Saurabh Kumar Maheshwari

1. Application security assessment of numerous web applications and mobile applications using
IBM AppScan Standard, Professional Burp Suite, Acunetix, ZAP and manual
2. Application Source code review/analysis using Checkmarx
3. Risk Assessment of different vendors and vendor’s applications
4. Security incident analysis and reporting for multiple Clients and Sapient internal
5. Documentation and Review of various information security policies and procedures
6. Develop documents for offering of assessment services
7. Conduct the functional and business logic testing in the security testing estimator
8. Provide support as SME to team for different security incidents
9. Handle internal cyber security instance
10. Project Management and Team Handling

 Application security assessment of numerous web applications and mobile applications using IBM AppScan Standard, Professional Burp Suite, Acunetix, ZAP and manual
 Security incident analysis and reporting for multiple Clients and Sapient internal
 Documentation and Review of various information security policies and procedures
 Develop documents for offering of assessment services
 Conduct the functional and business logic testing in the security testing estimator
 Provide support as SME to team for different security incidents
 Handle cyber security instance

 Application security assessment of numerous financial and non-financial web applications using Cenzic Hailstorm, IBM AppScan Enterprise, ZAP and manual
 Application Source code review/analysis using Checkmarx, IBM AppScan Source Edition, Veracode and manual.
 Security incident analysis and reporting
 Documentation and Review of various information security policies and procedures
 Develop documents for offering of assessment services.
 Conduct the functional and business logic testing in the TVM estimator
 Provide support as SME to team for different security incidents.

 To perform periodic vulnerability penetration testing of application to ensure that security vulnerabilities are identified.
 Prepare the threat profile for the application before start the testing.
 Risk analysis of newly identified vulnerabilities in the application and provide countermeasures to eliminate or mitigate the risk.
 Highlight the risk in form of Vulnerability Assessment Report along with recommendations to fix that.
 Coordinate with the respected team to resolve the issues that are producing potential risk to the business.
 Knowledge sharing in form of training, presentation and papers.

 To perform periodic vulnerability penetration testing of application to ensure that security vulnerabilities are identified.
 Prepare the threat profile for the application before start the testing.
 Risk analysis of newly identified vulnerabilities in the application and provide countermeasures to eliminate or mitigate the risk.
 Highlight the risk in form of Vulnerability Assessment Report along with recommendations to fix that.
 Coordinate with the respected team to resolve the issues that are producing potential risk to the business.