Ajay Chandhok
Education:
Master of Engineering (M.Eng.)
Cybersecurity
University of Maryland College Park
2013 : 2016
Bachelor of Science (B.S.)
Electrical, Electronics and Communications Engineering
University of Maryland
2006 : 2010
Experience:
-Lead a FedRAMP Continuous Monitoring Team that supports ~10 Moderate and High Environments (AWS and Azure) that have successfully attainted ATOs.
-Lead a Federal Application Security Program supporting over 50 applications with SAST and DAST testing.
-Lead a Cloud Security program responsible for securing federal cloud applications
-Conducted Web Application, Network, and Cloud Penetration Testing for Federal, Commercial, and FedRAMP clients
-Leading and performing compliance assessments (NIST 800, FedRAMP, FIPS, FISMA, etc.)
2016 : Present
Stratus Cyber
CEO and Principal Security Engineer
2016 :
B&M Consulting Group, Inc.
Senior Cybersecurity Technical Specialist
-Cybersecurity SME support to help navigate compliance requirements
-Security testing for Gatekeeper application components
2018 :
GateKeeper Proximity
Cyber Security Specialist
-Manage client security engagements to ensure on-time delivery, technical coverage, and client satisfaction
Perform penetration tests of : External Networks, Internal Network, Web Applications, Blockchain Applications, Blockchain Networks, Cloud Infrastructure (Azure, AWS), Container Infrastructure (Kubernetes, Docker)
-Write Blockchain Security Blog Posts
-Develop technical proposals for federal and commercial opportunities and grants
2018 : 2020
LedgerOps
Penetration Tester
Software Developer responsible for designing and developing user interfaces for analytic data visualization and analysis as well as behavioral streaming security analytics to identify malicious network traffic for network defense.
2015 : 2016
PROTEUS Technologies
Principal Software Engineer
Company: Stratus Cyber
Years of Experience: 19
I am a technical cybersecurity professional with experience in security engineering, security operations (SecOps), penetration testing, software development, and compliance assessments.