Back to Developers
RAVIKANT SHRIVAS

RAVIKANT SHRIVAS

Information Security Professional

Raipur, India 10+ yrs exp 95 · Outstanding

About

Information Security Professional with over 11+ years of experience across cybersecurity operations, governance, risk, compliance (GRC), and Vulnerability Assessment & Penetration Testing (VAPT). Proven track record in securing enterprise infrastructure, implementing ISO 27001 frameworks, and leading end-to-end security programs for mission-critical systems. Skilled in establishing security governance models, managing internal/external audits, and aligning cybersecurity initiatives with organizational goals. Hands-on expertise in SAST/DAST testing, SIEM, incident management, and IT service delivery. Adept at collaborating with stakeholders, managing vendors, and driving continual improvement in security posture across diverse environments.

Skills & Expertise (83)

Penetration Testing Expert
9.2/10
13
Years Exp
Information Security Management & Governance (GRC) Expert
9.1/10
7
Years Exp
Vulnerability Assessment & Penetration Testing Expert
9.1/10
8
Years Exp
OWASP Top 10 Expert
9.1/10
8
Years Exp
Application Security (SAST & DAST, OWASP Top 10, Secure SDLC) Expert
8.9/10
8
Years Exp
Risk Assessment & ISMS Auditing Expert
8.9/10
7
Years Exp
SQLI Expert
8.9/10
8
Years Exp
XSS Advanced
8.8/10
8
Years Exp
Application Security Testing Expert
8.8/10
8
Years Exp
API Security Testing Advanced
8.8/10
8
Years Exp
Vulnerability Assessment & Penetration Testing (VAPT) Expert
8.7/10
8
Years Exp
IDOR Advanced
8.7/10
8
Years Exp
Network VAPT Advanced
8.7/10
10
Years Exp
ISO 27001 implementation Expert
8.6/10
8
Years Exp
CSRF Advanced
8.6/10
8
Years Exp
SSRF Advanced
8.5/10
8
Years Exp
Auth Bypass XDR Mass Assignment JWT Attacks REST Netcat Hydra GDPR PCI DSS NIST CSF ISO 27001 Risk Assessment Executive Summaries IPS IDS Firewall Management CIS Benchmarks Azure Security AWS IAM Attack Surface Reduction Patch Validation Vulnerability Prioritization CVE Excessive Data Exposure PoC Documentation Secure SDLC Integration Source Code Review Network Segmentation Lateral Movement Privilege Escalation Firewall service enumeration Port Scanning SAST Network Security WIRESHARK Metasploit OWASP ZAP Nmap Burp Suite Nessus DAST Endpoint Security Stakeholder, Vendor & Team Management Project Management (PMP Certified) Compliance & Audit Management (ISO 27001, ITIL, PCI DSS Awareness) Network & Endpoint Security (Firewall, IDS/IPS, AV) Incident Response & Threat Modelling Security Information & Event Management (SIEM) Security Tools: Burp Suite, Nessus, OWASP ZAP, Nmap, Metasploit, Wireshark Burp Suite Pro Zero Trust Cloud Security CEH Phishing Simulation Vulnerability Management CVSS scoring Threat Modeling SQL map EDR Project Management Vendor Management Stakeholder Management Governance Compliance Root Cause Analysis Incident Response

Work Experience

Deputy Manager – Information Security Expert

TATA Projects Ltd.

May 2018 - Jan 2025

Led enterprise-wide cybersecurity and GRC initiatives across critical infrastructure projects. Conducted VAPT for corporate, project, and web-based systems using industry standard tools. Managed SAST/DAST application security assessments, ensuring compliance with OWASP Top 10. Performed risk assessments and threat modelling for corporate and field environments. Implemented and maintained ISO 27001 ISMS, including control mapping, policy drafting, and internal/external audits. Developed and maintained information security policies, SOPs, and incident response plans. Configured and managed Trend Micro Endpoint Protection and SIEM integration for proactive threat detection. Coordinated with vendors and auditors for compliance validation and timely audit closures. Conducted user awareness and training programs to promote cybersecurity best practices.

Cybersecurity Engineer

Network Intelligence Pvt. Ltd.

Jun 2017 - May 2018

Conducted VAPT, configuration reviews, and security assessments for global clients. Delivered web and mobile application testing based on OWASP and NIST standards. Prepared detailed risk assessment reports and coordinated with client teams for remediation.

IT Security Evangelist

Appin Tech Nigeria

Jun 2012 - Dec 2012

FMS Engineer

CMS Info System

Nov 2010 - May 2012

Network Engineer

Appin Tech Bhilai

Jan 2010 - Oct 2010

Education

MBA (IT Management/HR) - Swami Vivekanand Subharti University

- 2025 · Afghanistan

B.E. in Information Technology - GGDU University, Bilaspur

- 2009 · Afghanistan

Certifications

Certified IS Security Officer

Miles2 · 2020

Certified Penetration Hacker

IIS · 2017

Certified IS Security Consultant

IIS · 2017

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10
📄 Resume 10/10
💼 Job Title 10/10
✍️ Bio 10/10
🛠️ Skills 20/20
🎓 Education 10/10
⏱️ Experience 15/15
💰 Rate 0/5
🏆 Certs 5/5
Verified 5/5
Total Score 95/100

Profile Overview

Member sinceMar 2026

Availability Details

Visa Status

Citizen

Relocation

Open to Relocation

Skills (83)

Click a skill to find developers with the same skill

Penetration Testing Information Security Management & Governance (GRC) Vulnerability Assessment & Penetration Testing OWASP Top 10 Application Security (SAST & DAST, OWASP Top 10, Secure SDLC) Risk Assessment & ISMS Auditing SQLI XSS Application Security Testing API Security Testing +73 more

Similar Profiles

DM

Dhinesh M

SE

serviceempire

serviceempire

Mohammed ibrahim

Mohammed ibrahim

Information Security & Risk Management Engineer

preethi k

preethi k

Senior roles in Information Security or Cloud Security Engineering

View All Developers →