Open to opportunities

Tejas Vyas

@tejasvyas

Message

Dedicated Sr Application Security Engineer with expertise in cybersecurity.

India

Message

What I'm looking for

I am seeking a role that fosters growth in cybersecurity, emphasizes collaboration, and values innovative security solutions.

As a Senior Application Security Engineer, I have a solid foundation in application security and a commitment to excellence in the technology industry. My journey has been marked by a continuous strive to excel as a security engineer, showcasing top-tier skills and expertise in the field. At AppDirect, I developed a vulnerability prioritization framework that efficiently ranks vulnerabilities based on severity, exploitability, and potential impact, ensuring robust security measures are in place.

My experience includes implementing security headers for compliance with PCI DSS 4.0 and conducting Red Teaming assessments on production environments. I have also played a pivotal role in developing training sessions for engineering teams on essential security topics, enhancing our overall security posture. My collaborative efforts during PCI, SOC, and ISO audits have been instrumental in providing necessary documentation and evidence, further solidifying my role as a key contributor to the security landscape.

Experience

Work history, roles, and key accomplishments

Current

Senior Application Security Engineer

Current

AppDirect

Jan 2023 - Present (2 years 5 months)

As a Senior Application Security Engineer, developed a vulnerability prioritization framework and implemented security headers to ensure compliance with PCI DSS 4.0. Conducted Red Teaming assessments and developed training sessions on security topics for the engineering team.

Application Security Vulnerability Management Ethical Hacking Security Frameworks Risk Assessment Team Collaboration Security Tools Problem Solving Communication

Application Security Engineer

AppDirect

Dec 2017 - Jan 2023 (5 years 1 month)

Conducted security assessments on microservices and managed WAF requests. Performed internal penetration tests and enhanced the bug bounty program, ensuring vulnerabilities were reported and tracked effectively.

Security Testing Penetration Testing Vulnerability Management Bug Bounty SAST DAST Communication Risk Assessment

Application Support Engineer

Tech Mahindra

Dec 2018 - Aug 2019 (8 months)

Managed P1 to P4 cases ensuring timely resolution and provided support for over 20 applications. Contributed to the OSS and Tools team, focusing on troubleshooting and debugging.

Troubleshooting Debugging Security Research DevSecOps Communication Problem Solving Team Collaboration Incident Management

Application Security Analyst

Tech Mahindra

Dec 2016 - Dec 2018 (2 years)

Worked as a Security Tester assessing web applications against OWASP Top 10 vulnerabilities. Developed testing plans and executed end-to-end test phases, identifying defects during the software release phase.

Vulnerability Management Test Plans Test Execution Problem Solving Communication Risk Assessment

Education

Degrees, certifications, and relevant coursework

Galgotias College Of Engineering and Technology

Bachelor Of Engineering, Information Technology

2012 - 2016

Studied Information Technology with a focus on application security, software development, and engineering principles. Gained foundational knowledge in various aspects of technology and security practices.