-Monitor and manage security alerts from key information security dashboards (SIEM, Firewall, Antivirus, WAF and Wordfense etc)-Investigating of suspected / actual security incidents and producing reports.-Assess the impact of security alerts, traffic anomalies to identify malicious actions and preventive measures.-Perform web application vulnerability assessment and penetration test on regular intervals. -Carrying out simulated attack to test the efficiency of the security controls and processes.-Support Internal testing team on web application, API testing & on remediation sphere.

Roles and ResponsibilitiesProject -1 • Handling Akamai Kona WAF Services on products like Site Accelerator & Kona site defender for providing proactive solution by Analyzing and Monitoring the traffic.• Log Delivery System (LDS) configuration and site on-boarding on Akamai Kona Site defender.• IP whitelist, Blacklist and provide exceptions for the sites as per client’s request.• Handling Sumologic log analysis tool for identifying web application threat and alerts using RegEX queries.• Create new regex queries on Sumologic with crafted keywords (payloads) to finding sans25 and top 10 OWASP attacks. • Pentesting manually using Burp Suite in Lab Activities for the new web application vulnerabilities to verify whether Akamai WAF bypassed or not.• Create Security advisories for the identified security misconfiguration and security vulnerabilities in the client web application • Incident tracking and providing the adhoc solutions for the client when needed by analyzing the Root Cause Analysis (RCA)Project -2 • Prepare Project plan on the initial phase of the project • Conduct initial call with the client to understand the scope of the project.• Performing Penetration testing on Web application, Networking, and Mobile Application with OWASP Standards. • Performing Research and Development on attacking web application, Networking, Android Mobile Application vulnerabilities.• Followed OWASP and PTES methodologies in Manual and automatic security testing.• Documenting all the finding in detailed penetration testing report.• Client call with client’s technical team discussing with all the vulnerability found.

Roles and Responsibilities: • Penetration testing to identify vulnerabilities within the Web application, Mobile application and network• Follow security standards as OWASP, PTES and NIST for security testing.• Vulnerabiltiy Assessment using Nesses, Openvas and Qualys.• Corporate Training on information security procedures.