About
I have worked as a VAPT Analyst, Web Application Pen tester and Application Security Analyst with 4.8 years of hands-on experience in web, API, and penetration testing. Expertise in manual VAPT, vulnerability exploitation, CVSS scoring, and false positive analysis using tools such as Burp Suite, Nmap, and Metasploit. Strong knowledge of OWASP Top10, API Security Top 10, and SANS Top 25 with proven ability to deliver clear remediation guidance and improve security posture across enterprise environments.
Skills & Expertise (29)
Work Experience
IT Security Executive–Web Application Security Testing
Yalamanchili Engineers Private Limited
Nov 2020 - Jul 2025
Conducted Vulnerability Assessment and Penetration Testing (VAPT) for 50+ web applications to identify and remediate security weaknesses. Performed comprehensive security testing for banking and financial applications, reducing critical vulnerabilities by 90%. Identified and exploited vulnerabilities aligned with OWASP Top 10 and SANS Top 25 security risks. Ensured application security compliance with OWASP, PCI-DSS, and RBI guidelines. Planned, executed, and documented risk assessments; communicated security risks and remediation strategies to project stakeholders. Performed vulnerability validation, false-positive analysis, and provided actionable remediation recommendations to development teams. Developed and implemented security procedures and remediation plans to strengthen overall application security posture. Collaborated with cross-functional teams including developers, DevOps, and business teams to close vulnerabilities efficiently. Implemented and optimized Load Plans for automated data loads, ensuring high availability and timely data refresh cycles.
Education
B.Tech - Jawaharlal Nehru Technological University, Kakinada
- · Afghanistan
