Tushar Kulkarni

Security Engineer II at Grainger

Chicago, Illinois, United States
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Tushar Kulkarni is a Security Engineer II based in Chicago with 10 years of experience specializing in web application security, IAM and federation. He blends hands-on web development with offensive security practice—building projects like vAPI, a self-hostable app that simulates OWASP API Top 10 vulnerabilities, and contributing full-stack fixes and tests. He’s presented at major conferences including DEF CON, Black Hat and OWASP AppSec Days, and has real-world red team and bug bounty experience through Synack and HackerOne. With an MS in Secure Computing and a background spanning security research, incident preparedness, and engineering roles at Grainger, Holm Security and TCS, he pairs academic rigor (3.8/4.0) with practical threat-hunting skills. Notably, he spends as much time exploring new tech trends as he does breaking and hardening applications, making him both a curious researcher and a pragmatic defender.
code10 years of coding experience
job4 years of employment as a software developer
bookDiploma, Computer Engineering, Diploma, Computer Engineering at Govt. Polytechnic , Nagpur
bookMS, Secure Computing, 3.8/4.0, MS, Secure Computing, 3.8/4.0 at Indiana University Bloomington
bookBachelor of Engineering - BE, Computer Technology, Bachelor of Engineering - BE, Computer Technology at Yashwantrao Chavan Engineering College, Wanadongri, Hingna road
languagesEnglish, Marathi, Hindi
github-logo-circle

Github Skills (13)

apim10
php10
api10
laravel10
api-design10
laravel-mix10
owasp9
postman9
bugzilla8
html8
bugtracking8
security8
bug-tracker8

Programming languages (8)

C#DockerfileC++PHPHTMLSwiftRubyPython

Github contributions (5)

github-logo-circle
roottusk/vapi

Sep 2020 - Nov 2022

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
Role in this project:
userFull-stack Developer
Contributions:6 releases, 1 review, 110 commits in 2 years 3 months
Contributions summary:Tushar primarily contributed to the development of the `vAPI` project, focusing on both frontend and backend aspects. They implemented a basic HTML frontend, added postman scripts for API testing, and integrated Laravel migration, which indicates backend development. The user also addressed security vulnerabilities, fixed API issues, and made changes to API endpoints and database configurations, showcasing a diverse skillset related to API development and web application security.
bugbountyscenariosvulnerable-applicationhostablepostman
OWASP/www-chapter-nagpur

Nov 2019 - Sep 2021

OWASP Foundation Web Respository
Contributions:6 PRs, 120 pushes, 1 comment in 1 year 9 months
web-foundationsecurityowaspfoundationrespository
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Tushar Kulkarni - Security Engineer II at Grainger