Summary
Alex Devassy is a Product Security Specialist with eight years of hands-on experience in offensive security, product security, and vulnerability management, currently at SAP after leading SCA and VM efforts at AppViewX. He specializes in penetration testing across web, mobile, SAP, blockchain, AI, and thick-client environments, and has a track record of automating testing and triage workflows using AI agents, Burp APIs, Azure serverless, Docker, Python, Node.js, and PowerShell. A frequent speaker at international conferences (OWASP AppSec, BSides, Nullcon) and co-author on blockchain security, he brings deep domain knowledge in adversarial AI and supply-chain risk. Alex combines consulting rigor from EY with product-focused engineering, building SBOM-driven processes and CI pipelines to make security actionable for development teams. Notably, he led response and triage for real-world supply-chain incidents and has practical experience securing Kubernetes, OVAs, and complex enterprise stacks. He is Bengaluru-based and balances public research and tool-building with mentoring and internal security training.
8 years of coding experience
3 years of employment as a software developer
Master of Science, Cyber/Computer Forensics and Counterterrorism, Master of Science, Cyber/Computer Forensics and Counterterrorism at Indian Institute of Information Technology and Management-Kerala(IIITM-K)
BSc Computer Science, Computer Science, BSc Computer Science, Computer Science at ST. THOMAS COLLEGE, THRISSUR
English, Malayalam, Tamil, Hindi