LATISH DANAWALE

Offensive Security Specialist

OSEP | OSCP | CRTE | CRTP

9+ Years Experience

latish@opsec.today

$
Security Enthusiast
$
Web App Security | Mobile Security | API Security | Active Directory
$
"Security is not a product, but a process."

ABOUT ME

I am an Offensive Security and Vulnerability Management Specialist with 9+ years of experience in penetration testing (web/mobile applications, networks) and secure code review. Currently, I work as a Red Teamer at Core42, where I emulate adversarial tactics to uncover and mitigate risks across complex environments. My expertise lies in identifying, prioritizing, and eliminating security gaps through hands-on assessments, scalable vulnerability management, and automated remediation workflows (ServiceNow SecOps, custom tooling). Certified in OSEP, OSCP, CRTP, and CRTE, I blend attacker-driven techniques with strategic risk reduction to strengthen organizational defenses.

CERTIFICATIONS

OSEP

Offensive Security Experienced Penetration Tester

Advanced evasion techniques and lateral movement in Windows environments.

OSCP

Offensive Security Certified Professional

Proven hands-on penetration testing skills and methodology.

CRTE

Certified Red Team Expert

Advanced Active Directory Attacks.

CRTP

Certified Red Team Professional

Active Directory Enumeration & Attacks.

EXPERIENCE

Senior Engineer

Feb 2025 - Present | Core42

  • Perform Penetration Testing on networks, applications, and cloud environments.
  • Red Team engagements to simulate advanced adversarial attacks

Security Consultant

OCT 2013 - OCT 2024 | KPMG Lower Gulf

  • Led Vulnerability Management program for one of UAE’s largest Oil & Gas clients.
  • Developed automation scripts to streamline security assessments
  • Conducted external reconnaissance assessments to identify exposure risks

Senior Lead - Vulnerability Management

JUN 2021 - OCT 2023 | Carrier Technologies India Limited

  • Led a team for Vulnerability Management & Offensive Security Operations.
  • Reduced attack surface by 60% in 2 years through automation initiatives.
  • Built an automated VM program leveraging ServiceNow’s Vulnerability Response modules.

Manager - Cyber Security

FEB 2020 - JUN 2021 | NIUM Pvt Ltd

  • Developed a deep scanner to detect credit card data leaks for PCI DSS compliance.
  • Managed Attack Surface Monitoring and conducted offensive security engagements.
  • Built automated security testing tools

Tech Lead

NOV 2017 - FEB 2020 | Pristine Infosolutions Pvt Ltd

  • Technical Lead, managing security assessments for 20+ clients globally.
  • Led international engagements covering pentesting, secure coding, and VM.

Security Analyst

OCT 2016 - OCT 2017 | EY LLP

  • Implemented deception technologies to detect insider threats.
  • Conducted Vulnerability Assessment & Penetration Testing (VAPT) for Fortune 500 companies.

SKILLS

Web Security

OWASP Top 10 XSS/CSRF/SQLi Burp Suite WAF Bypass

Mobile Security

Android/iOS Pentesting Frida Objection Mobile API Analysis

Active Directory

Kerberos Attacks BloodHound DCSync Golden Ticket

Tools & Languages

Metasploit Cobalt Strike Python PowerShell