• Experienced Web and Network Pentester specializing in securing network infrastructure and web applications using methodologies aligned with OWASP Top 10 and SANS 25 standards.• Proficient in conducting ethical hacking, vulnerability analysis, and threat mitigation using both commercial and open-source tools to safeguard critical systems.• Dedicated to helping clients understand risks, prioritize remediation efforts, and enhance their overall cybersecurity posture through tailored security solutions.

• Performed onsite and remote security consulting including application testing, social engineering, wireless assessment, Security scan, analysis, policies and audit.• Performed security research, analysis and design for all client computing systems and the network infrastructure.• Hands-on Experienced in Network Infrastructure Penetration Testing, Web Application penetration testing.• Performed red-team attack against customer environments, simulating actual attacker tactics, techniques, and procedures.• Executed daily vulnerability assessments, threat assessment, mitigation and reporting activities to safeguard information and ensure protection has been put in place on the systems.• Hands-on experienced in Performing Ethical Hacking using commercial and non-commercial applications.• Performed as an Information Security Analyst and involved in OWASP Top 10 Vulnerability Assessment of various internet facing point of sale web applications and Web services.• Provided fixes; filtering false findings for the vulnerabilities reported in the scan reports.• Assisted customer in understanding risk and threat level associated with vulnerability so that customer may or may not accept risk with respect to business criticality Identifying the critical, High, Medium, Low vulnerabilities in the applications based on OWASP Top 10 and SANS 25 and prioritizing them based on the criticality.

• Monitored the security access and report probable cyberattacks to define escalation path• Performed risk analysis and security operation to find any vulnerability• Created ways to solve production security issues• Recommended security improvements• Assisted with installation and processing of security products and procedures• Conducted scans of networks to find vulnerabilities• Conducted penetration testing• Tested security solutions using industry-standard criteria

• Leveraged specialized software and applications to perform accurate mechanical and manual additions and updates of client record data (Citrix, MS office 360)• Reviewed and corrected client records for accuracy• Established and maintained an in-depth knowledge of hardware and software• Identified and troubleshooted technical issues• Optimized operations efficiencies

• Directed operations of IT team of 6 people responsible for system monitoring• Monitored system and application logs, reviewing records to verify integrity and availability of hardware,server resources, completion of scheduled jobs, backups, and key processes• Scheduled and coordinated periodic on-call rotations for after-hours support• Implemented security measures such as access controls, backups, and firewalls in order to safeguardcompany data• Managed and supported systems in required configuration profile by performing patch maintenance andsystem backup