Back to Developers
taral nawal

taral nawal

Cybersecurity Analyst

Ahmedabad, India
80
Profile Score

About

Cybersecurity professional specializing in Vulnerability Assessment and Penetration Testing (VAPT), Offensive Security, and Container Security. Experienced in web application security, OWASP Top 10 and exploitation techniques. Strong expertise in Docker security, container hardening, FIPS compliance, and SBOM analysis. Skilled in building, securing, and deploying container images and automating workflows. Proven ability to collaborate with enterprise clients, deliver technical demonstrations, and resolve real-time production issues.

Skills & Expertise (36)

Penetration Testing Advanced
8.3/10
2
Years Exp
Python Advanced
8.1/10
2
Years Exp
Docker Advanced
8.0/10
0.5
Years Exp
Vulnerability Assessment Intermediate
7.5/10
0.5
Years Exp
MITRE ATT&CK Grype Syft apktool Drozer Wapiti OpenVAS Nuclei Snyk CIS Benchmarks Bash YAML Attack Surface Management Exploitation Techniques Networking Security dirsearch Web Application Security OWASP Top 10 Burp Suite OWASP ZAP SQLmap Metasploit Nmap Nikto Trivy FFUF Subdomain Enumeration Android Penetration Testing Kubernetes Minikube Nessus Invicti

Work Experience

Cybersecurity Intern

Technohacks Edutech

Jun 2024 - Jul 2024

Gained hands-on experience with cybersecurity tools and vulnerability assessment methodologies. Performed basic web application security testing and learned industry-standard VAPT practices. Worked with tools such as Burp Suite, Nmap, and OWASP ZAP for security analysis. Conducted Android application penetration testing using tools such as APKTool and Drozer, including APK decompilation and vulnerability analysis.

Associate DevSecOps Engineer

CleanStart

Jul 2024 - Present

Implemented secure container hardening practices using STIG guidelines and enterprise security standards. Built and maintained FIPS-compliant Docker images, ensuring compliance across enterprise environments. Designed and automated declarative YAML-based pipelines for Docker image creation, improving consistency and reducing manual effort. Collaborated with MNC clients, delivering live demonstrations on secure deployment and container usage. Provided real-time troubleshooting support and resolved production issues during live client sessions. Gained strong experience in building, securing, and deploying container images at scale. Performed vulnerability assessments and penetration testing on web and containerized applications. Conducted attack surface mapping and identified security gaps across applications. Implemented secure container configurations following STIG compliance practices. Developed automation tools for converting YAML configurations into secure Dockerfiles. Built tools for SBOM comparison and vulnerability analysis. Performed vulnerability scanning using Trivy, Grype, Syft, and Snyk. Conducted infrastructure vulnerability assessments by scanning AWS and GCP instances using Nessus Professional. Scanned system images (ISO files) using Nessus Professional to identify vulnerabilities and misconfigurations. Developed a FIPS compliance checker for container images. Created a Python-based scanner for detecting vulnerable dependencies of Ubuntu Debian Packages.

Education

Bachelor of Engineering (Computer Engineering) - Gandhinagar Institute of Technology

2021 - 2025 · Afghanistan

Certifications

No certifications added yet

Interested in this developer?

Profile Score Breakdown

📷 Photo 10/10
📄 Resume 10/10
💼 Job Title 10/10
✍️ Bio 10/10
🛠️ Skills 20/20
🎓 Education 10/10
⏱️ Experience 5/15
💰 Rate 0/5
🏆 Certs 0/5
Verified 5/5
Total Score 80/100

Profile Overview

Member sinceApr 2026

Availability Details

Visa Status

Citizen

Relocation

Open to Relocation

Skills (36)

Click a skill to find developers with the same skill

Penetration Testing Python Docker Vulnerability Assessment MITRE ATT&CK Grype Syft apktool Drozer Wapiti +26 more

Similar Profiles

PS

Prasanth S

Cybersecurity Professional

SS

Srivigneshwaran S

CyberSecurity

JK

JAYA KUMAR

CyberSecurity

Adhivivek Gudla

Adhivivek Gudla

Cybersecurity

View All Developers →