About
Results-driven Software QA Engineer with 2+ years of combined experience in manual testing, test automation, and cybersecurity — spanning enterprise SaaS platforms, government-grade systems, and vulnerability assessment. Proven ability to design end-to-end test strategies from scratch, build maintainable Selenium automation frameworks using the Page Object Model, and validate APIs at scale using Postman and REST Assured. Adept at embedding quality practices within Agile/Scrum teams and CI/CD pipelines to accelerate release velocity without compromising software integrity. Recognized security researcher with responsible disclosure credits, holding certifications in Ethical Hacking (CEH), networking (CCNA), and cybersecurity, complemented by hands-on OWASP and VAPT expertise.
Skills & Expertise (34)
Work Experience
Cybersecurity Analyst
Intellify
Oct 2019 - Jun 2020
Conducted Vulnerability Assessment and Penetration Testing (VAPT) engagements on web applications and network infrastructure for multiple clients, identifying critical vulnerabilities including SQL Injection, XSS, IDOR, authentication bypasses, and misconfigured access controls. Utilized industry-standard tools including Burp Suite Pro, OWASP ZAP, Nmap, Metasploit, and Nikto to systematically assess application and network attack surfaces. Produced detailed security assessment reports with CVSS-scored findings, proof-of-concept documentation, and prioritized remediation recommendations tailored for both technical and executive audiences. Achieved recognition in the TripAdvisor Security Hall of Fame for responsible disclosure of a significant security vulnerability, demonstrating ethical hacking practices and professional integrity. Provided post-assessment advisory on security hardening measures — including input sanitization, parameterized queries, proper session management, and CSP headers — to reduce client attack surfaces.
Quality Assurance Engineer – L1
Chetu Inc.
Nov 2024 - Present
Owned end-to-end QA coverage for 3+ enterprise web and mobile applications, authoring and executing 200+ structured test cases per sprint cycle covering functional, regression, integration, and exploratory testing scenarios. Identified and documented 150+ critical and high-severity defects with detailed reproduction steps, root cause analysis, and environment metadata in JIRA, achieving an average defect turnaround resolution of under 48 hours. Engineered and maintained a modular Selenium WebDriver automation framework in Java using the Page Object Model (POM) design pattern, reducing manual regression effort by ~40% and enabling reusable, maintainable test scripts. Integrated the automation suite into Jenkins CI/CD pipelines to trigger regression runs on every build, enabling rapid feedback loops and early defect detection before QA sign-off stages. Executed comprehensive cross-browser compatibility testing across Chrome, Firefox, Safari, and Edge, and performed mobile validation on Android/iOS devices and emulators, ensuring consistent UX parity across all target platforms. Automated REST API validation using Postman and REST Assured — covering endpoint response codes, data schema integrity, authentication flows, and error handling edge cases for 30+ service endpoints. Conducted performance testing using Apache JMeter to simulate concurrent user load, identifying bottlenecks and generating actionable reports for development teams prior to production releases. Applied OWASP Top 10 security testing principles to identify and report potential vulnerabilities including XSS, CSRF, and insecure direct object references (IDOR), collaborating with the dev team on mitigations. Contributed to sprint planning, risk-based test estimation, and test closure reports, facilitating smooth UAT handoffs and client demos in an Agile/Scrum delivery model.
Software Development Engineer (Intern)
Ernst & Young (EY)
Dec 2023 - Mar 2024
Engineered and rigorously tested scalable backend and frontend modules for a government digital platform serving a user base of 10,000+ active citizens, focusing on reliability, data accuracy, and session integrity. Drove a 35% measurable improvement in platform performance through targeted optimization of database queries, API call efficiency, and front-end rendering — validated via before-and-after JMeter benchmarks. Strengthened authentication reliability by identifying and resolving race conditions and token expiry edge cases in the login and session management flows, significantly reducing authentication failure incidents. Collaborated closely with backend developers, UI/UX designers, and product owners in two-week Agile sprints, participating in daily standups, sprint reviews, and retrospectives to ensure high-quality, on-schedule releases. Authored test plans, test case suites, and test execution reports aligned with government compliance requirements, ensuring traceability from requirements to test coverage.
Education
Bachelor of Computer Applications – Artificial Intelligence - IMS Ghaziabad
2021 - 2024 · Afghanistan
