Mar 2022 – Jul 2023 · 1 yr 4 mos · Bengaluru, Karnataka, India · Remote

• Strategized AWS and GCP security, DevSecOps, Kubernetes (GKE & EKS), and IAC security by creating detailed roadmaps, aligning them with OKRs and infrastructure assessments.
• Enhanced cloud security effectiveness, doubling output for multi-cloud environments (AWS/GCP) through compliance and governance automation.
• Conducted penetration testing for cloud-based applications, serverless architectures, and performed audits and monitoring for critical infrastructure alerts.
• Led the end-to-end security implementation for the migration from AWS to GCP.
• Designed the DevSecOps roadmap and developed tools and platforms for security in CI/CD pipelines, vulnerability management, patch management, and security vaults.

Jan 2021 – Mar 2022 · 1 yr 2 mos · Bengaluru, Karnataka, India · Remote

• Vulnerability Assessment & Penetration Testing (VAPT):
• Led 25+ penetration testing projects covering API, web, mobile, cloud, container, and network security, as well as secure code review using Fortify and manual methods, achieving 100% efficiency across engagements.
• Managed bug bounty programs via HackerOne and Zendesk, driving an 80% increase in issue resolution.
• Streamlined automation of security scans for infrastructure and APIs using 10+ open-source and paid tools (Burp Suite, GitLeaks, WhiteSource, Nessus, SonarQube), integrating automated reporting into CI/CD pipelines via Python and Bash.
• Cloud Security:
• Conducted comprehensive audits and ensured the patching of vulnerabilities across AWS, GCP, and Azure environments.
• Successfully implemented, orchestrated, and performed penetration testing for Web Application Firewalls (WAF) in AWS, GCP, and Azure, including the design of custom security rules to enhance protection.
• Deployed and optimized ELK stack for endpoint security, VPN, and email log analysis, improving network visibility by 60%.

Mar 2020 – Jan 2021 · 10 mos · Bengaluru, Karnataka, India · Remote

• Successful POC & implementation of 50+ opensource tools like Cs-suite,
• Prowler, Clair, Anchor, Gitleaks & 3rd party
• tools Snyk, Bitsight for network and cloud security.
• ◦ Established auditing of 3rd party security/network tools like Hashicorp Vault,
• Cilium for both internal and external perimeter security.

Sep 2018 – Feb 2020 · 1 yr 5 mos · Bengaluru, Karnataka, India · On-site

• Conducted end-to-end vulnerability assessments and penetration testing for 10+ web, mobile applications, APIs, networks, and cloud environments, identifying and reporting critical vulnerabilities.
• Achieved 100% automation in vulnerability scanning using tools such as Nessus, Acunetix, ZAP, and Checkmarx, while also providing comprehensive demos and deployment of open-source security tools.
• Developed an award-winning methodology in a DevSecOps project by integrating secure CI/CD pipelines, resulting in a 70% improvement in vulnerability management through tools like ZAP and Jenkins.
• Deployed and integrated the ELK stack with the SOC team to establish SIEM capabilities, creating custom use-cases, Logstash parsers, validating logs, & generating incidents for over 10 data sources and network monitoring tools.

Jun 2017 – Sep 2018 · 1 yr 3 mos · Bengaluru, Karnataka, India · On-site

• Installed and configured the ELK (ElasticSearch, Logstash, Kibana) stack, gaining a deep understanding of attacker methodologies and log management for improved threat detection and response.
• Acted as a threat hunter, managing multiple client engagements by monitoring, identifying, and escalating security violations.
• Developed custom signature-based security policies and dashboards to detect violators and outliers, improving threat hunting capabilities and identifying system vulnerabilities, while also learning MySQL for advanced threat analysis.
• Supported insider threat monitoring by integrating logs from various servers using Securonix Enterprise, enhancing internal threat detection and response efforts.
• Authored custom security policies for Next-Generation SIEM and UEBA platforms (Securonix Enterprise and Snypr), aligning them with organizational security objectives.
• Performed R&D on syslog-ng and rsyslog, securing log transmission via SSL, while also practicing with vulnerable VMs to study attack patterns and log event correlation.
• Deployed a fully functional VAPT lab, including Active Directory and pfSense firewall, for hands-on exploit testing and vulnerability assessment.

