About Me
Hello Everyone, I am Thrivikram Gujarathi. Here's my story ;)
Thrivikram Gujarathi is currently working as Security Lead Expert at BOSCH.IO. He holds a Masters degree in Computer Science, and his significant interests revolve around Application Security, Penetration Testing & Devsecops. Cyber Security is not just work for me, it’s my passion. It’s what’s keeps me up at night and wakes me up in the morning. Spend most of my time understanding breaking and fixing products and doing other security related research on Devsecops to overcome those vulnerabilities.
Download CVSkills
Web Application Penetration Testing
API Penetration Testing
External Network Penetration Testing
Source Code Review
Devsecops
Thick Client Penetration Testing
Security Tools - Burp Suite, Nmap, Metasploit, Sqlmap & Others
Writing - Reports
Experience
SWARCO
Information Security Expert
November 2020 - Present
Investigated the application to understand better the features and performed vulnerability assessment for the entire application which helps to design the customized checklists (guidelines). Documenting the guidelines for the development process by using several standards like OWASP (ASVS, Security coding practices) and Penetration testing techniques. These guidelines are verified using Security by Design concept. Analyzed the SDLC workflow and designed an optimal solution to integrate security in each phase of SDLC such as Threat modelling, Secret Management, Static application security testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), Infrastructure as a Code and Penetration Testing
Santander Deutschland
Internship and Thesis (Cyber Security (Cyber Threat Unit Team- Protect, Detect & Respond))
November 2019-January 2020 and April 2020-September 2020
Worked on vulnerabilities related to application and writing customized mitigation for each vulnerability.Explained the vulnerabilities and showed the impact of them to developers, Managers. Developed a default automated security checklist with Quality Assurance team for all web applications (using OWASP Testing guide andcommon penetrating ideas) which helps to decrease the number of vulnerabilities after assessment. Inaddition, Integrated and tested the compatibility of Web Application Firewall (WAF) to the applications.
LimeTray
Security Engineer (Remotely)
Jan 2018 - July 2018
My responsibilities includes analyzing the alerts as a member of the Tech team and finding the solutions for the correct ones.Doing VAPT on the Applications of the company and writing the documentation with mitigations.Explaining the vulnerabilities with the developer and discussing to mitigate the issue from the root level.
Anthelio Healthcare Solutions
System Engineer
July 2016 - Jan 2018
My responsibilities includes helping the patients and doctors regarding access control issues.Explaining the vulnerabilities with the developer and discussing to mitigate the issue from the root level.Managing and monitoring all installed systems and infrastructure.Timely reporting on the log sheet for the rapid response to any glitches.
Certifications
AWS Certified Security - Specialty
AWS
Certified Devsecops Professional
Practical Devsecops
Certified Ethical Hacker
EC-Council
Azure Fundamentals
Microsoft
CCNA
Millennium Software Solutions
Wall of Fame
CVE-2021-3333
Bosch
Europa.eu (European Commission website)
Dutch Government (ncsc.nl)
Microsoft
Amazon
Lenovo
Sony
Royal Bank of Scotland
Udacity
University of Twente
Palo alto Networks
Private Programs
Education
Masters - Computer Science for Digital Media
Bauhaus University Weimar
2018-2020
B.Tech - Electronics and Communication Engineering
GITAM University
2012-2016