Arockiaraj Martin

Experience

• 

  Cybage

  Sept 2012 - Jan 2015

  QA Engineer

  • Conducted functional and non-functional tests to improve the security and performance of web applications client needs, enhancing satisfaction and trust.• Proficient in understanding and analyzing project requirements, leading project delivery, and managing release processes. • Responsible for ensuring successful project execution through all stages, from requirement gathering to timely release and post-deployment support.• Reported critical security metrics to stakeholders, aiding in informed decision-making Show less

• 

  Talentica Software

  Feb 2015 - Dec 2016

  Senior QA Engineer

  • Acted as an Individual contributor with expertise in managing application and infrastructure security, responsible for identifying, mitigating, and preventing security vulnerabilities across software applications and underlying infrastructure.• Led security-focused initiatives, ensuring robust application architecture.• Collaborated with development teams to integrate security testing into agile workflows.• Conducted functional and non-functional tests to improve the security and performance of web applications client needs, enhancing satisfaction and trust.• Proficient in understanding and analyzing project requirements, leading project delivery, and managing release processes. • Responsible for ensuring successful project execution through all stages, from requirement gathering to timely release and post-deployment support Show less

• 

  Polaris Consulting & Services Ltd

  Dec 2016 - May 2017

  Consultant

  • Proficient in conducting virtualization testing to identify vulnerabilities in virtualized environments, ensuring secure configuration and isolation of virtual machines and hypervisors.• Developed security protocols aligned with organizational objectives, ensuring compliance with industry standards.• Coordinated with cross-functional teams to establish secure application frameworks, enhancing system reliability.• Experienced in developing comprehensive security test plans and conducting in-depth API security assessments Show less

• 

  ProMobi Technologies Pvt. Ltd.

  Dec 2017 - Jul 2019

  Team Lead

  • Designed security test plans and automation test frameworks, improving overall application security posture.• Experience in conducting comprehensive Web Application Penetration Testing (WAPT) to identify and remediate vulnerabilities across various applications.• Skilled in performing API security assessments to ensure secure communication and safeguard against vulnerabilities in APIs.• Oversaw resource allocation, client relationships, and deliverables for security programs, driving operational efficiency.• Optimized application security through detailed analysis and remediation of vulnerabilities.• Delivered strategic guidance on cybersecurity best practices, promoting a robust security-first culture and enhancing organizational security awareness through targeted initiatives and training Show less

• 

  EnKash - The Ultimate Platform for Businesses

  Jul 2019 - now

  • Implemented RBI regulatory PAPG (Payment Aggregator and Payment Gateway), and RBI PPI (Prepaid Payment Instrument) License compliance, successfully navigating extensive regulatory requirements to secure operational approval.• Led organization-wide initiatives for achieving PCI DSS, SOC, and ITGC audit compliance, ensuring alignment with industry benchmarks.• Expertise in implementing EDR, DLP, SIEM, PAM, MDM, and SOC monitoring systems, enhancing threat detection and incident response.• Experienced in integrating MITRE ATT&CK framework into threat detection, SIEM configurations, and EDR systems to strengthen security operations.• Developed risk management frameworks to protect financial data, prevent fraud, and address emerging threats, while conducting regular risk assessments to identify vulnerabilities and strengthen security.• Conducted thorough third-party risk assessments to evaluate security posture and potential vulnerabilities in vendor relationships, ensuring data protection and minimizing third-party risks.• Managed SOC operations, overseeing 24/7 threat monitoring, incident response, and automation, while ensuring alignment with security and compliance objectives.• Designed and led dynamic, organization-wide information security awareness programs to empower employees with actionable cybersecurity insights and foster a culture of security.• Implemented cloud security measures including encryption, access controls, and identity management to protect data and applications, ensuring compliance with regulatory standards and mitigating risks across cloud environments. Show less • Implemented RBI regulatory PAPG (Payment Aggregator and Payment Gateway) License compliance, successfully navigating extensive regulatory requirements to secure operational approval.• Led organization-wide initiatives for achieving PCI DSS, SOC, and ITGC audit compliance, ensuring alignment with industry benchmarks.• Developed and executed ISMS and cybersecurity policies, resulting in a 60% reduction in security breaches.• Managed the implementation of EDR, DLP, SIEM, IDS, and SOC monitoring systems, enhancing threat detection and incident response.• Physical Security Management: Directed and optimized physical security operations, including access control, surveillance systems, and incident response protocols, to ensure the safety of personnel, facilities, and critical assets.• Implemented Web Application Firewall, DDoS protection, and bot mitigation to enhance application and network security. Show less

  • Director - Security & Compliance

    Jun 2024 - now

  • Associate Director - Security & Compliance

    Jun 2022 - May 2024

  • QA Technical Manager

    Jul 2019 - May 2022