Back to Developers
Sameer Bhandarkar

Sameer Bhandarkar

Application Security Engineer

Mumbai, Maharashtra
85
Profile Score

About

Application Security Engineer proficient in Python, Java and javascript with hands-on experience in DevSecOps, API Security, Android Penetration Testing, and Vulnerability Management. Purple Teamer that assisted in validating detection rules by mapping attack paths from VAPT findings to real-world exploit scenarios; supported remediation prioritization based on risk. Strong background in Android application penetration testing, API security testing, and business logic flaw identification. Practical experience integrating security tools into CI/CD pipelines as part of DevSecOps initiatives. Experienced in CNAPP platforms to analyze cloud risks, attack paths, and remediation strategies. Solid understanding of secure RESTful API development and dependency risk management.

Skills & Expertise (23)

Application Security Expert
9.0/10
2
Years Exp
Secure Coding Advanced
8.5/10
2
Years Exp
OWASP Secure Coding Practices Advanced
8.3/10
2
Years Exp
DevSecOps Advanced
8.0/10
2
Years Exp
RESTful API Development Advanced
7.8/10
2
Years Exp
CyberSecurity Python Jenkins CI pipeline Trivy OWASP Dependency-Check SAST/DAST Dependency risk management Wiz Orca Security CNAPP Business Logic Testing CERT SSDF NIST SSDF Vulnerability Management Android Penetration Testing API Security JavaScript Java

Work Experience

Application Security Engineer

Innofin Solutions Private Limited

Jul 2024 - Present

Conducted application security testing including SSL pinning bypass validation, API business logic flaws, session management issues, and IDOR vulnerabilities; collaborated with developers to remediate findings raised during external VAPT. Designed and integrated automated SAST/DAST and dependency scanning (OWASP Dependency-Check, Trivy) into Jenkins CI pipeline, enabling software developers to perform security testing pre-deployment. Led secure coding initiatives by developing and reviewing RESTful APIs following OWASP and CERT Secure Coding guidelines; enforced first-principles security in API design. Owned CNAPP monitoring using Orca Security, triaging cloud misconfigurations, and exposure risks, and validating attack paths for exploitability. Awarded Employee of the Quarter (Q1 2025) for my contribution towards automating Cybersecurity tasks and automating report generation that reduced manual effort by 90% by building an UI focused reporting dashboard.

Education

Bachelor of Engineering in Information Technology - Rajiv Gandhi Institute of Technology

2020 - 2024 · Afghanistan

Certifications

PNPT (planned)

· 2026

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10
📄 Resume 10/10
💼 Job Title 10/10
✍️ Bio 10/10
🛠️ Skills 20/20
🎓 Education 10/10
⏱️ Experience 5/15
💰 Rate 0/5
🏆 Certs 5/5
Verified 5/5
Total Score 85/100

Profile Overview

Member sinceMar 2026

Skills (23)

Application Security Secure Coding OWASP Secure Coding Practices DevSecOps RESTful API Development CyberSecurity Python Jenkins CI pipeline Trivy OWASP Dependency-Check +13 more

Similar Profiles

FA

Future application_Technologies

Future application_Technologies

Bhoomi Chawla Computer Science & Applications

Bhoomi Chawla Computer Science & Applications

Suraj Kumar

Suraj Kumar

Android Application Developer

$100/hr Maghima Thiagarajan

Maghima Thiagarajan

Web Application Developer with 3 years of Experience

$100/hr
View All Developers →