Krishnan Latha
Bloomfield,NJ
Summary
Application security expert with hands-on experience across assessments, SDLC reviews, and mobile/IoT testing. Strong client-management and communication skills with a track record of mentoring teams and completing multiple projects efficiently.
Overview
14
14
years of professional experience
Work History
Lead Application Security Analyst
ADP
10.2023 - Current
- Performed comprehensive security assessments across web, mobile, API, and IoT/embedded platforms, identifying high-impact vulnerabilities and improving overall application security coverage.
- Enhanced the internal vulnerability database through annual reviews and updates, increasing reporting accuracy and reducing analysis time for the AppSec team.
- Redesigned the bug bounty workflow, streamlining triage and validation processes to improve response efficiency and accelerate vulnerability remediation.
- Established a structured client-communication process that increased transparency and strengthened client confidence in ADP’s security standards and compliance posture.
- Managed external penetration tests end-to-end, ensuring on-time delivery and providing executive-level summaries that improved client understanding of risks and remediation priorities.
- Mentored interns and junior associates, accelerating their development into independent AppSec contributors and improving team capacity.
- Led the IoT testing program by defining testing methodologies, expanding test coverage, and improving the quality of security evaluations for connected devices.
Senior Application Security Consultant
Optiv Security Inc.
03.2020 - 07.2023
- Managed end-to-end application security programs, defining security policies and remediation strategies to strengthen the application lifecycle.
- Led cross-functional teams to enhance SDLC practices and coached developers on secure coding and threat-aware design.
- Automated security testing within CI/CD pipelines, increasing scan consistency, coverage, and operational efficiency.
- Served as TAG lead for code reviews, establishing coding standards and identifying critical security vulnerabilities.
- Streamlined security scanning workflows by creating documentation, training materials, and onboarding processes that improved team adoption and productivity.
Application Security Consultant
Optiv Security Inc.
11.2017 - 03.2020
- Performed security assessments for web, mobile, and API applications using SAST/DAST tools, identifying vulnerabilities and driving effective remediation.
- Conducted in-depth source code reviews across multiple programming languages, uncovering security flaws and improving overall code quality.
- Partnered with development teams to implement security controls and remediation strategies aligned with secure design principles.
- Delivered comprehensive vulnerability reports with clear, actionable recommendations based on industry best practices.
Application Security Consultant I
Denim Group
01.2017 - 11.2017
- Managed application security programs, overseeing risk assessments, third-party evaluations, and remediation efforts to ensure security throughout the development lifecycle.
- Led bug bounty programs, triaging findings, reporting vulnerabilities, and coordinating remediation with development teams.
- Conducted security evaluations of SAML and OAuth protocols, ensuring secure authentication and authorization processes.
Application Security Consultant II
Denim Group
08.2015 - 01.2017
- Performed comprehensive security assessments on web, desktop, and mobile applications, identifying vulnerabilities and providing remediation strategies.
- Conducted detailed source code reviews, addressing security risks and improving code quality.
- Communicated findings and recommendations to clients, delivering technical reports and guiding risk mitigation efforts.
Software Developer Intern
Information Processing Corporation
01.2015 - 05.2015
- Developed websites using ASP.NET, ensuring design and functionality met user needs and enhanced performance.
- Performed troubleshooting and maintenance to ensure seamless user experiences on existing web applications.
Security Consultant Intern
Cigital INC
06.2014 - 08.2014
- Conducted security assessments on web applications using IBM AppScan, documenting vulnerabilities and providing remediation advice.
- Effectively communicated vulnerabilities to clients, providing actionable strategies for remediation.Effectively communicated with clients, providing clear explanations of vulnerabilities, and guiding them on the most effective strategies to remediate the identified issues.
Quality Assurance and Software Developer Intern
MYOPENJOBS LLC
01.2014 - 05.2014
- Created automated test suites using Selenium, SpecFlow, and ASP.NET, improving testing efficiency and reducing manual effort.
- Developed tools to automate routine tasks and enhanced existing web applications by optimizing stored procedures, improving performance.
Application Developer
Technomics Software Solutions
09.2011 - 12.2012
- Developed web and desktop applications for national clients using PHP, C#.NET, and MYSQL, improving operational efficiency.
- Delivered custom application management systems, streamlining processes and reducing paperwork for various clients
Education
MS - Computer Science (Information Assurance)
The University of Texas at Dallas
05.2015
Master of Science - Computer Science
Amrita Vishwa Vidyapeetham
05.2012
Bachelor of Computer Application - undefined
Amrita Vishwa Vidyapeetham
05.2010
Skills
- Penetration testing
- Threat modeling
- Mobile application security
- Static code analysis
- Security risk assessment
- Application security tools
- Analytical thinking
- Application security
- Business continuity
- Ethical hacking
- Threat hunting
- Problem-solving abilities
Timeline
Lead Application Security Analyst
ADP
10.2023 - Current
Senior Application Security Consultant
Optiv Security Inc.
03.2020 - 07.2023
Application Security Consultant
Optiv Security Inc.
11.2017 - 03.2020
Application Security Consultant I
Denim Group
01.2017 - 11.2017
Application Security Consultant II
Denim Group
08.2015 - 01.2017
Software Developer Intern
Information Processing Corporation
01.2015 - 05.2015
Security Consultant Intern
Cigital INC
06.2014 - 08.2014
Quality Assurance and Software Developer Intern
MYOPENJOBS LLC
01.2014 - 05.2014
Application Developer
Technomics Software Solutions
09.2011 - 12.2012
Master of Science - Computer Science
Amrita Vishwa Vidyapeetham
Bachelor of Computer Application - undefined
Amrita Vishwa Vidyapeetham
MS - Computer Science (Information Assurance)
The University of Texas at Dallas