• Undertook comprehensive Vulnerability assessments and Penetration Testing activities (VAPT) encompassing diverse technological domains, including network infrastructures, web applications (SAST & DAST) and mobile applications.• Worked closely with stakeholders and Developers to prioritize remediation efforts based on risk levels associated with identified vulnerabilities and create a tracker for the status (open/close) of the vulnerabilities on a calendar basis.• Conducted VAPT (Vulnerability Assessment and Penetration Testing) on web applications and infrastructure using frameworks such as OWASP, SANS 25, NIST CSF, MITRE, and ISO 27001, ensuring compliance with regulations like HIPAA, PCI DSS, and GDPR.• Created detailed VAPT assessment reports, providing detailed explanations of identified vulnerabilities, proof of concept for each finding and step-by-step recommendations for remediation or mitigation.• Performed vulnerability management with Tenable Security Center, creating repositories, scan zones, and SPOC accounts for new business lines, managing IP allocations, and administering the platform.• Conducted monthly infrastructure scans, identified and reported vulnerabilities, and presented open points and remediation progress with vulnerability tracker to the Chief Information Security Officer (CISO).• Performed wireless penetration testing on WPA Enterprise, WPA3 and WPA2 wireless access points.• Collaborated with IT teams to remediate vulnerabilities discovered during assessments by providing proper remediation plans, strengthening overall security posture.• Participated in various Red Teaming activities with multiple clients.

• Conducted vulnerability assessments and penetration testing for web applications,• Prepared detailed reports on vulnerabilities, including risk analysis and remediation recommendations.• Managed the tracking and resolution of vulnerabilities.• Assited in Red Team activities and comprehensive report creation.• Conducted regular automated tool scans to monitor for new threats and keep security measures current.• Completed advanced training in penetration testing and cybersecurity tools

• Received training in foundational cybersecurity principles, including vulnerability and risk assessment, threat modeling, and secure coding practices.• Earned certifications such as ECSA (ECCouncil Certified ecurity analyst) and CEH (Certified Ethical Hacker) to enhance skills.• Completed hands-on workshops in web and network penetration testing methodologies.and attended sessions on vulnerability management tools such as Nessus, Metasploit, and Wireshark.• Learned best practices in reporting and communicating vulnerabilities to stakeholders.• Participated in ethical hacking and cybersecurity awareness training to enhance understanding of the latest industry trends and threats.

• Designing, implementing, and managing Active Directory Domain Services (AD DS), including deployment and configuration of domain controllers, group policies, user and group management, DNS, and other related services.• Provided technical assistance and support to end-users regarding hardware, software, network, and other IT-related issues.• Respond to support requests, troubleshoot problems, and resolve technical issues in a timely manner.• Install, configure, and upgrade computer hardware, software, and operating systems.• Set up and maintain computer networks, including routers, switches, and wireless access points.• Conduct system diagnostics and perform routine maintenance to ensure optimal performance• Document support incidents, resolutions, and standard operating procedures.