Initializing Security Protocol

Chaitanya Ketan Purandare

Senior Cybersecurity Consultant

Senior Security Consultant with 7+ years of experience securing enterprise applications and cloud services. Expert in VAPT, threat modeling, secure code review, and cloud configuration reviews. Focused on shifting security left and translating complex technical risk into actionable engineering guidance.

cpurandare@security-node:~
7+
Years Cyber Experience
2,500+
IPs Assessed & Secured
200+
Web & Mobile Audits
6+
Industry Sectors Catered
What I Do

Core Cybersecurity Expertise

VAPT & Pen-Testing

Comprehensive vulnerability assessment and penetration testing across web applications, mobile apps, network devices, and wireless perimeters to identify vulnerabilities before attackers do.

Burp Suite Pro OWASP Nmap Metasploit

Secure Code Review & AI

Analyzing codebase structure for security anti-patterns. Implemented customized LLM guardrails and automation tools to optimize code audits and reduce threat false positives.

MeshClaw Bot LLM Testing Python Secure SDLC

Cloud Security & DevOps

Hardening cloud infrastructures (AWS), orchestrating secure setups for containerized microservices, IAM policies, and automating audits using infrastructure-as-code.

AWS GuardDuty Docker Kubernetes CloudFormation

Threat Modeling & Risk

Partnering with security architecture teams to model complex services, mapping architecture-level security gaps, and recommending tailored remediation blueprints.

Threat Modeling HIPAA Agile Security Remediation

Social Engineering

Designing and executing controlled phishing simulations to evaluate employee cybersecurity awareness and enterprise resilience, logging metrics for training.

Phishing Drills Campaign Design Social Engineering

Compliance & Frameworks

Reviewing configuration rules against CIS Benchmarks, auditing systems for CERT-IN compliance guidelines, and enforcing HIPAA security measures.

CERT-IN CIS Benchmarks HIPAA IT Audits
Professional Progression

Employment History

Senior Security Consultant & Tech Lead

Ultraviolet Cyber (Synopsys, BlackDuck)
June 2021 – Present | Boston, USA
  • Tech Lead for Cloud Services Client: Scoped cybersecurity requirements, estimated level of effort, authored Statements of Work (SOW), and coordinated resourcing.
  • Compliance Team Leadership: Led a team of 8 security assessors through a complex CERT-IN compliance audit, conducting technical peer reviews of all final security deliverables.
  • Advanced Penetration Testing: Executed complex Web, API, and Code Review security assessments as primary assessor using manual and automated verification techniques.
  • Automation & AI Integration: Designed and implemented MeshClaw bot and custom LLM prompts to accelerate secure code audits, saving 4-8 hours of manual testing overhead per project.
  • Healthcare Threat Modeling: Partnered with healthcare security architects to perform comprehensive threat modeling, advising on controls to align with HIPAA requirements.

Associate Consultant in Risk Consulting

KPMG
June 2017 – July 2019 | Mumbai, India
  • Large-scale VAPT: Performed comprehensive vulnerability assessments and penetration testing across 2,500+ corporate IP addresses, tracking flaws from discovery to remediation.
  • App Security Audit: Assessed over 50 dynamic web and mobile applications following the standard OWASP testing methodology.
  • Phishing Campaigns: Engineered and conducted targeted phishing campaigns for over 2,000 corporate employees, including VP and Director-level officers, achieving a 47% click-through metrics report.
  • Network Audits: Evaluated configurations of Cisco switches, routers, and telecommunication network nodes against standard CIS benchmark hardening baselines.
  • Wireless Security: Conducted physical Wi-Fi penetration tests to discover hidden SSIDs and obtain WPA handshakes through target de-authentication methods.
Credentials

Education & Certifications

Master of Science in Cyber Security

Northeastern University, Boston, MA
Sept 2019 – May 2021 | GPA: 3.875 / 4.00
Relevant Work: Computer & System Security, Network Security, Forensic Analysis, Machine Learning in Cybersecurity, Capstone Project: Honey-Pot Network

Bachelor of Engineering in Information Technology

University of Mumbai, Mumbai, India
2013 – 2017 | CGPA: 7.44 / 10.00
Relevant Work: Object Oriented Programming, Software Engineering, System & Web Security Open Source Technologies, Computer Networks
CEH Certification Badge

Certified Ethical Hacker (CEH) v10

EC-Council Credential ID: ECC849204859
Jan 2019 – Jan 2025
Beyond Security Checks

Interests & Activities

Capture The Flag

Regularly participating in local and global CTF competitions to sharpen VAPT and reverse engineering skills.

Wildlife Photography

Passionate self-taught wildlife photographer, capturing the intricate textures of ecosystems in natural habitats.

Coffee Enthusiast

Deeply interested in coffee brewing chemistry, exploring specialty single-origin espresso roasts.

Fountain Pens

Collector of classic mechanical fountain pens, appreciating precision nib grinds and custom inks.

Secure Comms

Get in Touch

Have an upcoming security assessment, cloud migration review, or threat modeling engagement? Connect directly for professional advisory services.