Vishal is the founding Director and Principal Security Consultant at AppSecure Labs Ltd.He is an established senior level information security consultant with a strong technical background, offering application and IT security consultancy and assurance services to organisations at all levels.
Working in IT since 1998, he has over a decade of IT security experience, mostly in customer-facing roles, working on consulting assignments with clients ranging from small companies to global enterprises across a number of industry sectors including banking, finance, media, travel, insurance, government, engineering, eCommerce and retail.
Vishal provides security consultancy to projects by defining solutions that support each client’s current and future business vision. He works with all relevant stakeholders to define and embed application security requirements, and provides leadership and direction during design and development phases by utilising a threat-based approach to support the business strategy. He ensures that all security risks are properly understood and mitigated.
He also performs application security risk assessments, vulnerability assessments and penetration tests on clients’ systems with requirements to meet some of industry’s most stringent security and compliance requirements. He has strong proficiency in IP networking, web, cloud and mobile-based applications with an understanding of application security methodologies, standards and compliance requirements defined by ISO27001, PCI-DSS, FSA and many others.
Vishal demonstrates the ability to coordinate, work with and gain the trust of business stakeholders to achieve desired business objectives. A highly energetic and motivated individual who is able to work under pressure in time-critical situations,he can communicate effectively with business stakeholders by explaining findings clearly in technical and business terms.
Vishal has a master’s degree in Information Security from Royal Holloway, University of London. He has been a Certified Information Systems Security Professional (CISSP) since 2005 and a Certified Information Systems Auditor (CISA) since 2009. He is also an active member of Information Systems Security Association (ISSA) and Open Web Application Security Project (OWASP), and keeps up to date in the field through regular industry seminars and security conferences.