About
A skilled cybersecurity engineer specializing in advanced red team operations, application security testing, and regulatory compliance. Adept at strengthening digital ecosystems through strategic risk mitigation, infrastructure fortification, and cultivating a culture of security excellence within
Skills & Expertise (11)
Work Experience
Security Engineer
Freshworks
Sep 2024 - Present
Responsible for performing appsec testing for Customer Experience Products. Perform Web Application Security and API testing using SAST and DAST tools. Triaging vulnerability finding reports from the Bug bounty platforms. Collecting evidences to support GRC team for compliance certifications and security audits.
Security Engineer
Atomicwork
Nov 2024 - Apr 2025
Performing Product Security Testing using SAST and DAST tools. Performing VA testing on Cloud Environments. Performing Phishing Simulations and conducting security trainings for awareness. Collecting Evidence for compliance certification and working with CISO closely to get the compliant certification. Managing IAM on cloud environment. Managing Infrastructure security. Maintaining good security score by thorough monitoring and implementing recommendation from independent security score providing vendors.
Associate Software Engineer
Hexaware Technologies Pvt. Ltd.
Mar 2022 - Aug 2024
Responsible for leading Red Team activities throughout the organization. Managing Attack Surface and Darkweb monitoring using OSINT TTPs. Perform VAPT on architecture and networking devices. Perform configuration audit to ensure system hardening compliance. Perform Web Application Security and API testing using SAST and DAST tools. Provide Security Awareness training throughout the organization. Actively participating in NIST, ISO, SOC and PCI-DSS audits. Performing supplier risk assessment from technical aspects.
Cyber Security Intern
Gurugram Police Cyber Cell
Jun 2021 - Jul 2021
Working with law enforcement agency, Work on live cases on cyber frauds and forensics, Making report of the cases
Security Engineer
C2Treds
Apr 2025 - Present
Established Security and Governance Policies. Established SIEM solution in the organisation. Performing Application Security Testing (SAST, DAST, SCA). Managing Attack Surface Monitoring. Conducting TPRM and Risk Assessment for Internal Services. Conducting VAPT for Cloud and Infrastructure using different security tools. Take active participation in Change Management Procedure.
Education
Bachelor of Engineering - Chandigarh University
2018 - 2022 · Afghanistan
Higher Secondary - WBCHSE Board
2016 - 2018 · Afghanistan
Certifications
CAP (Certified Appsec Practitioner)
· 2024
CCSP
· 2024
Certified Ethical Hacker (CEHv11)
· 2024
Microsoft Azure Certified (AZ-900 | AZ-500)
· 2023
Qualys VMDR Certified
· 2023
Security Intelligence Engineer V2 Mastery Award
· 2021
Microsoft Technology Associate (Security Fundamentals)
· 2020
Fortinet Certified (NSE -1 | NSE - 2)
· 2020
Interested in this developer?
Profile Score Breakdown
Profile Overview
Availability Details
Relocation
Open to Relocation
