
Tikka Nagi
Executive Summary
Core Expertise: Application Security Architecture • OWASP Top 10 & ASVS • AI/ML Security Assessment • Incident Response • Python/Rust Security Automation • Enterprise Consulting • Team Leadership
Professional Experience
Leading development of next-generation AI-powered data security solutions in stealth-mode startup focused on sensitive data classification and protection.
- Architected and developed Tauri desktop application using GemmaEmbeddings model for automated sensitive data classification
- Implemented per-file encryption system with AI-driven data sensitivity analysis
- Built comprehensive RAG (Retrieval-Augmented Generation) chatbot interface for digital library transformation
- Developed innovative approach to AI-assisted data discovery and encryption using small language models
Security Engineer with F5SIRT, aligning team objectives with innovative strategies and ensuring consistent engagement to meet roadmaps, programs, and project milestones while overseeing complex, multi-year projects.
- Led comprehensive manual design and implementation evaluations for F5 products including ASM, AFM, and NGINX
- Collaborated with software engineers to develop and implement automated systems for static and dynamic analysis
- Monitored and responded to security incidents with average of 15 incidents per month, leading to root cause analysis and mitigation
- Led research on emerging threats, reducing potential security breaches by 30%
- Managed weekly threat and vulnerability assessments, ensuring response time under 24 hours
- Achieved 90% success rate in timely remediation of security concerns through cross-functional collaboration
- Authored application security articles for F5's DevCentral, including 'This Week in Security' series
- Conducted educational sessions for developers on secure coding best practices
As a Senior Security Consultant at Sekura LLC, led security research on various SaaS platforms including Salesforce, Snowflake, DocuSign, GitLab, and Atlassian, enhancing the security capabilities of the AppOmni platform.
- Led security research on SaaS platforms including Salesforce, Snowflake, DocuSign, GitLab, and Atlassian
- Enhanced security capabilities of the AppOmni platform through comprehensive research findings
- Conducted application security design reviews and threat modeling
- Ensured security was embedded into development lifecycle from the outset
- Implemented security automation and coding best practices
- Managed bug bounty programs and security vulnerability management
- Provided security training and secure coding guidance
Application Security Engineer performing root cause analysis on hundreds of real layer 7 attacks, including OWASP top 10, analyzing packet captures and working with development teams on implementing effective mitigations.
- Performed root cause analysis on hundreds of real layer 7 attacks including OWASP top 10 list
- Analyzed packet captures, replicated breached applications in lab environments, and reproduced attacks for development teams
- Conducted penetration testing on numerous web applications using Kali Linux in replicated lab environments
- Built Python-based tools for analyzing large packet captures and extracting attacks from logs and databases
- Engineered automated vulnerability management solution using Python and MongoDB, improving efficiency by 40%
- Managed Load Balancing, Advanced WAF, and Advanced Network Firewall on F5 boxes with bi-annual certification
- Supported F5 Application Security Module policy-building process through comprehensive testing
Founding team member at healthcare data aggregation startup enabling patients to collect their lifelong medical history for sharing with care networks. Gliimpse solved medical data aggregation and standardization challenges through OAuth & APIs.
- Instrumental in building the platform security engineering team and underlying infrastructure
- Established robust security foundation for the healthcare data platform to scale securely
- Focused on medical data aggregation and standardization from multiple portals without human intervention
- Implemented security for OAuth & API integrations enabling partner apps and analytics
- Designed secure architecture for wearable device data integration and self-entered medical information
Product Engineer at Imperva specializing in configuration and implementation of web, data, and file application firewall appliances, ensuring robust security for enterprise clients.
- Specialized in configuration and implementation of web, data, and file application firewall appliances
- Troubleshot complex technical issues within customer network environments requiring in-depth analysis
- Developed suite of scripting tools to streamline troubleshooting efforts
- Automated customer upgrade build environments using Hudson CLI and VMware cloud
- Developed custom risk assessment scripts for Oracle environments
- Served as Subject Matter Expert (SME) for sensitive data discovery, classification, and protection
Java Developer at IBM playing a crucial role in development of the Pricing and Margin Management (PMM) Enterprise Java Web Application with focus on security requirements and compliance.
- Developed Pricing and Margin Management (PMM) Enterprise Java Web Application
- Identified and implemented minimum security requirements and threat modeling
- Created Security Risk Assessments (SRAs) and Privacy Risk Assessments (PRAs)
- Defined access levels for individual PMM roles and integrated with IBM's WebID user service
- Ensured compliance with cryptographic requirements, incident reporting, and audit trail standards
- Responsible for discovery and classification of PI, PII, and PCI data within Oracle database
- Implemented data masking, penetration testing, static analysis and manual code reviews
Java Developer at Model N providing critical technical support for the Model N Enterprise Java Application, including environment setup, issue resolution, and premium customer support.
- Provided critical technical support for Model N Enterprise Java Application
- Set up replication environments and troubleshooted complex issues
- Delivered timely hotfixes and custom code support for premium customers
- Wrote tailored business logic and maintained customer-specific code bases
- Played significant role in team building and mentoring support engineers
- Temporarily relocated to Hyderabad to recruit and train additional support engineers
Key role providing hands-on technical support for the Vendavo Enterprise Java Application, including environment setup, issue resolution, and custom development for premium customers.
- Provided hands-on technical support for Vendavo Enterprise Java Application
- Set up replication environments, reproduced and escalated issues
- Delivered hotfixes and custom code support for premium customers
- Wrote custom business logic and maintained customer code base
- Collaborated with senior management to hire and mentor support engineers at headquarters
- Ensured timely hotfix delivery and maintained high customer satisfaction
Java Developer at Tangoe, a leading provider of IT expense management and enterprise communications lifecycle management software, focusing on developing assurance tasks for the platform.
- Contributed to IT assets and expense management solution development
- Developed assurance tasks for the platform, ensuring reliability and accuracy of core functionalities
- Created robust validation processes and error-checking mechanisms
- Developed automated testing procedures to maintain system integrity
- Enhanced overall quality and dependability of Tangoe's flagship product
Java Developer at Nine West, a well-known fashion retailer, focusing on pricing and revenue management application development and maintenance.
- Developed and maintained pricing and revenue management application
- Implemented complex pricing algorithms optimizing company's pricing strategies
- Integrated with various data sources to support revenue optimization
- Ensured system reliability and performance for mission-critical pricing systems
- Directly impacted company's bottom line through revenue optimization features
Dual role as system administrator and application developer at Berkeley-based local ISP, advancing from web developer to senior web developer position.
- Built and maintained BSD systems from scratch
- Developed, deployed, and maintained air-gapped ISP billing system
- Created DSL ordering consumer web application
- Ensured stability and functionality of core ISP services
- Managed both system administration and application development responsibilities
Started as intern while pursuing undergraduate degree, transitioned to web developer role at pioneering cloud-based Workforce Management application company.
- Began journey as intern while pursuing undergraduate degree full-time
- Transitioned into web developer role during company growth
- Built and maintained time and expense reporting system for Professional Services team
- Contributed to streamlining team operations through critical system development
- Part of innovative company recognized for company culture and eventual acquisition by WorkStream
Consulting Services Offered
Application Security Assessments
- Comprehensive security testing using OWASP methodology
- Custom penetration testing with Python/Rust automation
- Security architecture review and recommendations
- Compliance assessment and remediation planning
AI-Enhanced Penetration Testing
- AI-powered security testing and vulnerability discovery
- LLM application security assessment
- Prompt injection and AI model validation testing
- Next-generation security tool development
Incident Response & Advisory
- Emergency security incident response and containment
- Forensic analysis and threat intelligence
- Security strategy development and implementation
- Executive security advisory and risk management
Enterprise Security Consulting
- Security transformation roadmaps and strategy
- DevSecOps implementation and automation
- Cloud security architecture and assessment
- Compliance program development (NIST, OWASP)