Siva G
Security AnalystAI is analyzing your overall score…
Identifying your key strengths…
Evaluating your skill match against the job requirements…
Assessing your cultural and operational fit
AI is analyzing your overall score…
Identifying your key strengths…
Evaluating your skill match against the job requirements…
Assessing your cultural and operational fit
Security Analyst with 6+ years in Web Application Security & VAPT
Experienced Application Security Analyst with 5.5+ years of expertise in Web Application Security, Vulnerability Assessment & Penetration Testing (VAPT), Vulnerability Management, Source Code Review, and Secure Development Practices. Skilled in identifying, analyzing, and remediating application vulnerabilities using both manual and automated security testing methodologies. Strong knowledge of OWASP Top 10, SAST, DAST, secure coding standards, and vulnerability lifecycle management. Experienced in collaborating with development, operations, and client teams to strengthen enterprise security posture and ensure compliance with security best practices.
Krishna University
Master of Computer Applications (MCA)
N/A – June 30, 2017
Infosys Limited
Application Security Analyst
January 1, 2020 – Present
India
ABB Information System
June 4, 2026 – Present
Conducted security testing based on OWASP Top 10 vulnerabilities. Performed manual penetration testing and web application security assessments. Executed automated application security scans using industry-standard tools. Conducted source code review to identify security flaws and vulnerabilities. Prepared detailed vulnerability assessment reports with remediation guidance. Participated in client meetings and presented security findings to stakeholders. Assisted in short-term client engagements for VAPT activities. Performed security test planning and execution for web-based applications. Stayed updated with security advisories and OWASP security guidelines.
Truist Bank
June 4, 2026 – Present
Conducted web application security testing aligned with OWASP Top 10 standards. Performed manual penetration testing and automated vulnerability scanning. Coordinated with L1 and L2 review teams before sharing reports with clients. Performed false positive analysis and vulnerability validation. Prepared and delivered final vulnerability assessment reports. Recommended remediation measures and security countermeasures. Worked with automation teams for operational monitoring and environment support.
CAP Project (College of American Pathologists)
June 4, 2026 – Present
Conducted application security testing aligned with OWASP Top 10 standards. Performed automated vulnerability scanning using Tenable WAS and Selenium Authentication Recorder. Managed remediation tracking using JFrog Artifactory. Identified and tracked zero-day vulnerabilities through security advisories. Coordinated remediation and vulnerability management activities across teams. Conducted CIS benchmark scanning using updated audit files. Configured audit files for exception handling and environment-specific requirements.
Cultural Fit Analysis
The candidate's experience across different projects (ABB Information System, Truist Bank, CAP Project) and a single long-term role at Infosys Limited demonstrates adaptability and consistent performance. The focus on industry best practices (OWASP Top 10, CIS benchmarks) and collaboration with various teams suggests a good fit for a structured, security-conscious environment. The breadth of tools and methodologies used indicates a willingness to learn and apply diverse approaches.
Soft Skills & Operational Fit
The candidate's experience highlights collaboration with development, operations, and client teams, indicating good communication and teamwork skills. Their role involves monitoring emerging threats and staying updated with security advisories, suggesting a proactive and continuous learning mindset. The ability to present findings to stakeholders also points to effective communication and presentation skills.