Summary
Overview
Work History
Education
Skills
Timeline
Generic

Anoosha Podeti

Summary

Application Security Engineer with 7 years of experience specializing in secure software development, static and dynamic application security testing (SAST & DAST), and DevSecOps. Strong expertise in secure coding best practices, CI/CD pipeline security, and vulnerability management. Adept at working with developers to integrate security within the Software Development Life Cycle (SDLC).

Overview

8
8
years of professional experience

Work History

Application Security Engineer

Xyz
01.2022 - 09.2024
  • Conduct thorough security assessments of applications, identifying vulnerabilities and providing remediation strategies.
  • Collaborate with development teams to integrate security best practices into the software development lifecycle.
  • Develop and implement automated security testing within CI/CD pipelines to enhance application security.
  • Ensure compliance with industry security standards such as OWASP Top 10, SANS-25, and CWE.
  • Managed timely resolution of identified vulnerabilities through effective collaboration with both internal teams and external vendors.

Application Security Analyst

Xyz
01.2020 - 01.2022
  • Led the implementation of application security measures, including static and dynamic code analysis.
  • Provided secure coding training to development teams, improving security awareness across the organization.
  • Investigated security incidents, conducted root cause analysis, and recommended long-term solutions.

Software Security Engineer

Xyz
03.2017 - 10.2020
  • Developed and maintained secure coding guidelines for enterprise applications.
  • Worked closely with QA teams to integrate security testing into existing software testing processes.
  • Assisted in security audits and vulnerability management, ensuring timely remediation of identified risks.

Education

Master of Science - Computer Science

Lewis University
Romeoville, IL
12-2024

Skills

  • Application Security Testing: SAST, DAST, API Security, Secure Code Review, OWASP Top 10
  • Secure Development: Threat Modeling, Secure Coding, Code Reviews
  • DevSecOps: CI/CD Security (GitLab, Jenkins, Azure DevOps)
  • Application Security Tools:
    SAST: Fortify, Checkmarx, SonarQube, Veracode, Coverity
    DAST: Burp Suite, OWASP ZAP, Acunetix, WebInspect
    SCA: Black Duck, WhiteSource, Snyk
  • Compliance & Standards: OWASP, SANS-25, CVSS, CWE, WASC

Timeline

Application Security Engineer

Xyz
01.2022 - 09.2024

Application Security Analyst

Xyz
01.2020 - 01.2022

Software Security Engineer

Xyz
03.2017 - 10.2020

Master of Science - Computer Science

Lewis University

Similar Profiles

  • Radha Krishna

    Radha KrishnaRadha Krishna

    Sketch Master at XYZSketch Master at XYZ

    View Profile
  • Matthew Ittu

    Matthew IttuMatthew Ittu

    XYZ at XYZXYZ at XYZ

    View Profile
  • TOUSIF SAGHEER KHAN

    TOUSIF SAGHEER KHANTOUSIF SAGHEER KHAN

    TOSCA AUTOMATION ENGINEER at XYZTOSCA AUTOMATION ENGINEER at XYZ

    View Profile
Anoosha Podeti