Open to opportunities

Sharma Achutani

@sharmaachutani

Message

Experienced Security Operations professional with a focus on application security.

United States

Message

What I'm looking for

I seek a challenging role in a forward-thinking company that values security innovation and offers opportunities for professional growth.

With over 10 years of hands-on experience in Security Operations, I specialize in Application Security, detection engineering, threat hunting, incident response, and digital forensics. My expertise lies in leveraging data science and analytics for insider threat detection and mitigation, ensuring robust security measures are in place to protect sensitive information.

Throughout my career, I have successfully led security initiatives that significantly reduced vulnerabilities and enhanced compliance with industry standards such as NIST, FedRAMP, and ISO 27001. I am proficient in various security tools and technologies, including AWS services, Python, and SQL, and have a proven track record of automating security detection and response processes to improve efficiency and accuracy.

I am a self-driven problem-solver who thrives under pressure, demonstrating strong organizational skills and the ability to prioritize effectively. My collaborative approach allows me to work seamlessly with cross-functional teams to integrate security into the development lifecycle, fostering a culture of security awareness and proactive risk management.

Experience

Work history, roles, and key accomplishments

Current

Sr Application Security Engineer

Current

WellsFargo

Jan 2021 - Present (4 years 5 months)

Led comprehensive software and cloud infrastructure security assessments, including threat modeling, risk-based evaluations, and vulnerability management for applications. Directed application security initiatives, successfully reducing vulnerabilities at scale and contributing to the development of SAST rules and defensive libraries.

Application Security Cloud Security Threat Modeling Vulnerability Management AWS Azure SAST WAF Snyk SonarQube Zscaler PCI DSS HIPAA

Sr Security Engineer

Delta Airlines

Jun 2018 - Dec 2020 (2 years 6 months)

Established an application security program from inception, driving security practices across the organization. Developed and refined security metrics and processes to ensure continuous improvement in security posture.

Application Security Cloud Security SAST DAST IAST Splunk Python Shell Scripting NIST ISO 27001

Application Security Engineer

American National Insurance

Jun 2017 - May 2018 (11 months)

Conducted dynamic and static application security testing (DAST & SAST) using tools like Checkmarx. Demonstrated expertise in incident response, resolving security incidents, and conducting root cause analysis.

DAST SAST Checkmarx Incident Response HIPAA PCI DSS Python Java Splunk Jenkins NIST ISO 27001

Software Engineer

Lexisnexis Legal

Jun 2015 - May 2017 (1 year 11 months)

Involved in all phases of the Software development life cycle using Agile Methodology. Developed UI using Swing, JSP, JSF, HTML, CSS, JavaScript, and JQuery.