Kaustubh Lawale

Experience

• 

  CheckApp

  Jun 2021 - Nov 2021

  Intern

  Engineered CI/CD pipelines to automate routine tasks using PowerShell and Python, enhancing efficiency Hardened AWS cloud environments by securing IAM policies, enabling logging and continuous monitoring Implemented multi-factor authentication (MFA), role-based access control to improve security across cloud platforms

• 

  Shunya Dot Ek

  Jan 2022 - Aug 2022

  Application Security Engineer

  Administered Snyk for vulnerability detection, collaborating with developers to remediate code vulnerabilitiesConfigured Qualys to identify, analyze, and mitigate security vulnerabilities across systems and networksImplemented AWS WAF to safeguard applications against web-based attacks, improving security posture Managed IDS/IPS systems like Snort, developing custom signatures and analyzing intrusion patternsAuthored security advisories and training guides to improve developer awareness of secure coding practices Show less

• 

  NetBrain Technologies Inc.

  Aug 2023 - Jan 2024

  Application Security Engineer

  Utilized Nessus and Qualys to identify, analyze, and prioritize vulnerabilities for improved security postureAuthored security advisories, vulnerability reports for customers, outlining the impact, likelihood, and mitigation stepsAdministered and maintained several security operations and automation tools like Jenkins, Nessus, Qualys, MendDeveloped security automation workflows using Python, Jenkins, and Ansible to streamline vulnerability patchingDeveloped a custom Java security tool for API testing and advanced XSS assessments in Burp SuitePerformed API security assessments to identify vulnerabilities like XSS through Burp Suite penetration testsConducted code reviews using SonarQube (SAST), collaborated with developers to address vulnerabilitiesUtilized Mend (SCA) to identify vulnerabilities in third-party libraries and ensure license complianceManaged a security lab for application testing across Windows and RHEL, analyzing OS-specific risks, vulnerabilities Show less

• 

  Tesla

  May 2024 - Aug 2024

  Security Engineer

  Administered Nessus and several security automation pipelines supporting vulnerability managementDeveloped a Jenkins pipeline to automatically identify and scan new assets, tag and categorize them in Tenable, and schedule regular vulnerability scans to streamline vulnerability detectionAutomated malware detection and response using VMray and VirusTotal to generate analysis reportMonitored and analyzed security alerts from VMray, Splunk, and Crowdstrike to detect potential anomaliesConducted threat modeling using the STRIDE framework at Tesla, identifying and mitigating critical infrastructure risksDeveloped a shift-left solution to prioritize vulnerabilities and address critical issues before deployment Show less