Security Researcher Trainer Initiatives
→
Summary
Conducted training and workshops on various security topics.
MOHAMMED DANISH AMBER
Senior Cybersecurity Manager | Information Technology & Services
Kolkata, IN.About
Highly accomplished Cybersecurity Manager with over 14 years of expertise in the IT and services industry, specializing in Cloud Security, Red Teaming, DevSecOps, and Vulnerability Management. Proven leader in strengthening organizational security posture through strategic assessments, defense validation, and the successful implementation of advanced security processes. Adept at leading high-performing teams to deliver impactful security solutions and drive continuous improvement in complex environments.
Work
India, India, India
→
Summary
Leading a team of 6-10 professionals in Cognizant Security, I oversee comprehensive application and infrastructure security testing, driving DevSecOps implementation and enhancing the organization's overall security posture.
Highlights
Spearheaded the implementation of DevSecOps practices and standardized security processes, significantly improving the efficiency and consistency of security operations for a team of 6-10 professionals.
Directed comprehensive web and mobile application security testing (SAST & DAST) and infrastructure penetration testing (Black/Grey & White Box), identifying and mitigating critical vulnerabilities across diverse systems.
Led adversary simulation and security control validation initiatives, proactively identifying weaknesses and strengthening the organization's defense mechanisms against evolving cyber threats.
Managed end-to-end vulnerability management programs, reducing organizational risk exposure through timely identification, prioritization, and remediation efforts.
Developed and executed strategies for threat intelligence, OSINT, and Red/Purple Teaming, enhancing proactive threat detection and response capabilities.
India, India, India
→
Summary
Managed critical vulnerability and patch management programs, secure architecture audits, and led red teaming initiatives for Ernst & Young, guiding a team of 2-4 professionals to deliver high-impact security engagements.
Highlights
Managed and optimized vulnerability and patch management programs, significantly reducing exposure to security risks across client environments through effective remediation strategies.
Conducted secure architecture audits and reviews, providing strategic recommendations that enhanced the security posture of client systems and applications.
Led and mentored a team of 2-4 cybersecurity professionals in red teaming and process standardization, ensuring consistent delivery of high-impact security engagements.
Implemented robust security standards and processes, improving operational efficiency and compliance for client projects.
Executed advanced malware analysis and IoT device security testing, identifying critical vulnerabilities and informing mitigation strategies for diverse client portfolios.
India, India, India
→
Summary
Contributed to high-profile client engagements at Deloitte, specializing in Red Teaming, security audits, vulnerability assessments, and executive security profiling to deliver results in fast-paced consulting environments.
Highlights
Participated in multiple high-profile Red Teaming engagements, simulating sophisticated cyberattacks to identify critical weaknesses in client defenses.
Conducted comprehensive Security Audits and Vulnerability Assessments, delivering actionable insights that improved client security postures.
Performed Executive Security Profiling, providing strategic intelligence to clients for enhancing their protective measures against targeted threats.
Executed malware analysis (static & dynamic) and threat hunting, proactively identifying and neutralizing advanced persistent threats.
Contributed to secure architecture audit and review processes, ensuring the integration of robust security measures from initial design phases.
India, India, India
→
Summary
Conducted comprehensive vulnerability assessments, penetration testing, and security auditing for servers, networks, and web applications at Agility E-Services, enhancing threat detection and mitigation strategies.
Highlights
Performed extensive vulnerability assessments and penetration testing on servers, networks, and web applications, identifying critical security flaws.
Conducted detailed security auditing of databases, firewalls, switches, and Next Generation Firewalls, ensuring compliance and enhancing system integrity.
Analyzed logs and incidents for effective threat detection and mitigation, significantly reducing potential impact from security breaches.
Executed comprehensive virus and malware analysis, contributing to the development of robust defense mechanisms.
Utilized automated and manual web application vulnerability assessments based on OWASP TOP 10 and SANS standards to ensure high-quality security evaluations.
India, India, India
→
Summary
Developed and implemented complex software solutions for telecom clients at Tata Consultancy Services, achieving 80-90% automation of manual tasks, while also mentoring junior engineers and contributing to critical system administration and monitoring.
Highlights
Developed and implemented complex software solutions for telecom clients, automating 80-90% of manual intervention tasks, which significantly improved operational efficiency and reduced human error.
Administered and optimized MySQL, MariaDB, NoSQL, and MongoDB databases, ensuring high availability and performance for critical client applications.
Mentored junior engineers and conducted training sessions for client teams, fostering skill development and enhancing overall team capabilities.
