Product Security Engineer @Atlassian | Ex Flipkart
7 Years of Experience
Delhi, Delhi, India
-
-
Not Available
I am mostly into Security testing of products . I am involved in the shift left approach towards Application security in my current org. I majorly perform following activities : Dynamic/Manual Web Application Security Testing (Primarily) Architecture review of PRDs , HLD and LLD of services . Security review of the integration of third party with our product . Vendor onboarding. API security testing Mobile Application Security Testing Manual Source code review ( Java , PHP , JS , Python ) False positive analysis of vulnerabilities reported by SAST and DAST tools . Cloud security ( Azure) Automated testing using scripting (Python) My GitHub repo : https://github.com/mandeepjadon Technical blog : https://medium.com/@ciph3r7r0ll
Atlassian, SaaS/Cloud Product, Information Technology & Services
Flipkart
Fiserv
Atlassian, Flipkart, Fiserv, Fiserv, KPMG India, Tata Consultancy Services, null The Open Security Community
Job Title : Product Security Engineer
Company name : Atlassian
Period : September 2022 - Present
Location : India
Job Title : Senior Security Engineer
Company name : Flipkart
Period : August 2021 - September 2022
Job Title : Information Security Professional
Company name : Fiserv
Period : October 2020 - August 2021
Job Title : Information Security Associate
Company name : Fiserv
Period : December 2018 - October 2020
Job Title : Associate Security Consultant
Company name : KPMG India
Period : March 2018 - December 2018
Location : Gurgaon, Haryana, India
Job Title : Security Analyst (Enterprise Security And Risk Management)
Company name : Tata Consultancy Services
Period : October 2016 - March 2018
Location : Gurgaon, India
Job Title : Speaker
Company name : null The Open Security Community
Period : November 2015 - November 2015
Summary : I spoke at the Null Delhi session (November) on Hacking Wireless Networks .
http://swachalit.null.co.in/events/142-delhi-null-delhi-meet-28-november-2015-combined-null-delhi-owasp-delhi-november-meet
Slides : http://www.slideshare.net/mandeepjadon/hacking-wireless-networks-null-delhi-november
NA
Title : ICSI | CNSS Certified Network Security Specialist
Period : May 2021 - Present
Summary : 17891772, accredible.com, https://api.accredible.com/v1/frontend/credential_website_embed_image/certificate/17891772
Issuing Authority : ICSI (International CyberSecurity Institute), UK
Title : Foundational Artificial Intelligence
Period : August 2020 - Present
Summary : 0425e45655b8408daa73ea9321f8947c, skillup.online, https://skillup.online/certificates/0425e45655b8408daa73ea9321f8947c
Issuing Authority : NASSCOM
Title : Carbon Black Protection Administrator
Period : July 2017 - Present
Summary : Q4gkiWDLL3
Issuing Authority : Carbon Black, Inc.
Title : NSE 1 Network Security Associate
Period : May 2020 - May 2022
Summary : 4Re9IKbCBA, fortinet.com, https://training.fortinet.com/mod/customcert/verify_certificate.php
Issuing Authority : Fortinet
Title : NSE 2 Network Security Associate
Period : May 2020 - May 2022
Summary : f641GUalZ3, fortinet.com, https://training.fortinet.com/mod/customcert/verify_certificate.php
Issuing Authority : Fortinet
Title : Zscaler Certified Cloud Administrator - Internet Access
Period : June 2017 - June 2019
Summary : 357d7354-e3d0-418a-904b-15529e0393de, myabsorb.com, https://zscaler.myabsorb.com/Learn/Transcript/Download/357d7354-e3d0-418a-904b-15529e0393de
Issuing Authority : Zscaler
Title : Zscaler Certified Cloud Professional- Internet Access
Period : July 2017 - July 2017
Summary : 27c438b8-979b-4367-9974-0633ccaf6464, myabsorb.com, https://zscaler.myabsorb.com/Learn/Transcript/Download/27c438b8-979b-4367-9974-0633ccaf6464
Issuing Authority : Zscaler
Title : AZ-500 : Microsoft Certified: Azure Security Engineer Associate
Summary : credly.com, https://www.credly.com/badges/ee1730cf-5d1c-443f-8cf1-0999fd38c97c/public_url
Issuing Authority : Microsoft
Title : AZ-900: Microsoft Certified: Azure Fundamentals
Summary : l150-3870, credly.com, https://www.credly.com/badges/51600740-9843-4502-b061-2a84188345c6/public_url
Issuing Authority : Microsoft
Title : MS-500 : Microsoft 365 Certified: Security Administrator Associate
Summary : credly.com, https://www.credly.com/badges/f8d76ec3-8c04-44c7-833d-1e99785a1fd8
Issuing Authority : Microsoft
Title : SC-300 : Microsoft Certified: Identity and Access Administrator Associate
Summary : credly.com, https://www.credly.com/badges/275f537f-cc04-4240-bd37-48a3282a7030
Issuing Authority : Microsoft
Title : SC-400 : Microsoft Certified: Information Protection Administrator Associate
Summary : credly.com, https://www.credly.com/badges/186d6a7a-be80-453f-8bcd-40134c3ae674
Issuing Authority : Microsoft
Title : SC-900 : Microsoft Certified: Security, Compliance, and Identity Fundamentals
Summary : credly.com, https://www.credly.com/badges/2d1eccc1-c2d7-4322-b074-bb60d2bbfef8
Issuing Authority : Microsoft
English (Professional Working), Hindi (Native Or Bilingual)
Award : Microsoft Security Response Center 2017 TOP 100 (28th Rank)
Issuer : Microsoft
Date : 7 2017
Summary : I am listedat 28th rank in MSRC 2017 .This was represented at BlackHat USA 2017 .
