Roshan Piyush

Senior Principal Security Researcher at Harness

Bengaluru, Karnataka, India
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Roshan Piyush is a Senior Principal Security Researcher with a decade of hands-on experience building product and API security solutions, leading devsecops, runtime protection, and security research at Harness. He combines deep engineering skills in backend and DevOps—Kubernetes, automation, and secure deployments—with applied research in machine learning for security and hands-on offensive testing. Roshan has driven secure SDLC adoption at enterprises like Ping and Oracle and contributes to notable OWASP projects, including restructuring the crAPI repo and improving the Coraza WAF's rule engine. Colleagues rely on him to translate complex threat models into deployable controls and detection use cases that scale across cloud-native stacks. He’s based in Bengaluru and brings a rare blend of practical exploit knowledge, secure product design, and infrastructure automation to security engineering.
code10 years of coding experience
job13 years of employment as a software developer
bookSecondary Education, Secondary Education at De Nobili School
bookBachelor's Degree Computer Science and Engineering, Bachelor's Degree Computer Science and Engineering at National Institute of Technology Calicut
languagesEnglish, Hindi
stackoverflow-logo

Stackoverflow

Stats
19reputation
12kreached
10answers
1question
github-logo-circle

Github Skills (24)

kubernetes10
waf10
go10
modsecurity10
kubernetes-pods10
api-security10
testing9
dockers9
bash9
docker9
owasp9
api9
http8
cicd8
golang8

Programming languages (5)

JavaMakefileGoHTMLPython

Github contributions (5)

github-logo-circle
OWASP/crAPI

Nov 2020 - Jan 2023

completely ridiculous API (crAPI)
Role in this project:
userBack-end & DevOps Engineer
Contributions:19 releases, 58 reviews, 127 commits in 2 years 2 months
Contributions summary:Roshan primarily focused on restructuring the repository and improving automation processes. Their work included standardizing Kubernetes deployment configuration, fixing relative paths, and updating documentation. They also implemented improvements to automation scripts and added configurations for various deployments. The user demonstrated a strong understanding of both back-end and DevOps principles by working with deployment scripts, k8s configurations and restructuring the repository.
rest-apiapinodejsowaspapisecurity
corazawaf/coraza

Apr 2022 - Dec 2022

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library
Role in this project:
userBack-end Developer & Security Engineer
Contributions:15 reviews, 13 commits, 13 PRs in 8 months
Contributions summary:Roshan contributed to the OWASP Coraza WAF project by optimizing rule matching logic and addressing case-sensitive evaluation issues. They fixed bugs related to include directives and variable negation, improving the WAF's parsing and rule processing capabilities. The contributions also involved adding more comprehensive tests to ensure accurate argument handling and the correct application of security rules.
web-applicationwafcorazasession-cookieweb-application-firewall
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Roshan Piyush - Senior Principal Security Researcher at Harness