About
Obtain a challenging position in information security for conducting full-scope Vulnerability Assessments and penetration tests to secure company assets and grow mutually.
Skills & Expertise (20)
Work Experience
Penetration Testing Senior Engineer
Sony India Software Centre Pvt Ltd
Aug 2025 - Oct 2025
Performing manual Web application security testing using burp suite, Firefox add-ons, kali Linux tools and Automated DAST Testing using Burp suite Pro, App scan. Performing vulnerability assessment and penetration testing on Network using KALI, Nmap, Nessus, Metasploit, SSL Scan. Performing manually doing manual Network Penetration testing using tools like Nmap. Performing API’s security testing manually using tools like postman and Burp suite. Performing Application vulnerability assessments with manual testing and automated scanner. Reporting Vulnerability findings to Application owners and helping them in remediation of vulnerabilities. Performing due diligence on new projects to ensure that they align to client security policies & standards. Conducting periodic Security Risk Assessments for High-Risk applications. Evaluating the application security classification by conducting risk assessment meeting with clients. Performing exploitation, vulnerability and penetration assessments that identify current and future internal and external security vulnerabilities. Creating Jira IDs for tracking and remediation cycle.
Security Analyst
Carolina Information and Technologies Pvt Ltd
Jun 2020 - Dec 2024
Application Security Analysis (Manual & Automated) experience of web applications using Burp Suite tools. Experience in remediation review and recommendations to vulnerabilities identified during Security Assessments. Interacting with Application development teams to guide them on the observations reported and the impact of its exploitation. Suggesting remediation recommendations for failed controls for vulnerability assessment and code reviews. Preparing executive reports for every assessment. Also conduct closing meeting calls with respective clients. Provide effort estimates for conducting security assessments. Assisting short term client engagements for Vulnerability assessment and Penetration Testing. Trained dev teams on imparting security related incidents and the remediation to secure the applications from external threats. Reporting the Web Application testing vulnerabilities which are found during Manual Testing and depicting/justifying the false positive and true positive vulnerabilities in Automated App scan reports. Conducted threat modeling using the STRIDE framework to identify potential security threats and recommended mitigation strategies. Scanning the entire network by configuring related sites in Nexpose and generating the vulnerability reports accordingly.
Education
M Pharmacy - Raghavendra Institute of Pharmaceutical Education
- · Afghanistan
Certifications
No certifications added yet
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Not Open to Relocation
Skills (20)
Click a skill to find developers with the same skill
