● Managed security incidents throughout their lifecycle, from detection and containment to resolution and recovery.● Developed custom exploits and payloads with Metasploit tailored to specific security assessments, addressing unique client or project requirements.● Conducted rigorous security assessments of cloud-based services and environments, identifying and mitigating risks associated with cloud adoption.● Conducted extensive research on threat intelligence sources to proactively identify and address emerging cybersecurity threats.● Evaluated and recommended security hardware and software solutions to strengthen the organization's security infrastructure.● Developed and maintained incident response plans and playbooks for the SOC, ensuring structured handling of security incidents.● Performed comprehensive network and application layer security assessments, identifying vulnerabilities and implementing effective controls.● Utilized Metasploit to exploit known vulnerabilities, assessing system resilience and evaluating the impact of successful attacks.● Developed and executed comprehensive security testing plans for applications and systems, identifying and rectifying vulnerabilities.● Swiftly responded to and investigated security incidents, conducting in-depth post-incident analysis to prevent future occurrences.● Integrated SAST and DAST tools into CI/CD pipelines to enforce security checks at every stage of development.● Actively guided software and application developers to incorporate strong security measures into their projects.● Utilized Nmap for version detection, determining specific software and versions on networked devices, aiding in vulnerability assessment.● Analyzed and assessed security risks related to new technology implementations, providing recommendations for risk mitigation.● Used Wireshark for real-time monitoring of data packets, identifying network vulnerabilities, unusual traffic patterns, or potential breaches.

● Skilled in providing actionable guidance and recommendations to stakeholders for addressing identified vulnerabilities and enhancing overall security posture.● Proficient in customizing SAST & DAST scan configurations and rule sets to meet application-specific security requirements, coding standards, and compliance mandates.● Proficient in configuring and managing secure wireless networks and protocols, including Wi-Fi Protected Access (WPA/WPA2) and Extensible Authentication Protocol (EAP), to prevent unauthorized access and data eavesdropping.● Experienced in implementing security controls and configurations to protect sensitive data and ensure compliance with regulatory requirements, industry standards, and organizational policies.● Proficient in troubleshooting cryptographic issues and providing cryptographic advice and support to development teams and stakeholders.● Ensured compliance to required standards, procedures and guidelines by performing Risk and Compliance assessments of new scope or existing assets in the Uptycs tool. ● Conducted Risk / Compliance / Vulnerability scans, Documented the results and effectively presented the key findings to the stakeholders. Sensitivity: Internal & Restricted ● Applied system hardening procedures following legal and regulatory compliance standards such as GDPR, PCI-DSS, CIS, HIPAA and NIST. ● Collaborated with remediation team to ensure that appropriate remediation efforts/compensating controls and track them to completion as per the corporate policies. ● Investigated events or incidents of apparent compliance breaches and assign to the appropriate team using tools like Jira. ● Contributed content for monthly, quarterly and annual reports and presentations for senior management, stakeholders and the Governance, Risk and Compliance (GRC) team. ● Participated in audits related to security and compliance.

● Implemented and maintained robust Data Loss Prevention (DLP) solutions to protect against data breaches.● Collaborated effectively with external entities, including law enforcement agencies, to investigate cybercrime incidents.● Assisted in regulatory compliance audits and reporting to ensure adherence to legal and industry requirements.● Conducted threat intelligence research to stay updated on emerging threats and attack vectors, enhancing SOC preparedness.● Managed security certificates and keys to maintain cryptographic security within the organization.● Developed incident response playbooks and procedures to streamline response efforts and reduce downtime.● Enforced secure coding guidelines and best practices across development teams to enhance security posture.● Managed and responded to security alerts from intrusion detection systems (IDS) and intrusion prevention systems (IPS) within the SOC.● Collaborated with IT and security teams to ensure comprehensive security monitoring and response within the SOC.● Conducted security drills and tabletop exercises to test incident response plans and improve organizational preparedness.● Managed Identity and Access Management (IAM) systems to enhance user access control and security.● Monitored real-time traffic with IDS/IPS Systems to identify and respond promptly to security incidents.● Collaborated with threat hunters to proactively detect and respond to emerging threats.● Configured rule sets in IDS/IPS Systems to block or trigger alerts for suspicious network activities, implementing proactive security measures.● Securing the organization from potential Cyber threats /attacks, ensuring the continuous and effective of Security Incident Response team with the help of SIEM (Arcsight), Demisto, Symantec DLP, Nexpose, Stealthwatch and Nmap. Performed Security scans on networks, routers and servers to detect vulnerabilities like exposed TCP/UDP ports, infections like ransomwares, Trojans, viruses, etc.