Managed network and server monitoring using tools like HP BSM, UCMDB, and SolarWinds, proactively detecting and resolving issues to maintain system uptime.
Implemented Identity Security Administration with Symantec Profiling, enhancing access control and security management for enterprise systems.
Received the Service Delivery Excellence Award in December 2012 and the Best Faculty Award in July 2015, recognizing outstanding contributions to project delivery and knowledge sharing.
Education
The Bhawanipur Gujrati Education Society School
Kolkata, West Bengal, India
→
ISC (10+2)
Science
Grade: 74%
The Frank Anthony Public School
Kolkata, West Bengal, India
→
ICSE (10)
Science
Grade: 75%
Awards
Best Faculty Award
Awarded By
Tata Consultancy Services
Awarded for excellence in training and mentoring junior engineers and client teams.
Service Delivery Excellence Award
Awarded By
Tata Consultancy Services
Recognized for outstanding contributions to project delivery and client satisfaction.
First position in Group Elocution in Annual Inter-House Meet
Awarded By
The Frank Anthony Public School
Achieved first place in an annual inter-house group elocution competition.
Second position in Annual Computer competition
Awarded By
The Frank Anthony Public School
Secured second position in the annual computer competition.
Third position in Annual Science competition
Awarded By
The Frank Anthony Public School
Achieved third position in the annual science competition.
Languages
English
Hindi
Urdu
Bengali
Certificates
CCSK (Certificate of Cloud Security Knowledge)
Issued By
Cloud Security Alliance
OSCP (Offensive Security Certified Professional)
Issued By
Offensive Security
ECSA (EC-Council Certified Security Analyst)
Issued By
EC-Council
GREM (GIAC Reverse Engineering Malware)
Issued By
GIAC
MongoDB
Issued By
MongoDB, Inc.
CHFI (EC-Council Certified Computer Hacking & Forensics Investigator)
Issued By
EC-Council
CEH (EC-Council Certified Ethical Hacker)
Issued By
EC-Council
RHCE (Red Hat Certified Engineer) & RHSA (Red Hat System Administration)
Issued By
Red Hat
PHP & MySQL
Issued By
Self-issued/Training
ORACLE DBA 9i
Issued By
Oracle
Ubuntu Server
Issued By
Canonical
Skills
Cybersecurity & Penetration Testing
Ethical Hacking, Security Researching, Vulnerability Management, Penetration Testing (VAPT), Red Teaming, Adversary Simulation, Threat Intelligence, OSINT, Malware Analysis, Security Audits, DevSecOps, Security Operations, Breach & Attack Simulation (BAS), OWASP TOP 10, SANS, Metasploit, Nessus Vulnerability Management, Qualys Guard, Accunetix, BURP Suite, Nmap, Zap Proxy, BEEF (Browser Exploitation Framework), Meterpreter, Symantec 360, Tenable.IO, Tenable Lumin.
Cloud & Infrastructure Security
Cloud Security, Infrastructure Penetration Testing, Secure Architecture Audit & Review, IoT Device Security Testing, Security Control Validation, System Hardening, Docker, OpenShift, VMWare Sphere, AKAMAI WAF, IMPERVA WAF.
Programming & Scripting
C/C++, Perl, Python, PHP, HTML, Java, SQL, Visual Basic, Shell Script, Bash, NodeJS.
Operating Systems & Administration
Windows, Linux, Unix, Mac OS, Backtrack, Kali, Parrot OS, Blackbox, Cyberhawk, Server Administration, Database Administrations, Network Administrations.
Database Technologies
MySQL, MariaDB, NoSQL, MongoDB, Database Architecture Design, Database Implementation, MySQL Workbench, MonYog, SQLYog, Liquibase.
Monitoring & Management Tools
HP BSM, UCMDB, SolarWinds, HP SiteScope, BAC (Business Availability Center), SAP Reports, Diskspace Monitoring, Log Analysis, Incident Analysis.
Identity & Access Management
Identity Security Administration, Symantec Profiling, Automated VA Assessment.
Interests
Cybersecurity Community Engagement
Null Open Security (Core Member, Hyderabad Chapter), Raspberry Pi (Chapter Head, Hyderabad), Computer Hacking Conferences, Information Security Seminars.
Open Source Contributions
GitHub Contributions, Open-Source Projects.
Security Research & Development
Private Home Lab, Exploring New Applications, Security Technologies & Techniques.
Projects
Banking Application Development
→
Summary
Minor academic project focused on developing a banking application.
Intranet Mailing Server Development
→
Summary
Major academic project involving the creation of an intranet mailing server.