Jan 2024 – Jun 2025 · 1 yr 5 mos

• Wanted to take an year off from corporate life and sharpen my skills in the cybersecurity field as a full time work.
• Studied for OSCP for 1.5 months and cleared it.
• Went through the complete portswigger labs for a month
• Studied for OSWE for three full months. Yet to qualify.
• Did full time bug-bounty for few months. Secured more than twenty MNCs on platforms like hackerone/intigriti and earned a maximum bounty of four digits (USD) in a single payout through it.
• Learning cloud security. Earned MCRTA and AWS-CCSP till now.
• Got 1 CVE in a popular open-source tool (1.5k+ stars)

Apr 2022 – Dec 2023 · 1 yr 8 mos · Gurugram, Haryana, India

• Handled different security aspects of the entire enterprise
• Created multiple security checklists as a standard for conducting various security audits like wireless pentesting, network architecture review, web application pentesting and more.
• Performed extensive research on multiple enterprise level security tools based on various factors like infrastructure requirements, applicability, feasibility, maintenance costs and many more to further enhance the security posture of the enterprise.
• Worked on various security aspects of ISO 27001 compliance and GDPR like security documentation, incident management, ISMS training, security assessment roadmap and more.

Sep 2019 – Nov 2021 · 2 yrs 2 mos · New Delhi, Delhi, India

• IT Security Asssessments
• Conducted multiple IT infrastructure security assessments like vulnerability assessment and penetration testing, secure configuration audit, Wifi assessment, and more for 20+ industry-leading enterprises in India. These security assessments include risk assessment of devices like servers, firewalls, network devices, endpoints, and many more.
• Prepared 40+ reports which documented the security assessment findings explaining their possible business impact along with providing patch support for its mitigation.
• Performed extensive research on 120+ security controls to enhance the security assessment practice.
• Orchestrated teams to ensure closure of projects by meeting the client's requirements.
• Translated customer requirements to technical solutions for easy consumption of the team.
• Achieved reporting quality index of 90% for all clients by maintaining a seamless communication channel to provide a good customer experience.
• Researcher and developer for the SAFE product
• Conducted research and analysis of 10+ third-party security assessment tools for integration with the in-house product.
• Introduced new security controls across multiple domains like cloud security and web security to enhance the product.
• Managed a team of 6 interns assigning their day-to-day tasks and doing QA of their deliveries.

Jan 2019 – Sep 2019 · 8 mos · New Delhi, Delhi, India

• Learned about the basics of cybersecurity from the scratch like TCP/IP protocol, web app pentesting and infrastructure pentesting.
• Worked on automation of recurring tasks to decrease the deliverable timelines.