Surendhar Selvaraju
Richmond Hill,ON
Summary
Around a decade of extensive experience in all phases of Software Application Development Life Cycle (SDLC) including Architecture, Design, Development, and Deployment of enterprise level Applications.
In-depth knowledge and experience in applying Security as a continuous concern in all the phases of a software lifecycle.
Overview
12
12
years of professional experience
Work History
Lead Application Security Specialist
Envest | Yodlee
Bangalore, Toronto
03.2016 - 12.2022
- Certify the product from Product Security
- Set the security requirements of the product
- Review the product design
- Handle Client calls representing security
- Third party libraries update
- Represent Security in Architecture Review Board
- Recommend security key management
- Support third party vulnerability assessment
- Create FAQs for the product security
- Perform SAST and DAST
- Verify all the APIs for security vulnerabilities
- Manage vulnerabilities from the third party vulnerability assessment
- Clarify client questions on product security
- Triage SAST and DAST vulnerabilities
- Enable WAF from monitoring mode to block mode
Associate
Cognizant Technology Solutions
Bangalore, India
08.2014 - 03.2016
- Provide Application security services to Clients
- Perform SAST, DAST and API security testing
- Provide mitigation strategies for application security vulnerabilities
- Work with Application security tools such as IBM appscan, Fortify, HP Web Inspect, Checkmarx, etc,
Security Product Analyst
Temenos India Pvt Ltd
Bangalore, India
10.2010 - 08.2014
- Point of Contact for product security
- Perform Vulnerability assessment and submit a report to the senior management
- Handle client calls, provide clarifications on security issues
- Explain vulnerabilities to the senior management
- Investigate on new threats and risks
- Create flowcharts, diagrams and other product security documents
- Work with different teams, understand the product
Education
Bachelor of Engineering (B.E) - Computer Science And Engineering
Institute of Road And Transport Technology
ErodeSkills
- Secure SDLC
- Secure Design Review
- Dynamic Application Security Testing
- Static Application Security Testing
- API security Testing
- Sensitive data handling
Languages
- Thamizh : Native language
- English : C2 Proficient
Timeline
Lead Application Security Specialist
Envest | Yodlee
03.2016 - 12.2022
Associate
Cognizant Technology Solutions
08.2014 - 03.2016
Security Product Analyst
Temenos India Pvt Ltd
10.2010 - 08.2014
Bachelor of Engineering (B.E) - Computer Science And Engineering
Institute of Road And Transport Technology
Similar Profiles
Raylyn LegaRaylyn Lega
Licensed Financial Advisor at Envest Financial ServicesLicensed Financial Advisor at Envest Financial Services
Sarah LesarSarah Lesar
Director of Operations at Envest MicrofinanceDirector of Operations at Envest Microfinance
Chantal WagnerChantal Wagner
Co-Founder at Envest Financial ServicesCo-Founder at Envest Financial Services
Elham Nazarzadeh BonchehElham Nazarzadeh Boncheh
Associate at TJX CompaniesAssociate at TJX Companies
Behnoush MashreghiBehnoush Mashreghi
Shipping Coordinator at ANS Airline Network Services LLCShipping Coordinator at ANS Airline Network Services LLC