HimalayasHimalayas logo
Juhitha KeertiJK
Looking for a job

Juhitha Keerti

@juhithakeerti

Application Security Engineer with 6+ years of experience

India
Message

What I'm looking for

I’m looking to secure Web/API and LLM-enabled applications with risk-based testing, CI/CD security gates, and evidence-driven remediation. I want to collaborate with engineering teams on secure SDLC and reduce exploitable risk through validated findings.

Application Security Engineer with 6+ years of experience in web and REST API security testing, VAPT,

SAST/DAST, risk assessment, and DevSecOps security integration.

• Hands-on expertise in OWASP Top 10 testing, secure SDLC practices, and software supply-chain risk

management through SCA and dependency reviews.

• Experienced in validating scanner findings, reducing false positives, prioritizing vulnerabilities by

business impact, and driving remediation to closure.

• Focused on AI/GenAI application security for LLM-enabled features, including threat modeling and

controls for prompt injection, data leakage, insecure output handling, plug-in/agent risks, RAG access

controls, and abuse-case testing.

• Aligns security reviews with OWASP guidance for LLM applications and NIST AI risk management

practices when applicable.

Experience

Work history, roles, and key accomplishments

IN
Current

Application Security Engineer

Infosys

Jul 2022 - Present (3 years 9 months)

Performed application security assessments (VAPT) for web applications and REST APIs, validating vulnerabilities, analyzing impact, and prioritizing by risk. Managed SAST/DAST activities, reduced false positives with evidence-driven validation, embedded secure SDLC checkpoints, maintained Jenkins-based security gates in CI/CD, and delivered executive-ready penetration test reports; also applied AI

REST API SecuritySASTSCA Dependency Risk Management (WhiteSourceDevSecOps CI CD Security Gates (Jenkins)Prompt Injection & Data Leakage Testing
CA

Application Security Engineer

Capgemini

Feb 2019 - Dec 2021 (2 years 10 months)

Conducted risk assessments, vulnerability assessments, and penetration testing for web applications and REST APIs across multiple client environments. Executed SAST (Fortify) and DAST with manual validation to remove false positives, performed OWASP Top 10 testing with Burp Suite, performed SCA for third-party/open-source risks, carried out infrastructure vulnerability assessments with Tenable/Nes

OWASP Top 10SASTSCA Dependency Risk Reviews (WhiteSource)False Positive Tuning & Validation

Education

Degrees, certifications, and relevant coursework

SE

Sir C. R. Reddy College of Engineering

Bachelor of Technology, Computer Science Engineering

Earned a B.Tech in Computer Science Engineering from Sir C. R. Reddy College of Engineering in Eluru.

Tech stack

Software and tools used professionally

Jenkins logo

Jenkins

WhiteSource logo

WhiteSource

Gmail logo

Gmail

HTML5 logo

HTML5

CSS 3 logo

CSS 3

F# logo

F#

Wireshark logo

Wireshark

Linux logo

Linux

Windows logo

Windows

Kali Linux logo

Kali Linux

ZAP logo

ZAP

OpenSSL logo

OpenSSL

TypeScript logo

TypeScript

Zap logo

Zap

SQL logo

SQL

Burp Suite logo

Burp Suite

sqlmap logo

sqlmap

Nmap logo

Nmap

Metasploit logo

Metasploit

Evidence logo

Evidence

OWASP ZAP logo

OWASP ZAP

Check logo

Check

Availability

Looking for a job

Location

India

Authorized to work in

India

Salary expectations

2000k-3000k USD

Job categories

Application Security EngineerDevSecOps EngineerAPPLICATION SECURITY | TECHLead Application Security EngineerSoftware Security EngineerSecurity Software EngineerSenior Security Engineer

Skills

Threat ModelingPrompt TestingData Leak ManagementSecure Output HandlingAgent Plug In Risk ReviewRAG Data Access ControlsAI Security Review ChecklistsOWASP Top 10Security TestingREST API TestingAuthenticationSASTDASTSCA Dependency Risk ReviewsFalse Positive Tuning And ValidationCI CD Security AutomationSecurity GateNetwork Reconnaissance And ValidationRisk AssessmentBurp suiteFortifyOWASP ZAPWhitesourceOpenSSLTestSSLKali LinuxNmapMetasploitSqlmapNetdiscoverWiresharkMobSF FrameworkJenkinsCheckEvidenceGmailLinuxSQLWindowsZAP

Interested in hiring Juhitha?

You can contact Juhitha and 90k+ other talented remote workers on Himalayas.

Message Juhitha

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan