Ayush Srivastava

Secured high-traffic amusement park platform (50k+ daily users) by implementing OAuth 2.0, JWT authentication, and RBAC controls. Conducted vulnerability assessments using OWASP ZAP and Burp Suite, hardened AWS infrastructure (IAM policies, Security Groups, S3 encryption), and integrated SAST tools in CI/CD pipelines. Reduced production vulnerabilities by 40% through automated container scanning (Trivy) and secure code reviews.

Built secure payment processing APIs handling sensitive financial data for gaming platforms. Performed threat modeling and security risk assessments. Hardened PostgreSQL databases with encryption at rest and parameterized queries to prevent SQL injection. Implemented rate-limiting, input sanitization, and role-based authentication across 10+ REST APIs, reducing attack surface by 30%.

Led migration to secure microservices architecture with Docker container hardening following CIS benchmarks. Conducted security code reviews identifying authentication bypass vulnerabilities. Implemented secure logging practices (no PII/credentials) and enforced least-privilege IAM policies across all services. Reduced container attack surface by removing unnecessary packages and enforcing non-root users across all deployments.

Implemented AWS security controls including Security Groups, NACLs, and least-privilege IAM policies for cloud infrastructure. Managed SSL/TLS certificates, enforced HTTPS communications, and monitored CloudWatch logs for unauthorized access attempts. Developed Python scripts to automate security audits and CloudTrail log analysis.