Jan 2017 – Apr 2017 · 3 mos · Delhi, India · On-site

• Linux Administration:
• Worked on server security and regularly conducted VAPT tasks to understand various methods and potential attack vectors on servers, including concepts like port-knocking.
• Secured WordPress and Magento platforms by applying upgrades and best practices, and generated client reports using tools such as WPScan and MageScan.
• Supported R&D tasks, including testing OS Ticket on CentOS 6 for ticketing services and Sensu monitoring tool.
• Conducted log analysis by implementing Graylog, creating regex filters to identify different types of attacks, and maintaining email alerts.
• Provided support and monitoring using Zabbix, along with automating and modifying API scripts. Delivered Zabbix monitoring reports to clients.
• Created bash scripts to streamline the deployment of Zabbix agents across client servers for efficient monitoring.
• Managed and monitored client server backups using R1soft CDP, and worked on SOAP API of R1soft to manage node CDP from a central CDP server. Modified PHP scripts to automate backup tasks from CDP agents and restored backups from nodes to clients when needed.
• Developed various bash scripts and worked with hypervisors (Xen, KVM) to create VMs for practical interview tasks.

Sep 2016 – Dec 2016 · 3 mos · Noida, Uttar Pradesh, India · On-site

• Secops on AWS and Azure with basic implementation.
• Setting up Artifactory pro with Nginx reverse proxy on RHEL 7.
• Implementing SSL Certificates with Security and server hardening on AWS
• and understanding secops concepts.
• Implemented XHGUI ( Graphical interface for visualizing data collected via
• XHProf) on AWS (Centos 6.8) with PHP 5.4 as well as on Ubuntu with PHP7.
• Worked on various Bash and Python scripts to automate various tools.
• Created a simple script for showing gratuitous arp and it's working in the
• network.

Jul 2016 – Aug 2016 · 1 mo · Delhi, India

• Telecommunication Services:
• Understanding GSM network in area in and around Delhi.
• GSM Services and Alarms in OMC, povided support to management team
• along with understanding methods to reduce network downtime.
• Understood concept of L3 Switches and it's use in mobile industry.
• 1 month Internship under Telecommunication Team .
• Project Report on GSM and CALL FLOW.

Jul 2016 – Aug 2016 · 1 mo · Delhi, India

• Completed 2-months training on Redhat Certified System Administrator and
• Redhat Certified Engineer.
• Worked on project Linux from scratch included core concept of Linux and
• submitted to college for lab practice.

Jun 2016 – Jun 2016 · 0 mo · Gurugram, Haryana, India · On-site

• Investigated Live crime cases with various cyber laws applicable.
• Hands-on experience with tools including CDR Analyzer, DumpIt, Volatility,
• Hex Calc.
• Conducted research to test cyber awareness among peers as well as in
• society
• Submitted a project in a group of 6 Team Members including :
• Mobile crime research and development thesis
• Research paper on The Onion Routing
• Attended various seminars by TOP speakers from various government
• organizations for
• Mobile forensics, Crime investigation, CDR Analysis, Hardware keyloggers,
• Web server security.
• Cyber law and Information Technology acts.

Jan 2016 – Feb 2016 · 1 mo · Delhi, India · On-site

• Conducted information security vulnerability assessments and penetration testing projects.
• Evaluated security policies as well as performed technical assessments.
• Gained knowledge of various offensive security methods and implemented security measures using OWASP Top 10 and SANS Top 25.
• Presented and clearly communicated measures for securing networks and web servers.
• Learned to use various tools for capturing and analyzing packets, such as NMAP, Wireshark, and Hping, and created reports on identified network vulnerabilities.
• Completed training in Ethical Hacking and Countermeasures at Bytecode Pvt. Ltd.
• Note: This institute has been closed now. Not associated with it in anyway

Jun 2015 – Jul 2015 · 1 mo · Gurugram, Haryana, India · On-site

• Establishing the networking environment by designing system configuration,
• directing system installation of CISCO Routers and Switches.
• Designing and implementation of Network Topology using Packet Tracer and
• GNS3 .
• Maximizing network performance by monitoring performance, troubleshooting
• network problems.
• Understanding various LAN and WAN Networks with there Protocols
• Securing network systems by establishing and enforcing ACLs, Firewalls as
• well as policies

Feb 2015 – Mar 2015 · 1 mo · Lucknow, Uttar Pradesh, India · Hybrid

• PHP and MySQL web development
• Understanding of OOP design, AJAX, javascript, and MySQL
• Ability to work within HTML/CSS
• Troubleshooting PHP issues and managing server.

Jun 2014 – Jun 2014 · 0 mo · Dehradun, Uttarakhand, India · On-site

• Introduction to Networking and Network Management
• Structured Cabling
• Basic Unix Concepts
• Networking with Linux (with Installation)
• Disk quota & Partitioning
• Routing
• Configuration of
• DNS
• DHCP
• Samba
• Apache
• Sendmail
• Ethical Hacking