About
Cybersecurity professional with 4 years of experience in Vulnerability Management and Risk Management supporting enterprise banking infrastructure for a leading Canadian bank. Experienced in end-to-end vulnerability lifecycle management, risk assessment, configuration compliance monitoring, remediation coordination, and patch validation across enterprise environments. Skilled in CVSS-based risk prioritization, security risk mitigation, configuration violation management, and cross-functional collaboration to ensure compliance with organizational security policies and audit requirements. Proficient in working with infrastructure teams to remediate OS, Database, and Middleware configuration violations and reduce enterprise security risk exposure.
Skills & Expertise (22)
Work Experience
Senior Software Engineer
HCL Technologies
May 2022 - Present
Managed vulnerability lifecycle for Development, QA, Performance, and Production server environments. Analyzed vulnerability scan reports using Qualys, Tenable, and CrowdStrike to identify Critical, High, and Medium security vulnerabilities. Prioritized remediation based on CVSS score, asset criticality, exploitability, and business impact. Coordinated with infrastructure and application teams to ensure SLA-driven vulnerability remediation. Validated patch implementation in lower environments before production deployment. Raised and tracked Change Requests (CR) for deploying validated patches and fixes. Performed risk assessment and risk prioritization for identified vulnerabilities. Assisted in identifying security risks impacting enterprise systems and applications. Collaborated with stakeholders to implement risk mitigation strategies and reduce risk exposure. Maintained documentation for risk acceptance, risk mitigation, and remediation tracking. Provided security risk insights to support audit and compliance requirements. Monitored and analyzed configuration violations across OS, Database, and Middleware platforms. Identified non-compliant configurations impacting security posture. Worked closely with system owners and infrastructure teams to remediate configuration violations. Followed up with technical teams to ensure timely resolution of configuration deviations. Ensured compliance with enterprise security standards and configuration policies. Maintained remediation tracking dashboards and reports for security leadership and auditors. Supported security compliance and audit activities by providing vulnerability and remediation evidence. Contributed to reducing recurring vulnerabilities through proactive monitoring and stakeholder collaboration.
Education
B.E – Computer Science Engineering - Sasurie College of Engineering
- · Afghanistan
Certifications
Power BI Training
HCL · 2024
Java Certification
MassMind · 2023
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Open to Relocation
Skills (22)
Similar Profiles
Siddh Patel
Vulnerability Assessment and Penetration Testing (VAPT) professional
Ali Anas
Vulnerability Assessor / Penetration Tester
Sonam Diwate
Vulnerability Assessment Analyst
OM PATIL
Vulnerability Assessment & Penetration Testing (VAPT) Analyst