About
Experienced cybersecurity professional, eJPT certified, with 3 years of expertise in vulnerability assessment and management, compliance management, penetration testing, and bug hunting. Recognized by the Indian government (NCIIPC RVDP) for identifying and reporting over 25 vulnerabilities in Critical Information Infrastructure. Dedicated to enhancing security frameworks and passionate about contributing to innovative environments that elevate cybersecurity standards. Skilled in risk assessment, threat analysis, and security protocol implementation, with a strong commitment to collaboration and driving excellence in cybersecurity initiatives.
Skills & Expertise (14)
Work Experience
Penetration Tester
Twintech Solutions
Jun 2019 - Jul 2019
Developed an automated tool for Subdomain Takeover, enhancing detection efficiency by integrating multiple open-source security tools. Conducted thorough security audits using industry-standard methodologies to identify and remediate critical vulnerabilities. Monitored social media platforms and online channels to analyze emerging industry trends and potential security threats proactively. Demonstrated expertise in identifying and mitigating OWASP Top 10 vulnerabilities, improving application security posture significantly.
Senior QA Software Engineer (vulnerability Assessment & Management)
ConSecure Technologies Private Limited (ConnectSecure)
Jan 2023 - Apr 2025
Orchestrated manual testing and quality assurance for the ConnectSecure agent, overseeing the status of all operating systems, retrieving critical information including software inventory, system details, and Active Directory data. Conducted office network scans to gather device information, identify vulnerabilities, and compile comprehensive reports for collaboration with the development team to release fixes. Leveraged Nmap and protocol scanning techniques to perform in-depth network scanning and fingerprinting, identifying and assessing vulnerabilities, and analyzing results to effectively prioritize and mitigate security threats. Executed comprehensive testing for personally identifiable information (PII) scans, using external scanning tools to verify the ConnectSecure agent workflow across all operating systems while closely monitoring system performance. Utilized SMB (Server Message Block), SNMP (Simple Network Management Protocol), and SSH (Secure Shell) protocols to securely retrieve information from remote machines and network devices. Oversaw patch updates and maintenance of databases to ensure seamless process functionality. Produced vulnerability management data reports to facilitate informed decision-making. Developed and maintained Bash shell scripts and PowerShell scripts to automate testing processes, optimizing testing workflows. Conducted research and development on Qualys, Runzero, Roboshadow, Nessus, NVD, Shodan, internal and external scanning, cloud compliance, and attack surface management.
Technical Support Engineer
Hashinclude Computech Private Limited (ConnectSecure)
Feb 2022 - Jan 2023
Delivered expert technical support for ConnectSecure, manually troubleshooting system and security issues. Identified and resolved critical security issues during system audits, enhancing overall system integrity and reliability. Proactively communicated with clients regarding potential security risks, leading to timely interventions and enhanced system security, achieving a 5-star rating for customer satisfaction. Trained new team members on vulnerability assessment protocols and tools, enhancing team efficiency and knowledge retention.
Education
B.Tech/B.E. | Computer Science Engineering - Kalasalingam Institute of Technology
- 2019 · Afghanistan
