Hey, I am Thrivikram Gujarathi

Security Lead Expert at BOSCH.IO | Freelancer - Penetration Testing & Devsecops



About Me

Hello Everyone, I am Thrivikram Gujarathi. Here's my story ;)

Thrivikram Gujarathi is currently working as Security Lead Expert at BOSCH.IO. He holds a Masters degree in Computer Science, and his significant interests revolve around Application Security, Penetration Testing & Devsecops. Cyber Security is not just work for me, it’s my passion. It’s what’s keeps me up at night and wakes me up in the morning. Spend most of my time understanding breaking and fixing products and doing other security related research on Devsecops to overcome those vulnerabilities.

Download CV

Skills

Web Application Penetration Testing

API Penetration Testing

External Network Penetration Testing

Source Code Review





Devsecops

Thick Client Penetration Testing

Security Tools - Burp Suite, Nmap, Metasploit, Sqlmap & Others

Writing - Reports

Experience

SWARCO

Information Security Expert

November 2020 - Present

Investigated the application to understand better the features and performed vulnerability assessment for the entire application which helps to design the customized checklists (guidelines). Documenting the guidelines for the development process by using several standards like OWASP (ASVS, Security coding practices) and Penetration testing techniques. These guidelines are verified using Security by Design concept. Analyzed the SDLC workflow and designed an optimal solution to integrate security in each phase of SDLC such as Threat modelling, Secret Management, Static application security testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), Infrastructure as a Code and Penetration Testing

Santander Deutschland

Internship and Thesis (Cyber Security (Cyber Threat Unit Team- Protect, Detect & Respond))

November 2019-January 2020 and April 2020-September 2020

Worked on vulnerabilities related to application and writing customized mitigation for each vulnerability.Explained the vulnerabilities and showed the impact of them to developers, Managers. Developed a default automated security checklist with Quality Assurance team for all web applications (using OWASP Testing guide andcommon penetrating ideas) which helps to decrease the number of vulnerabilities after assessment. Inaddition, Integrated and tested the compatibility of Web Application Firewall (WAF) to the applications.

LimeTray

Security Engineer (Remotely)

Jan 2018 - July 2018

My responsibilities includes analyzing the alerts as a member of the Tech team and finding the solutions for the correct ones.Doing VAPT on the Applications of the company and writing the documentation with mitigations.Explaining the vulnerabilities with the developer and discussing to mitigate the issue from the root level.

Anthelio Healthcare Solutions

System Engineer

July 2016 - Jan 2018

My responsibilities includes helping the patients and doctors regarding access control issues.Explaining the vulnerabilities with the developer and discussing to mitigate the issue from the root level.Managing and monitoring all installed systems and infrastructure.Timely reporting on the log sheet for the rapid response to any glitches.

Certifications

AWS Certified Security - Specialty

AWS

Certified Devsecops Professional

Practical Devsecops

Certified Ethical Hacker

EC-Council

Azure Fundamentals

Microsoft

CCNA

Millennium Software Solutions

Wall of Fame

CVE-2021-3333

Bosch

Europa.eu (European Commission website)

Dutch Government (ncsc.nl)

Google

Microsoft

Amazon

Lenovo

Sony

Royal Bank of Scotland

Udacity

University of Twente

Palo alto Networks

Private Programs

Education

Masters - Computer Science for Digital Media

Bauhaus University Weimar

2018-2020

B.Tech - Electronics and Communication Engineering

GITAM University

2012-2016