Dhimant Patel Contact: (201)-616-2395

E-mail: dhiharpat@gmail.com

SUMMARY:
 Experienced IT professional with 6+ years of experience with Cyber Security.
 Areas of Core strength is application security architecture, risk assessments, security design, threat
modeling, and secure coding (SAST/DAST/IAST).
 Proficient in security testing and evaluating the security posture of third-party solutions.
 advising IT teams on cybersecurity issues and implementing effective remediation strategies.
 Hands-on experience in conducting tests for web applications.
 Well-versed with OWASP Top 10 and SANS25.
 Working hands directly with various software development teams, engineering teams, and system
administrators in reviewing the source code identifying security vulnerabilities providing guidance to the
development teams to remediate the vulnerabilities.
 Possess Excellent Communication and am a Team Player.

TECHNICAL SKILLS:

● Software/Development Tools: WhiteHat, Rapid7, Veracode, Checkmarx, MicroFocus, Jira, Jenkins,

Git,
Confluence, SAML, Venafi.
● Standards: OWASP, NIST, MITRE, STRIDE.
Experience:
UBS, Weehawken, NJ - Sr Application Security Engineer April 2022 – January 2024.

● Responsible for collaborating with the product and solution teams.

● Depending upon NIST standards Develop a new security policy for web-based applications.
● Vulnerability/ pen testing assessment and remediation workflow. Responsible for auditing the compliance
reporting and response to the incident workflows.
● Responsible for working with security and engineering teams on the evaluation of new security
technologies.
● Maintain an active understanding of industry practices for secure software development and incident
response. Manage vulnerability management program.
● Achieve Cybersecurity software security program objectives.

● Evaluated the current development process and updated it.

● Perform ongoing security code and testing reviews to improve application security.

● Updated developer checklist.

● Presenting a seminar on Security standards depending on OWASP.

● Assist software development teams with the design and implementation of security solutions.

Anthem, Indianapolis, IN – Application Security Engineer July 2021 – April

2022.
 Working with the teams for SSH key remediation.
  Conducting SSH Key Analysis for different teams and individual accounts and generating new keys for
the required server.
 Working directly with different teams (Bamboo, Bitbucket) to ensure that all the repositories connecting
to bamboo are using keys that are generated and stored at a secure location (Venafi).
 Duplicate Network cleanup for the SSH keys.
 Working with different teams to make sure their keys are stored centrally.
 Performing remediation analysis on a nonstandard home directory. Decommissioning the servers

EDUCATION:
● New York Institute of Technology, New York, USA
MS in Computer Science – Information Networking and Computer Security
January 2015 – December 2016.