https://twitter.com/secbughunter/status/890250443493789696
Award : CVE-2015-5995
Issuer : Assigned CVE-2015-5995
Date : 11 2015
Summary : Assigned a CVE for reporting an severe authentication bypass in Tenda routers .
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5995
https://www.kb.cert.org/vuls/id/630872
Award : Acknowledged By Bitdefender
Issuer : Bitdefender
Summary : http://www.bitdefender.com/site/view/bug-bounty-hall-of-fame.html
Award : Acknowledged By Computer Emergency Response Team (CERT)
Issuer : CERT
Summary : https://hackerone.com/certHandle name Ciph3r7r0ll
Award : Acknowledged By Deploybot Security Team
Issuer : Deploybot
Summary : Acknowledged by Deploybot for reporting security issuehttp://support.deploybot.com/customer/portal/articles/1967488-responsible-disclosure-policy?b_id=527
Award : Acknowledged By Dutch Police Department
Issuer : Politieacademie (Netherland)
Summary : Receivedsome gifts from the department as part of their responsible disclosure program .
Award : Acknowledged By ESET Security Team (5 Times)
Issuer : Eset
Summary : Received acknowledgement letter as well as swag for their responsible disclosure program .http://s24.postimg.org/6mlb6zt4l/eset.png
Award : Acknowledged By F-Secure Team
Issuer : F-Secure
Summary : https://www.f-secure.com/en/web/labs_global/vrp-hall-of-fame
Award : Acknowledged By HackerRank Security Team
Issuer : HackerRank
Summary : Received Swag From HackerRank
Award : Acknowledged By Issuu Security Team
Issuer : Issuu
Award : Acknowledged By Mobikwik Security Team
Issuer : Mobikwik
Summary : Rewarded By Mobikwik Security Team .
Award : Acknowledged By Opex-Xchange Team
Issuer : Open-Xchange
Summary : https://hackerone.com/open-xchange/thanks
Award : Acknowledged By Oracle
Issuer : Oracle
Summary : http://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/3235388.xml
Award : Acknowledged By Paymill Security Team
Issuer : Paymill
Summary : Received Some Gift From The Team .
Award : Acknowledged By Paytm Security Team
Issuer : Paytm
Summary : Received Certificate From Paytm for reporting Security Issue
Award : Acknowledged By Pusher Team
Issuer : Pusher
Summary : https://pusher.com/security
Award : Acknowledged By SplashID
Issuer : SplashID
Summary : https://bugcrowd.com/splashid/hall-of-fame
Award : Acknowledged by Geniebelt
Issuer : Geniebelt
Summary : https://geniebelt.com/responsible-disclosure
Award : Acknowledgement Letter From Intel Security Team
Issuer : Intel
Summary : http://imgur.com/a/ihRu1
Award : Acknowledgement Letter From MediaFire
Issuer : Mediafire
Summary : https://www.docdroid.net/irLRMDP/mandeep-jadon-106713.pdf.htmlTaken part in their bug bounty program . Received 4 figure Bounty as well in total .Currently at Rank 1 . https://s7.postimg.org/hdskb2wgb/Mediafire.png
Show More