About
Experienced Penetration Tester and Network Security Specialist with expertise in firewall rule reviews, exception management, and vulnerability assessments. Skilled in performing end-to-end web, network, and infrastructure security testing, with a focus on identifying, analyzing, and remediating vulnerabilities. Proficient in network traffic analysis and firewall configuration (Fortinet, Cisco, etc.). Adept at aligning security controls with organizational goals and compliance frameworks such as ISO 27001, NIST, and OWASP.
Skills & Expertise (14)
Work Experience
Associate Information Security
Nanjgel Solutions
Jul 2024 - Dec 2024
Consultant Information Security
Anb Solutions
Jan 2025 - Present
Conducted web application security assessments using Burp Suite, identifying OWASP Top 10 vulnerabilities. Delivered comprehensive security reports and remediation recommendations through structured presentations. Assisted in planning and executing IT audits in compliance with ISO 27001, performed IT risk assessments, identified system vulnerabilities, and recommended risk mitigation controls. Collected and analyzed audit evidence, prepared audit workpapers, documented audit findings, and supported the lead auditor with audit coordination, scheduling, stakeholder communication, and follow-up actions. Perform vendor risk assessments and classification to evaluate cybersecurity threats, compliance risks, and severity levels associated with third-party engagements.
Education
B.E. CSE (IoT and Cybersecurity including Blockchain) - Lokmaanya Tilak College of Engineering
2021 - 2024 · Afghanistan
Diploma in Information Technology - D.Y.PATIL Polytechnic
2019 - 2021 · Afghanistan
