Oct 2024 – Jan 2025 · 3 mos · Bengaluru, Karnataka, India · On-site

• Previously known as Synopsys SIG, the company was acquired by Clearlake Capital and Francisco Partners and rebranded as Black Duck Software Inc.

May 2023 – Sep 2024 · 1 yr 4 mos · Bengaluru, Karnataka, India · On-site

• Conducted penetration testing on web applications, APIs, and mobile platforms (both Android and iOS), as well as secure code reviews, to identify and address security vulnerabilities and enhance system robustness.
• Reviewed and analyzed security policies and reports, such as SOC 2 and previous penetration test results, providing clients with tailored recommendations for additional testing and security improvements.
• Created detailed and technical reports, providing comprehensive analyses of identified vulnerabilities, their potential impacts, and actionable remediation guidance to support client efforts in strengthening their security posture.
• Collaborated with development and security teams to ensure timely resolution of identified issues, offering expert advice and solutions to enhance overall system security and compliance.

Oct 2022 – Apr 2023 · 6 mos · Mangaluru, Karnataka, India

• Conducted thorough Vulnerability Assessment and Penetration Testing (VAPT) on web applications, APIs, and Android apps, identifying and addressing security flaws to bolster system security.
• Produced detailed and actionable reports outlining vulnerabilities and their potential impacts, as well as recommended fixes to guide development and security enhancements.
• Facilitated educational sessions for engineering students, providing hands-on cybersecurity training and fostering practical skill development
• Organized and led Capture the Flag (CTF) events, engaging participants in security challenges to sharpen their cybersecurity skills.

Jan 2022 – Oct 2022 · 9 mos · Mangaluru, Karnataka, India

• Performed a 10-month internship in my final year of undergraduate studies, combining theoretical knowledge with practical application in the industry.
• Conducted thorough Vulnerability Assessment and Penetration Testing (VAPT) on web applications, APIs, and Android apps, identifying and addressing security flaws to bolster system security.
• Produced detailed and actionable reports outlining vulnerabilities and their potential impacts, as well as recommended fixes to guide development and security enhancements.

Aug 2021 – Dec 2021 · 4 mos · Kozhikode, Kerala, India

• Conducted penetration testing on web applications, APIs, and Android apps, identifying and documenting security vulnerabilities in live client projects.
• Delivered detailed and actionable reports outlining findings, risk assessments, and recommended remediation strategies to enhance security posture.
• Developed hands-on experience in security testing and client collaboration through direct involvement in real-world projects.