Skip to Content(

Hi, my name is

Shivam Saraswat.

I build things for the security.

I’m a security engineer (R&D) specialized in building exceptional security solutions. Currently, I’m focused on building dev-centric security products (using shift-left approach) at Tekion.

About Me

Hello! My name is Shivam. As a Security Engineer at Tekion, I engineer and implement innovative security solutions to protect the company’s web and API assets.

Experienced DevSecOps and Cybersecurity professional with nearly 3 years of expertise in architecting enterprise-grade security solutions and driving cloud-native implementations. Skilled at building and optimizing secure pipelines for large-scale environments, creating innovative in-house security tools, and implementing cloud security best practices.

Recognized speaker at global security events and recipient of industry awards for excellence in product security. Proven ability to reduce security risks, streamline compliance processes, and enhance developer productivity through innovative tools and workflows.

Committed to bridging the gap between development and security teams to create resilient, scalable, and efficient systems.

Here are a few technologies I’ve been working with recently:

  • Product Security
  • Application Security
  • DevSecOps
  • Cloud Security
  • Security Automation (Python, Bash)
  • Vulnerability Management
  • Git, GitHub, GitLab, Bitbucket
  • Github Actions, GitLab CI/CD
  • MongoDB
  • Docker, Kubernetes
  • GCP, AWS
  • Swagger, Postman
  • Linux, MacOS, Windows
  • Burp Suite, Nmap, Wireshark, Nuclei, Nessus
Headshot

Where I’ve Worked

Security Engineer @ Tekion

August 2024 - Present

  • Architecting DevSecOps Pipelines: Architected and implemented comprehensive DevSecOps security scanning pipelines across 2,000+ production repositories, integrating SAST, SCA, Secret Scanning, Container Scanning and Dockerfile Scanning, resulting in 40% reduction in security vulnerabilities.

  • DevSecOps Pipelines Migration: Led large-scale migration to GitLab’s Pipeline Execution Policy from legacy compliance pipelines for 2000+ production repositories, modernizing security scanning processes while ensuring zero production disruption.

  • Pipeline Optimization: Reduced pipeline execution time by 35% through optimization of security scanning workflows and configuration improvements.

  • Developer Feedback: Enhanced DevSecOps pipeline templates through systematic troubleshooting and developer feedback, streamlining security scanning workflows and improving developer experience with optimized configurations.

Some Things I’ve Built

Other Noteworthy Projects

view the archive
  • PYrevDNS

    PYrevDNS is a simple tool for performing reverse DNS lookups on IP addresses. This tool is useful for network administrators and security professionals to identify the domain names associated with IP addresses.

    • DNS
    • Python
    • PHP
  • Certify - SSL/TLS Certificate Security Analysis Tool

    Certify is a powerful and easy-to-use tool designed to check the security of SSL/TLS certificates.

    • Python
    • TLS
  • PGrab

    PGrab is a banner grabber tool used to gather information about a remote server or device, specifically the banner or header information that is sent when a connection is made.

    • Python
    • Banner Grabbing
    • Network
  • crt.sh Domain Finder

    It can retrieve all the domains and the subdomains associated with a domain using crt.sh. It can also be used in conjunction with other tools (such as httpX) to know the active domains.

    • Python
    • Subdomain Enumeration
  • WebXCrawler

    WebXCrawler is a fast static crawler to crawl a website and get all the links. It is useful for web developers and security professionals to identify the links present on a website. It is built using Python and BeautifulSoup.

    • Python
    • Web Crawler
    • BeautifulSoup
  • SSH Bruteforcer and Bruteforce Detector

    It is a tool for brute-forcing the SSH service, allowing for testing and analysis of SSH security measures, and it also comes with option to detect brute-force attacks on the SSH service.

    • Python
    • SSH
    • Security

What’s Next?

Get In Touch

My inbox is always open. Whether you have a question or just want to say hi, I’ll try my best to get back to you!

)