon CV

Empêcher usager


Expériences professionnelles

Total des années d'expérience :12 years, 5 Mois

Unit Manager - Security Testing à National Bank of Kuwait
  • Koweït - Al Koweït
  • Je travaille ici depuis mai 2018

Managed Cybersecurity team of 15+ employees globally.
 Managed various Cybersecurity activities like Purple Teaming, Red Teaming, Blue Teaming,

Internal/External Penetration Testing, Vulnerability Management, PCI DSS Security Assessments,
Web/Mobile Application Security Assessments, Cloud Security Assessments, API Security Testing,
Operating Systems / Databases Misconfiguration Reviews and implement DevSecOps with Secure
Code Reviews etc.

 Managed various Cybersecurity Audits like PCI DSS, SWIFT CSP and ISO27001.
 Managed Robotic Process Automation (RPA) Security Assessments by providing security

recommendations at every phase of each process by performing Threat Modelling, Process Security
Assessments on RPA tools like BluePrism, Selenium etc.

 Managed various Building Management Systems Security Audits like CCTV, Intercom, Water

Leakage, Fire Alarm, Elevator, Intrusion Alarm, SCADA etc.

 Provided Secure Architecture recommendations to during any new/existing initiatives/projects

implementation/upgrades/changes of infrastructures/applications.

 Provided cloud security recommendations based on SaaS, PaaS, IaaS services on AWS and Azure.
 Provided security recommendations on monitoring tools like F5 WAF, LogRythm, and Imperva

Database Access Monitoring etc.

 Advised on various Cybersecurity advisories based on the advisories/researches from CERT,

TrendMicro, Fortiguard, CISA Alerts, Microsoft, CISCO Talos, to mitigate new trending
cybersecurity threats and Zero-day attacks.

 Managed brand reputation vendors for analyzing organization external posture for brand abuses, site

impersonations, domain/sub-domain infringement, leaked credentials, phishing, scams, fake Ads, evil
twin sites, baiting news sites etc.

 Present overall security posture of the organization to Management with various dashboards
 Advised on Cybersecurity advisories based on the advisories/researches on emerging attacks
 Advised Security Governance/Compliance teams on Key Performance Indicators and Key Risk

Indicators to enhance the security posture of the organization.

 Conducted Risk Assessments during Risk Acceptance process by evaluating vulnerabilities to

examines probable threats exposed and advice management.

Senior Consultant à Protiviti Member Firm Kuwait WLL
  • Koweït - Al Koweït
  • mai 2017 à mai 2018

External Applications Security Testing.
Internal Applications Security Testing.
External Network Penetration Tests.
Internal Network Penetration Tests.
Configuration Audit/Vulnerability Assessment for various critical servers and devices of organization.
Mobile Application Security Testing.
Secure Code Review.
Wi-Fi Penetration Testing.
Proposal Preparations based on the RFP
Managed Security Services

Senior Information Security Analyst à Bankbazaar.com
  • Inde - Bengaluru
  • février 2015 à avril 2017

1. Product Security
2. External Applications Security Testing.
3. Internal Applications Security Testing.
4. External Network Penetration Tests.
5. Internal Network Penetration Tests.
6. Configuration Audit/Vulnerability Assessment for various critical servers and devices of organization.
7. Mobile Application Security Testing.
8. Secure Code Review.
9. Vulnerability Management

Senior Analyst - Information Security à Paladion Networks Pvt. Ltd
  • Inde - Bengaluru
  • avril 2012 à février 2015

1. Application Security Testing for many Banking and Core Banking application.
2. Application Security Testing for Online Shopping and business applications.
3. Internal and External Network Penetration Tests.
4. Configuration Audit/Vulnerability Assessment for various critical servers and devices for many organizations.
5. Mobile Application Security Testing

Software Engineer à NuWare Systems Pvt. Ltd
  • Inde - Bengaluru
  • décembre 2011 à mars 2012

1. Application Security Testing for internal applications.
2. Involved into development of an internal application.
3. Worked on various QA deployments and bringing the changes to production environment.

Éducation

Baccalauréat, Information Science
  • à Maharaja Institute of technology, Mysore
  • juillet 2011

Bachelors Engineering in Information Science

Specialties & Skills

Code Review
+Endorse 0
Wireless Security
+Endorse 0
Security Testing
+Endorse 0
Web Application Security
+Endorse 0
Penetration Testing
+Endorse 0
Wi-Fi Penetration Testing
+Endorse 0
Managed Security Services
+Endorse 0
Application Security Testing
+Endorse 0
Secure Configuration Audit
+Endorse 0
Mobile Application Security Testing
+Endorse 0
Secure Code Review
+Endorse 0
Penetration Testing
+Endorse 0
Vulnerability Management
+Endorse 0
Security Architect
+Endorse 0

Langues

Anglais
Moyen
Kannada
Moyen
Hindi
Moyen

Formation et Diplômes

CISSP (Formation)
Institut de formation:
ISC2
Date de la formation:
July 2020
Durée:
80 heures
Qualys Certified Vulnerability Management Specialist (Certificat)
Date de la formation:
February 2018
Xtreme Web Hacking (Formation)
Institut de formation:
NullCon
Ethical Hacking Expert (Level 1) (Formation)
Institut de formation:
TechDefence Pvt. Ltd
Ec-Council Certified Security Analyst (Certificat)
Certified Ethical Hacker (Certificat)

Loisirs

  • Playing Counter Strike game
  • Shuttle Badminton
  • Chess
  • Playing Guitar