Mohd Tahseen Raza
Application Security Specialist | Cybersecurity Engineer
Application Security and Cybersecurity Specialist with 7+ years of experience spanning application security, data loss prevention, security operations, email and web security, vulnerability management, and incident response. Experienced in securing enterprise web and mobile applications through penetration testing, secure SDLC practices, threat simulation, SIEM monitoring, and control tuning. Hands-on with tools including Burp Suite Pro, Nessus, Microsoft Purview, Forcepoint DLP, Splunk, Darktrace, Cymulate, and ManageEngine. Proven ability to reduce risk, improve detection coverage, strengthen compliance alignment, and partner with engineering and operations teams to turn security findings into measurable remediation. Creator of TRX Security — a 73,000+ line autonomous offensive & defensive cybersecurity platform integrating 6 AI models, 19+ scanners, and enterprise-grade security controls.
Core Expertise
Application Security
SAST/DAST/IAST testing, secure SDLC integration, vulnerability management, code review, OWASP Top 10 remediation, and penetration testing.
Data Loss Prevention (DLP)
Endpoint DLP policy configuration, data classification, sensitive data discovery, cloud DLP monitoring, incident investigation, and regulatory compliance.
SOC Operations
SIEM management, alert triage, incident response, threat hunting, log analysis, playbook development, and 24/7 security monitoring oversight.
AI Security Engineering
LLM integration for security analysis, prompt injection prevention, AI model security, automated threat intelligence, and neural model deployment.
Strike Ready Operations
Red team campaign management, attack simulation, blue team validation, purple team exercises, and continuous security posture assessment.
Security Architecture
Zero-trust network design, IAM/RBAC implementation, encryption standards, cloud security (AWS/Azure), and compliance framework alignment.
Professional Experience
Application Security Specialist
Emirates Driving Company PSC
- Perform penetration testing and vulnerability assessments for web and mobile applications using Burp Suite Pro and Nessus to identify exploitable weaknesses and drive remediation
- Partner with development teams to embed secure coding practices into the SDLC, enabling earlier identification and resolution of security issues
- Lead enterprise threat simulation and exposure validation exercises using Cymulate to measure control effectiveness and improve defensive readiness
- Use Darktrace and ManageEngine/Log360 for anomaly detection, incident triage, and operational visibility across the environment
- Support application and infrastructure risk reduction by translating findings into prioritized remediation actions for technical stakeholders
Security Delivery Senior Analyst (Support/Contract)
Accenture
- Monitored and analyzed DLP, email security, and web security events, improving incident response turnaround by approximately 45%
- Led investigations for data exfiltration, phishing, and web-based threats, improving response effectiveness and escalation quality
- Performed DLP policy tuning, exception analysis, and control optimization to reduce false positives and close data handling gaps
- Conducted security assessments and recommended remediation measures that lowered compliance and operational risk exposure
Web Security Specialist (Freelance)
Blueiris Software
- Led web security assessments, vulnerability validation, and remediation tracking to reduce application risk and improve overall security posture
- Implemented and strengthened security controls including WAF protections, secure coding practices, SSL/TLS hardening, IAM controls, and OWASP-aligned review practices
- Monitored and responded to security events using SIEM and threat intelligence inputs to improve detection, containment, and reporting quality
Senior Security Engineer
Starlight Data Solutions
- Deployed and managed DLP and SIEM solutions that improved visibility and reduced enterprise security risk exposure
- Performed vulnerability assessments using Nessus and OpenVAS to identify and remediate critical weaknesses across systems and applications
- Integrated SOC automation capabilities to streamline workflows and improve team efficiency by approximately 45%
Network Engineer
Pratikshat Solutions LLP
- Implemented secure network architectures and operational controls that supported 99.9% uptime for business-critical systems
- Optimized infrastructure performance using F5 Load Balancers and VMware ESXi administration
- Managed firewalls, VPNs, and network hardening activities to strengthen perimeter and remote access security
Technical Skills
Application Security
Security Operations
DLP & Data Protection
Security Tools
Network & Cloud
Governance & Standards
Platforms & Scripting
Certifications
- Microsoft SC-100 Cybersecurity Architect
- Microsoft Azure AI Essentials Professional Certificate
- CompTIA Security+
- Cyber Threat Intelligence
- Forcepoint Data Security
- F5 Advanced WAF Configuration
- Cybersecurity for Executives
- Palo Alto Firewall (SASE)
- CCNA
- Forcepoint DLP Administrator
- CyberOps Associate
- Linux Administration
Education
Bachelor of Technology — Computer Science
Dr. APJ Abdul Kalam Technical University · 2019 – 2022
Focus areas: Network Security, Cryptography, Operating Systems, Data Structures & Algorithms, Software Engineering
Diploma in Computer Science
Integral University · 2016 – 2019
Foundation in computer science fundamentals, programming, database management, and networking.
Flagship Project — TRX Security
TRX Security is a full-stack autonomous cybersecurity platform designed and developed from the ground up. It combines offensive penetration testing, defensive monitoring, AI-powered intelligence, digital forensics, and deception operations in a unified web-based command center.
Explore the Platform
See the full capabilities of TRX Security in action.