Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic
Vandana Mudunuru

Vandana Mudunuru

Austin

Summary

Cybersecurity & Cloud Security Professional with 3.10 years of experience in application security, cloud security, and compliance. Skilled in risk assessment, vulnerability management, and security automation, with a strong focus on integrating security best practices into development pipelines and cloud environments. Experienced in conducting penetration testing, secure SDLC oversight, and compliance audits (SOC, ISO 27001, PCI DSS, NIST) to enhance organizational security posture.

Overview

4
4
years of professional experience
1
1
Certification

Work History

Software Engineer( Application Security)

Fulcrum GT
Visakhapatnam
07.2020 - 03.2022
  • Application Security: Conducted SAST & DAST assessments to identify and remediate vulnerabilities in web applications, ensuring secure SDLC integration.
  • Penetration Testing: Performed internal web application penetration tests, identifying security flaws and recommending mitigation strategies.
  • Full-Stack Development & Security: Developed and secured React.js, Node.js, HTML, CSS, and Python applications while embedding security best practices throughout the development lifecycle.
  • Secure SDLC Oversight: Led the entire SDLC process, incorporating security controls at each phase to enhance software resilience against threats.
  • Compliance & Audits: Assisted in SOC, ISO 27001, and PCI DSS audits, ensuring applications and infrastructure met regulatory security requirements.

Security Engineer

Accenture
Hyderabad
05.2018 - 06.2020
  • Cloud Security & Compliance: Implemented and managed AWS security services (IAM, S3, VPC, Security Hub, GuardDuty, Systems Manager, and Inspector) to enhance cloud security posture.
  • CSPM (Cloud Security Posture Management): Configured and optimized Prisma Cloud to identify and remediate cloud misconfigurations, ensuring continuous compliance with industry standards.
  • Vulnerability Management: Conducted regular vulnerability assessments using automated scanning tools, prioritized remediation efforts, and reduced security risks across cloud environments.
  • Security Automation: Developed Lambda-based security automation to enforce security policies, detect anomalies, and respond to security threats in real time.
  • Risk & Compliance: Led security risk assessments aligning with ISO 27001, PCI DSS, and NIST frameworks, ensuring regulatory compliance and mitigating security gaps.

Education

Offensive Security (Sep 2024 - Current)

HackTheBox | TryHackMe
Learner

Master of Science - Cybersecurity (Jan 2023 - Aug 2024)

University of Central Missouri | GPA 3.7
Warrensburg, MO

Bachelor of Science - ComputerScience & Engineering(Aug 2014 - May 2018)

Lendi Institute of Engineering And Technology
Andhra Pradesh , India

Skills

Application security

SAST, DAST, SDLC security, secure code reviews, web application security testing, secure code trainings, Burp Suite, Checkmarx, Veracode, Snyk

Vulnerability assessment

Nessus, Qualys, CVE, CVSS

Cloud security (AWS)

Prisma Cloud, Prowler, IAM, Security Groups, NACLs, Network Firewall, Security Hub, Inspector, Lambda, GuardDuty, S3, VPC, EC2, Route 53, SCP, Macie (DLP)

Risk Management

Risk assessments, NIST, ISO, risk register

Regulatory compliance

GDPR, CCPA

Application programming

JavaScript, Python, Nodejs, Reactjs, Java, PHP

Network security

IDS, IPS, Switches, Firewalls, Routers, OS hardening, Wireshark, Nmap, Kali linux

Incident handling

SIEM, Wazuh, Splunk

Governance and compliance

SOC 2, ISO 27001, PCI DSS, NIST, security policies, standards, procedures, security awareness trainings

End Point Security

MDM (Hexnode)

Soft skills

Strong communication, problem-solving, analytical thinking, and attention to details

Certification

  • CompTIA Security+ (ID. COMP001022281262)
  • Certified in Cybersecurity (ISC2) (Cert. No. 2166617)
  • Bug Bounty Hunter by TCM(cert.9mlwdhyp)
  • Currently Pursuing: AWS SSA(In progress), TCM PJWT(In progress)

Timeline

Software Engineer( Application Security)

Fulcrum GT
07.2020 - 03.2022

Security Engineer

Accenture
05.2018 - 06.2020

Offensive Security (Sep 2024 - Current)

HackTheBox | TryHackMe

Master of Science - Cybersecurity (Jan 2023 - Aug 2024)

University of Central Missouri | GPA 3.7

Bachelor of Science - ComputerScience & Engineering(Aug 2014 - May 2018)

Lendi Institute of Engineering And Technology

Similar Profiles

  • Justin Mirski

    Justin MirskiJustin Mirski

    Summer Intern at Fulcrum GTSummer Intern at Fulcrum GT

    View Profile
  • VENKATESH JAWALKAR

    VENKATESH JAWALKARVENKATESH JAWALKAR

    Associate 2 at GT US Knowledge Capability Center India Pvt. Ltd (GT Indus)Associate 2 at GT US Knowledge Capability Center India Pvt. Ltd (GT Indus)

    View Profile
  • VENKATESH M JAWALKAR

    VENKATESH M JAWALKARVENKATESH M JAWALKAR

    Associate 2 at GT US Knowledge Capability Center India Pvt. Ltd (GT Indus)Associate 2 at GT US Knowledge Capability Center India Pvt. Ltd (GT Indus)

    View Profile
Vandana Mudunuru