Mar 2024 – Dec 2024 · 9 mos · Remote

• Configured and deployed various vulnerable labs on AWS, including CloudGoat and custom setups, to strengthen practical skills in cloud security.
• Documented a detailed AWS penetration testing framework, resulting in the identification and
• remediation of 5+ vulnerabilities, ensuring enhanced security and safeguarding sensitive customer data.
• Communicated directly with clients to gather requirements, ensuring their needs were met and they
• were satisfied with the security services provided.
• Performed server hardening for clients, enhancing system security by ensuring all configurations were up-to-date and in line with best practices.
• Created and designed challenges for the intern hiring process, effectively assessing candidates’ skills and suitability for cybersecurity roles

Jun 2023 – Mar 2024 · 9 mos · Remote

• Executed API penetration testing, successfully identifying and mitigating 21 high-level vulnerabilities, including issues such as Broken Object Level Authorization (BOLA), Broken Function Level Authorization (BFLA), and mass assignment.
• Mastered data loss prevention principles and implemented an automated PowerShell script for Windows environments, reducing data security incidents by 40%.
• Researched and identified 13 Linux-specific Data Loss Prevention (DLP) restrictions
• Developed a sophisticated Bash script to apply and revert these restrictions on Linux systems, showcasing proficiency in scripting and system security.
• Implemented and configured various vulnerable labs on AWS, including CloudGoat and custom labs, to fortify practical skills in cloud security.
• Acquired knowledge in AWS penetration testing, contributing to a robust understanding of cloud security best practices.

Dec 2022 – Jan 2023 · 1 mo · Pune District, Maharashtra, India · On-site

• Conducted web application and API penetration testing on various web applications, identifying and
• evaluating vulnerabilities to ensure the security of client systems and data.
• Performed vulnerability assessments and penetration testing on multiple IPs, providing clients with
• comprehensive and actionable reports on identified vulnerabilities and recommended remediation actions.
• Conducted Pentesting and prepared reports for applications used in mobile devices, such as Android and iOS operating systems
• Design/Improvement and Implementation of ISMS in compliance with ISO 27001
• Review the existing corporate policies and write new Policies for the organization

Aug 2022 – Oct 2022 · 2 mos · Pune District, Maharashtra, India · Remote

• Scanned websites for malware and security risks daily for 3 months vulnerabilities in systems
• Investigated 10+ application for security flaws
• Created comprehensive security reports
• Worked on tools like Nikto, Burpsuite, Httpx, Nuclei, Sudomy, Waybackurls etc.

Oct 2021 – Dec 2021 · 2 mos · California, United States · Remote

• Conducted scans on ten labs with various security tools to identify vulnerabilities in systems
• Analyzed scan results and provide remediation for all ten labs
• Performed penetration tests on other five systems to simulate real-world attacks and assess security risks
• Operated on tools like nikto, burpsuite, nuclei, etc.

Oct 2019 – May 2021 · 1 yr 7 mos · Nagpur, Maharashtra, India · On-site

• Repaired malfunctioning of more than 10+ computer systems and components
• Fullfill regular maintenance and upgrades on computer systems and components
• Assembled more than 12+ workstations with computers and necessary peripheral devices
• Trained more than 25+ users on how to operate new computer systems and software