About
VAPT Analyst with 2 years of experience in identifying and mitigating security vulnerabilities. Skilled in penetration testing, delivering actionable insights, and collaborating across teams to strengthen organizational security and resilience.
Skills & Expertise (11)
Work Experience
VAPT Analyst
SISA
Aug 2023 - Present
Performed Approved Scanning Vendor (ASV) scans and validation to support PCI DSS compliance. Conducted Internal and External Vulnerability Assessments (IVA / EVA) using credentialed and non-credentialed methodologies. Executed External, Internal, and Segmentation Penetration Testing (EPT, IPT, SPT) to evaluate network exposure and segmentation controls. Identified, validated, and safely exploited vulnerabilities to confirm impact and eliminate false positives. Assessed attack paths, privilege escalation opportunities, and lateral movement risks. Performed Firewall Rule Reviews (FRR) to verify secure configurations and segmentation enforcement. Evaluated effectiveness of security controls including firewalls, IDS/IPS, and access controls. Mapped findings to PCI DSS, CVSS, OWASP, and NIST guidelines. Provided actionable remediation recommendations to improve security posture. Collaborated with infrastructure, application, and network teams to ensure timely remediation. Prepared detailed technical reports and executive summaries for compliance and audit purposes.
Education
Bachelor of Technology in Computer Science - SIMAT, Palakkad
2014 - 2018 · Afghanistan
Higher Secondary Education - SN Trust, Shoranur
2013 - 2014 · Afghanistan
Secondary Education - ST. Therese HSS
2011 - 2012 · Afghanistan
Certifications
CPISI (Certified Payment Industry Security Implementer)
SISA Institute · 2025
eJPT v2 (eLearnSecurity Junior Penetration Tester)
INE Security · 2024
Cyber Security Analyst
ICT Academy of Kerala · 2023
