Highlights:Built and scaled a global penetration testing and red team capability from scratch at Warner Bros. Discovery. 10+ years of hands-on experience across red teaming, adversary simulation, exploit development, and vulnerability research. Published multiple CVEs and developed working exploits affecting enterprise and consumer applications. Led red team engagements for financial institutions and large enterprises, including assumed breach and lateral movement scenarios. Recognized with Stellar Award and multiple performance awards for security impact and execution excellence.

Skills:OSCP, penetration tester, Red team, Configuration review

Goal:To lead and execute advanced adversarial security initiatives that simulate real-world threats, strengthen enterprise security posture, and build high-performing offensive security teams. Seeking opportunities where I can combine hands-on red team expertise, exploit research, and strategic security leadership to drive measurable impact.

Membership:Hack The Box Subject Matter Expert (SME) Active contributor to security research and vulnerability disclosure programs

Certification:Offensive Security Certified Professional (OSCP) Offensive Security Wireless Professional (OSWP) CREST Registered Penetration Tester (CRT) GIAC Certified Incident Handler (GCIH) Certified Red Team Professional (CRTP) CompTIA Security+ Certified Ethical Hacker (CEH) ISO 27001 Lead Auditor Microsoft Azure Fundamentals (AZ-900) Certified Blockchain Security Professional (CBSP) GitHub Advanced Security Certified

Honor:Stellar Award – Warner Bros. Discovery (for building and operationalizing offensive security capability) Rising Star Award – KPMG Multiple Spot Awards for zero-day vulnerability discoveries ASUS Hall of Fame recognition Certificate of Appreciation for ASV license retention Top 15 Contributor – National Cyber Infrastructure vulnerability reporting

Manager Offensive Security 06/2025 - current
Warner Bros. Discovery, , India
Rebuilt the organization’s penetration testing capability from the ground up, establishing tooling, processes, and scalable operating standards. Led hiring and mentoring of offensive security engineers while managing a globally distributed team to ensure consistent delivery quality. Oversaw third-party penetration testing programs and remained hands-on with critical application assessments. Recognized with a Stellar Award for successfully operationalizing the offensive security function and delivering measurable impact.
•Rebuild the organization’s penetration testing capability from scratch, establishing tooling, processes, and operating models for scalable security testing. •Led hiring and onboarding of new offensive security engineers, including skill assessment, mentoring, and continuous technical upskilling. •Managed a global penetration testing team across multiple regions, ensuring consistent testing standards, delivery quality, and knowledge sharing. •Identified, customized, and deployed penetration testing tools. •Defined end-to-end penetration testing processes, best practices, and supporting documentation to ensure consistency & quality. •Managed third-party vendors for external penetration testing, including scoping, access provisioning, coordination during assessments, issue resolution, report review, and cost management. •Performed penetration testing on critical applications. Achievement •Recognized with a Stellar Award for successfully building and operationalizing the offensive security function and delivering measurable security impact.--
Cyber Security Manager 10/2021 - 06/2025
KPMG, Pune, India, Pune, Maharashtra India
Led performance management and technical mentoring to build high-performing security teams. Planned and managed security assessments and red team engagements, including budgeting and resource allocation. Owned managed security service delivery for Fortune 500 clients while performing hands-on penetration testing across web, thick client, and mobile applications. Led red team engagements for NBFC clients and provided technical oversight on vulnerability validation, risk rating, remediation guidance, and closure verification.
•Experienced in performance evaluations, resource mentoring, & technical grooming to build high-performing teams & foster individual career growth. •Experienced in project planning, budgeting, & resource allocation for security assessments and red teaming engagements •Taking ownership of the managed service delivery for Fortune 500 clients, ensuring high- quality service & meeting client expectations in a timely manner. •Managing as well as performing PT on web applications, thick client & mobile applications, 10+ configuration reviews for KPMGs internal applications. •Leading red teaming engagements for Non-Banking Financial Companies (NBFCs), including physical •Providing technical expertise on vulnerability identification, false positives removal, risk retting, vulnerability remediation, verification of closure, & compensating controls.--
Team Lead (APAC Information Security) 01/2016 - 10/2021
ControlCase, Mumbai, India, , India
Led a team of 4 security professionals delivering large-scale penetration testing across web, thick client, and network environments. Conducted 300+ web and 50+ thick client assessments, identifying critical vulnerabilities including privilege escalation, IDOR, SQL injection, and SYSTEM-level compromises. Supported PCI DSS compliance initiatives, performed firewall and segmentation testing, and led recruitment and training programs to build a high-performing security team.
•Lead team of 4 cyber security professionals, providing guidance & direction. •Performed web application PT on more than 300+ applications & discovered vulnerabilities such as Privilege escalation, IDOR, XSS, SQL Injection, CSRF. •Executed thick client PT on 50+ applications & gained SYSTEM access through techniques like DLL Injection, Reverse Engineering, privilege escalation, Insecure storage etc. •Proactively collaborated with diverse clients to successfully achieve & maintain PCIDSS compliance through comprehensive guidance, meticulous planning, & support. •Evaluated firewall configurations & conducted segmentation penetration testing. •Conducted thorough assessments of the security of internal & external networks utilizing a comprehensive combination of automated & manual testing methods. •Conducted comprehensive source code reviews to identify security weaknesses. •Specialized in expertly assessing the security of diverse banking systems, payment gateways, merchants, national payment switches, & BPOs with precision. •Consistently enhance & strengthen the security posture of clients. •Promote upskilling & cross-skilling for direct reports & build training plans. •Delivered training on network, web application PT & firewall review to new joiners & facilitated skill enhancement programs for existing employees. •Lead recruitment process & hired 15+ highest qualified to build team of top performers. Achievement •“Certificate of Appreciation” award for assisting organization to retain ASV vendor license. •Point-based KPI implemented that significant increase in productivity by 30%.--

Login to view resume: Tejas_Pingulkar_OSCP_10_exp - OSCP 10 year offensive security