RAVIKISHORE SARA

[email protected] 9492914717 Hyderabad, India

PROFESSIONAL SUMMARY

Cybersecurity Engineer with 3.5 years of experience in Vulnerability Management, Infrastructure Security, Application Security, and DevSecOps for large-scale enterprise environments (PNC Bank). Skilled in identifying, prioritizing, and driving remediation for vulnerabilities across servers, middleware, APIs, CI/CD pipelines, and container platforms such as Docker and OpenShift. Hands-on with Archer, Contrast Security (IAST), Jenkins, Bitbucket, OCP, and used security tools like Nessus, Nmap, and Burp Suite for basic scanning, validation, and security checks. Experienced in CVSS scoring, configuration reviews, hardening support, SLA tracking, and working with cross-functional teams to ensure secure deployments. Strong understanding of risk analysis, misconfiguration detection, vulnerability lifecycle, and compliance-driven remediation.

WORK EXPERIENCE

Vulnerability Management & Application Security Engineer (Sub-Lead)
05/2022 - Present
Tata Consultancy Services (TCS) , Hyderabad
Managed end-to-end remediation of infra and application vulnerabilities across 300+ business-critical applications.
Performed vulnerability validation using Nessus and assessed misconfigurations impacting OS, middleware, containers, and API components.
Conducted configuration reviews and supported hardening efforts aligned with CIS and enterprise benchmarks.
Ensured patching compliance by tracking vulnerability SLAs, overdue items, and building weekly risk dashboards for leadership.
Identified issues related to Broken Access Control, Data Handling Errors, Version Upgrades, Server Misconfigurations, and API exposures.
Utilized Contrast Security (IAST) to validate library vulnerabilities, insecure code flows, and third-party package risks.
Worked with DevOps teams to fix crashloops, container build failures, YAML configuration errors, and security policy violations in OCP and Jenkins.
Validated secure deployment processes through Jenkins pipelines and Bitbucket repository checks.
Conducted CVSS scoring, risk categorization, and prioritized critical fixes based on exploitability and business impact.
Built and maintained security validation documents, hardening checklists, and remediation workflows.
Coordinated across development, infrastructure, and release teams ensuring production fixes with zero security regressions.
Guided a team of six engineers to improve triage accuracy and remediation timelines.
Performed basic internal security testing using Nmap, Burp Suite, and manual checks to validate vulnerabilities and exposed endpoints.
Verified misconfigurations such as weak headers, open ports, outdated services, and insecure API behaviors.
Conducted surface-level checks using Nessus scan results for reconfirmation and triage.

EDUCATION

Bachelor of Technology (B.Tech), Mechanical Engineering
01/2021
MLR Institute of Technology and Management

SKILLS

Similar Resumes

MUHAMMAD ASIF High School Teacher House #38 Cnanal Breez Ali Town Raiwind Road Lahore, Punjab, Pakistan ASHOK Yennam, Venkata Krishna Reddy Project Manager Aachen,DE JASMEET ARORA SEO Intern Noida ANYI LISETH HOYOS TAPIERO Bogotá D.C. · Colombia