Jump to: navigation, search


7 years of experience in Web Application Penetration Testing and Vulnerability Assessment, System & Network Layers Security Assessment, PCI Compliance Review and Assessment, CITRIX API and Client-Server Architecture Based Application Assessment, SAS 70 Audit, Android/iOS Mobile Application Assessments, Conduct App-Sec Training & OWASP Awareness Classes.

Added Technical Skills

•Develop test strategy and test plan documents with details of the test environments, test exclusions, interfaces, and test conditions for certification and application hosting.

•Work closely with developers, client head and other team members if present throughout the audit executing test iterations, tracking / reporting results, troubleshooting and coordinating defect resolution.

•Research and development in all aspects of information security application engineering with responsibility to assess and mitigate system security threat/risk throughout the program life cycle; define and validate application security requirements definition and analysis; implement secure systems.

•Provide leadership and security subject matter expertise in support of all business applications, databases and Web-based software including custom application and third party vendor software databases.

Subhasis Choudhury