Tikka Nagi

Tikka Nagi

Independent Security Consultant | Application Security & AI Penetration Testing Specialist
📍 San Jose, California

Executive Summary

Senior security consultant with 25+ years of progressive experience spanning enterprise software development, product security engineering, and incident response at Fortune 50 organizations. Proven track record leading technical teams and managing high-stakes security incidents for global enterprises. Specialized expertise in application security assessments, AI-powered penetration testing, and emerging AI security challenges.

Core Expertise: Application Security Architecture • OWASP Top 10 & ASVS • AI/ML Security Assessment • Incident Response • Python/Rust Security Automation • Enterprise Consulting • Team Leadership

Professional Experience

Founder & CTO
Sekura.ai
2023 - Present

Leading development of next-generation AI-powered data security solutions in stealth-mode startup focused on sensitive data classification and protection.

  • Architected and developed Tauri desktop application using GemmaEmbeddings model for automated sensitive data classification
  • Implemented per-file encryption system with AI-driven data sensitivity analysis
  • Built comprehensive RAG (Retrieval-Augmented Generation) chatbot interface for digital library transformation
  • Developed innovative approach to AI-assisted data discovery and encryption using small language models
Python Rust Tauri AI/ML Models RAG Architecture Encryption Systems
F5SIRT Security Engineer
F5 Security Incident Response Team
May 2022 - May 2024

Security Engineer with F5SIRT, aligning team objectives with innovative strategies and ensuring consistent engagement to meet roadmaps, programs, and project milestones while overseeing complex, multi-year projects.

  • Led comprehensive manual design and implementation evaluations for F5 products including ASM, AFM, and NGINX
  • Collaborated with software engineers to develop and implement automated systems for static and dynamic analysis
  • Monitored and responded to security incidents with average of 15 incidents per month, leading to root cause analysis and mitigation
  • Led research on emerging threats, reducing potential security breaches by 30%
  • Managed weekly threat and vulnerability assessments, ensuring response time under 24 hours
  • Achieved 90% success rate in timely remediation of security concerns through cross-functional collaboration
  • Authored application security articles for F5's DevCentral, including 'This Week in Security' series
  • Conducted educational sessions for developers on secure coding best practices
F5 ASM F5 AFM NGINX Static Analysis Dynamic Analysis Threat Intelligence Vulnerability Assessment DevCentral Publishing
Senior Security Consultant
Sekura LLC
May 2020 - May 2022

As a Senior Security Consultant at Sekura LLC, led security research on various SaaS platforms including Salesforce, Snowflake, DocuSign, GitLab, and Atlassian, enhancing the security capabilities of the AppOmni platform.

  • Led security research on SaaS platforms including Salesforce, Snowflake, DocuSign, GitLab, and Atlassian
  • Enhanced security capabilities of the AppOmni platform through comprehensive research findings
  • Conducted application security design reviews and threat modeling
  • Ensured security was embedded into development lifecycle from the outset
  • Implemented security automation and coding best practices
  • Managed bug bounty programs and security vulnerability management
  • Provided security training and secure coding guidance
SaaS Platforms (Salesforce, Snowflake, DocuSign, GitLab, Atlassian) AppOmni Platform Integration Application Security Design Reviews Threat Modeling Security Automation Bug Bounty Programs Security Training
Enterprise Network Engineer - Application Security
F5 Networks
May 2012 - April 2020

Application Security Engineer performing root cause analysis on hundreds of real layer 7 attacks, including OWASP top 10, analyzing packet captures and working with development teams on implementing effective mitigations.

  • Performed root cause analysis on hundreds of real layer 7 attacks including OWASP top 10 list
  • Analyzed packet captures, replicated breached applications in lab environments, and reproduced attacks for development teams
  • Conducted penetration testing on numerous web applications using Kali Linux in replicated lab environments
  • Built Python-based tools for analyzing large packet captures and extracting attacks from logs and databases
  • Engineered automated vulnerability management solution using Python and MongoDB, improving efficiency by 40%
  • Managed Load Balancing, Advanced WAF, and Advanced Network Firewall on F5 boxes with bi-annual certification
  • Supported F5 Application Security Module policy-building process through comprehensive testing
Layer 7 Attack Analysis OWASP Top 10 Kali Linux Python MongoDB F5 Load Balancer Advanced WAF Advanced Network Firewall Packet Capture Analysis Vulnerability Management
Founding Team Member
Gliimpse, Inc (acquired by Apple)
November 2014 - May 2016

Founding team member at healthcare data aggregation startup enabling patients to collect their lifelong medical history for sharing with care networks. Gliimpse solved medical data aggregation and standardization challenges through OAuth & APIs.

  • Instrumental in building the platform security engineering team and underlying infrastructure
  • Established robust security foundation for the healthcare data platform to scale securely
  • Focused on medical data aggregation and standardization from multiple portals without human intervention
  • Implemented security for OAuth & API integrations enabling partner apps and analytics
  • Designed secure architecture for wearable device data integration and self-entered medical information
Healthcare Data Security OAuth Implementation API Security Medical Data Aggregation Platform Security Team Building Security Infrastructure
Senior Application Security Engineer
Imperva
April 2010 - May 2012

Product Engineer at Imperva specializing in configuration and implementation of web, data, and file application firewall appliances, ensuring robust security for enterprise clients.

