Hi, I'm Pranit

>

I help companies build secure infrastructure

Contact me
Scroll down

About Me

Experienced Security Engineer skilled in threat modeling, security design reviews, penetration testing, red teaming, blockchain security and bug bounty. Has excellent communication skills and a proven track record in vulnerability discovery and rapid Proof of Concept (PoC) development.

Active participation in the security community and can effectively assess and communicate risks to internal and external organizations.

300+ Applications
Secured
20+ Hall of
Fame
06+ Years of
experience
Download CV

Technical Skillset

Technical Skills

Application Security

95%

Network Security

95%

Red Teaming

95%

Cloud Security

95%

Secure Code Review

90%

Threat Modeling

90%

Secure SDLC

90%

Blockchain Security

75%

Bug Bounty

95%

Management Skills

Leadership

95%

Project Management

95%

Communication

95%

Risk Management

85%

Strategic Planning

85%

Qualification

Professional Experience

Amazon

Offensive Security Engineer II
2023- Present
- Responsibe for conducting Red & Purple Team engagements, simulating advanced adversary tactics.
- Conducted Pentesting with source code analysis and secure SDLC integration.
- Performed cloud security assessments, identifying and mitigating risks in cloud infrastructures.
- Executed hardware pentesting for Robotics and IoT systems, uncovering vulnerabilities in embedded devices.

Apple

Security Engineer
2023 - Present
- Performed threat modeling techniques to enhance the security posture of software applications, assisting developers in effectively mitigating potential risks.
- Conducted comprehensive source code analysis, penetration testing, and contributed to the implementation of secure software development practices, ensuring adherence to industry standards.
- Strengthened cloud security through comprehensive assessments and implemented strategies to safeguard critical infrastructure.

Security Research Lead

CRAC Learning
2022 - Present
- Led security research initiatives as a volunteer at CRAC Learning.
- Delivered mentorship and training to a team of volunteers on the intricacies of Security Research.

Security Consultant

Varutra Consulting
2017 - 2022
- Performed SAST/DAST Security Assessment using OWASP/NIST Security Standards for over 200+ clients
- Performed Onsite Engagements such as Wi-Fi Hacking, Red Teaming, Cloud Audit (AWS, GCP, Azure, Oracle Cloud (OCI))
- Conducted and led security assessments for multiple clients.

Independent Security Researcher

HackerOne | Bugcrowd | Synack
2016 - Present
- Conducted independent vulnerability assessments on various targets during personal time.
- Proficient in Attack Surface Management, Reconnaissance, and Application Security.
- Identified and reported critical vulnerabilities to various bug bounty programs.

Education & Certification

CREST Registered Penetration Tester (CRT)

CREST
Credential ID: 8933988096

University of Maryland, College Park

Masters of Engineering in CyberSecurity
- Successfully completed a Master's degree program in Cybersecurity, augmenting my expertise and expanding my knowledge in the rapidly evolving field.
- Acquired in-depth knowledge in areas such as network security, binary exploitation, reverse engineering, digital forensics, threat modeling, encryption, vulnerability assessment, and incident response.

Offensive Security Certified Professional (OSCP)

Offensive Security
Credentials

HacktheBox Dante

HacktheBox Prolabs

AWS Security Fundamental

Amazon Web Services

Pune Institute of Computer
Technology

Bachelors in Computer Science
- Obtained my Bachelor's Degree from Pune University and have experience in developing hacking tools & web development.

Certified Ethical Hacker CEH v9

EC Council

Contact Me

Get in touch

Linkedin

@pranit-garud

Location

Maryland, United States