About
Results-driven Security Product developer/Penetration Tester with extensive experience in conducting end-to-end security audits, vulnerability assessments, penetration testing, and threat modeling across diverse industries. Skilled in analyzing threats, identifying vulnerabilities, and implementing effective remediation strategies to enhance organizational security posture. Proficient in leading VAPT and Red Team exercises, ensuring regulatory compliance and strengthening digital resilience. Experienced in developing custom security tools and automation scripts to improve threat detection, prevention, and incident response efficiency.
Skills & Expertise (38)
Work Experience
Security Product Developer/Penetration Tester
Freelance
Sep 2025 - Present
Conducted Vulnerability Assessment and Penetration Testing (VAPT) for a hospital and an educational institution, identifying and mitigating security gaps across digital infrastructure and internal networks. Delivered detailed assessment reports with remediation recommendations to strengthen the clients’ overall security posture. Applied threat modeling and analysis techniques to evaluate potential attack paths and improve risk management strategies. Enhanced hands-on skills in penetration testing tools, exploit analysis, and secure configuration practices.
Security Analyst Intern
GradesPoint Technology Pvt Ltd.
Sep 2023 - Jan 2024
Learned the fundamentals of Vulnerability Assessment and Penetration Testing (VAPT), understanding tools, methodologies, and reporting techniques. Gained hands-on experience with PowerShell and Python for automating basic security tasks and log analysis. Studied and practiced the concepts of threat modeling and analysis, including identifying potential attack vectors, assessing risks, and proposing mitigation strategies. Developed a foundational understanding of cyber security operations, incident handling, and proactive defense mechanisms.
Intern (Remote)
Gurugram Cyber Cell
Jun 2022 - Jul 2022
Gained hands-on experience in digital forensics and evidence analysis. Investigated real-world cybercrimes, understanding hacker and scammer tactics. Assisted in analysing cyber threats. Enhancing security measures, and supporting law enforcement in cyber security cases.
Cyber Security Analyst
GradesPoint Technology Pvt Ltd.
Feb 2024 - Aug 2025
Developed custom Python-based security tools and automation scripts to streamline vulnerability scanning, log analysis, and threat detection, significantly improving efficiency and reducing manual workload across security operations. Delivered transformative cybersecurity outcomes by conducting in-depth security audits, vulnerability assessments, and penetration tests for high-risk environments, uncovering and remediating critical vulnerabilities before exploitation. Successfully managed a client ransomware incident by performing comprehensive digital forensics, executing post-recovery VAPT, and leading the incident response to restore operations and prevent recurrence. Conducted Red Team engagements, including phishing simulations, adversary emulation, and Active Directory (AD) attack-path analysis to identify privilege-escalation vectors and enhance organizational resilience. Performed extensive Active Directory security assessments, identifying misconfigurations, toxic trust relationships, and lateral-movement risks, followed by implementing hardening measures to strengthen domain security. Fortified the security posture of financial, healthcare, government, and educational institutions by protecting mission-critical systems, networks, and sensitive data against evolving threats. Engineered advanced security solutions that increased threat detection accuracy, accelerated incident response, and reduced the potential impact of breaches and associated losses.
Education
Bachelor of Technology in Computer Engineering - SPPU, Pune
- · Afghanistan