  • Specialized in configuration and implementation of web, data, and file application firewall appliances
  • Troubleshot complex technical issues within customer network environments requiring in-depth analysis
  • Developed suite of scripting tools to streamline troubleshooting efforts
  • Automated customer upgrade build environments using Hudson CLI and VMware cloud
  • Developed custom risk assessment scripts for Oracle environments
  • Served as Subject Matter Expert (SME) for sensitive data discovery, classification, and protection
Web Application Firewall (WAF) Data and File Application Firewalls Hudson CLI VMware Cloud Oracle Scripting (Automation, Troubleshooting) Sensitive Data Discovery and Classification
Lead Java Developer
IBM
May 2008 - April 2010

Java Developer at IBM playing a crucial role in development of the Pricing and Margin Management (PMM) Enterprise Java Web Application with focus on security requirements and compliance.

  • Developed Pricing and Margin Management (PMM) Enterprise Java Web Application
  • Identified and implemented minimum security requirements and threat modeling
  • Created Security Risk Assessments (SRAs) and Privacy Risk Assessments (PRAs)
  • Defined access levels for individual PMM roles and integrated with IBM's WebID user service
  • Ensured compliance with cryptographic requirements, incident reporting, and audit trail standards
  • Responsible for discovery and classification of PI, PII, and PCI data within Oracle database
  • Implemented data masking, penetration testing, static analysis and manual code reviews
Java J2EE Spring Framework Hibernate Oracle Database WebLogic Maven JUnit Security Risk Assessment Data Masking Penetration Testing
Principal Consultant
Model N
May 2006 - May 2008

Java Developer at Model N providing critical technical support for the Model N Enterprise Java Application, including environment setup, issue resolution, and premium customer support.

  • Provided critical technical support for Model N Enterprise Java Application
  • Set up replication environments and troubleshooted complex issues
  • Delivered timely hotfixes and custom code support for premium customers
  • Wrote tailored business logic and maintained customer-specific code bases
  • Played significant role in team building and mentoring support engineers
  • Temporarily relocated to Hyderabad to recruit and train additional support engineers
Java J2EE Spring Framework Hibernate Oracle Database Maven Enterprise Application Support Technical Mentoring Global Team Management
Java Technical Lead
Vendavo
May 2004 - May 2006

Key role providing hands-on technical support for the Vendavo Enterprise Java Application, including environment setup, issue resolution, and custom development for premium customers.

  • Provided hands-on technical support for Vendavo Enterprise Java Application
  • Set up replication environments, reproduced and escalated issues
  • Delivered hotfixes and custom code support for premium customers
  • Wrote custom business logic and maintained customer code base
  • Collaborated with senior management to hire and mentor support engineers at headquarters
  • Ensured timely hotfix delivery and maintained high customer satisfaction
Java J2EE Spring Framework Hibernate Oracle Database Enterprise Application Support Custom Business Logic Technical Mentoring
Java Developer
Tangoe
May 2003 - May 2004

Java Developer at Tangoe, a leading provider of IT expense management and enterprise communications lifecycle management software, focusing on developing assurance tasks for the platform.

  • Contributed to IT assets and expense management solution development
  • Developed assurance tasks for the platform, ensuring reliability and accuracy of core functionalities
  • Created robust validation processes and error-checking mechanisms
  • Developed automated testing procedures to maintain system integrity
  • Enhanced overall quality and dependability of Tangoe's flagship product
Java J2EE JSP Servlets EJB Hibernate Spring Framework Oracle Test-driven Development
Java Developer
Nine West Group
May 2002 - May 2003

Java Developer at Nine West, a well-known fashion retailer, focusing on pricing and revenue management application development and maintenance.

  • Developed and maintained pricing and revenue management application
  • Implemented complex pricing algorithms optimizing company's pricing strategies
  • Integrated with various data sources to support revenue optimization
  • Ensured system reliability and performance for mission-critical pricing systems
  • Directly impacted company's bottom line through revenue optimization features
Java J2EE JSP Servlets JDBC Oracle Database Pricing Algorithms Revenue Management
Web Developer to Senior Web Developer
DNAI (acquired by RCN)
April 2000 - May 2002

Dual role as system administrator and application developer at Berkeley-based local ISP, advancing from web developer to senior web developer position.

  • Built and maintained BSD systems from scratch
  • Developed, deployed, and maintained air-gapped ISP billing system
  • Created DSL ordering consumer web application
  • Ensured stability and functionality of core ISP services
  • Managed both system administration and application development responsibilities
BSD Unix PHP MySQL Apache HTML CSS JavaScript Billing System Development Air-gap System Implementation
Intern to Early Employee
Icarian (acquired by WorkStream)
April 1998 - April 2000

Started as intern while pursuing undergraduate degree, transitioned to web developer role at pioneering cloud-based Workforce Management application company.

  • Began journey as intern while pursuing undergraduate degree full-time
  • Transitioned into web developer role during company growth
  • Built and maintained time and expense reporting system for Professional Services team
  • Contributed to streamlining team operations through critical system development
  • Part of innovative company recognized for company culture and eventual acquisition by WorkStream
HTML JavaScript CSS Microsoft SQL Server Microsoft IIS Windows NT/2000 Time and Expense Systems Workforce Management

Consulting Services Offered

Application Security Assessments

  • Comprehensive security testing using OWASP methodology
  • Custom penetration testing with Python/Rust automation
  • Security architecture review and recommendations
  • Compliance assessment and remediation planning

AI-Enhanced Penetration Testing

  • AI-powered security testing and vulnerability discovery
  • LLM application security assessment
  • Prompt injection and AI model validation testing
  • Next-generation security tool development

Incident Response & Advisory

  • Emergency security incident response and containment
  • Forensic analysis and threat intelligence
  • Security strategy development and implementation
  • Executive security advisory and risk management

Enterprise Security Consulting

  • Security transformation roadmaps and strategy
  • DevSecOps implementation and automation
  • Cloud security architecture and assessment
  • Compliance program development (NIST, OWASP)