Senior Security Analyst at Accenture Japan

Led end-to-end migration of vulnerability management from Excel to DefectDojo for ~200 systems; defined DefectDojo adoption processes (triage, RBAC, onboarding, CI/CD); automated OS vulnerability detection via Amazon Inspector; containerized a RHEL-based environment on Azure DevOps to implement SAST & SCA pipelines; implemented serverless security CI/CD and reporting on AWS Fargate, cutting infrastructure costs 15x; conducted code reviews of Java, .NET, and Python security reports; provisioned a BlackDuck cluster for SCA on AWS EKS; mentored 5 new members and led DevSecOps/ISO 27001 workshops in APAC.

Security Analyst at Accenture Japan

Delivered security CI/CD pipelines for 15+ clients to integrate SAST/SCA in Jenkins, AWS CodePipeline and Azure DevOps; onboarded five clients to global monitoring platform for compliance and automated scans with Fortify & Snyk; automated DAST of 1200+ endpoints using Python & WebInspect, reducing evaluation time from 3 months to 2 weeks; developed PoC implementations for Snyk in AWS, Azure & Jenkins; built a Flask server to process SAST requests, publish results to Fortify dashboard and export findings.

Computer Systems Intern at Nucleodyne Systems

Built a vulnerable honeypot on AWS using AWS ECS and Docker to study in-the-wild attacks; created 12+ test environments with CVEs on Docker and VirtualBox VMs.