• Leading Application Security Team: Spearhead a dynamic team of cybersecurity experts focused on enhancing the security of critical applications through proactive assessments, code reviews, and vulnerability remediation.Leading Secure Architecture and Risk Assessment Team: Manage a team responsible for evaluating and enhancing the security of system architectures and conducting comprehensive risk assessments to identify and mitigate potential vulnerabilities.• Hardware Vulnerability Assessment (VAPT): Conduct in-depth assessments of hardware systems to identify vulnerabilities, design flaws, and weaknesses, and develop strategies for improving hardware security.• Product Evaluation: Assess and evaluate third-party security products and solutions to ensure they meet the organization's cybersecurity standards and align with business needs.• Offensive Security: Engage in offensive security operations to identify weaknesses in systems, networks, and applications, leveraging ethical hacking techniques and vulnerability exploitation to improve overall security posture.• Red Teaming: Lead red team exercises to simulate real-world cyberattacks, testing the organization's defenses and incident

• Leading Threat Research Team in terms of Malware Analysis, Threat Intelligence and Cyber Crime.• Architecture Review/Security Threat Modelling• Actively participating and contributing in every cyber security initiative• Reviewing the research work and analysis to make sure that the audience is receiving quality work.• Resolving Issues for client in terms of Intelligence• Actively involved in automation various task and work.• Performing Malware Analysis and Writing Research Blog

• Performing Network and infra penetration testing• Performing Mobile/Web/Thick client/API etc, security assessment along with secure code review• Coordinating with the concern stakeholder to communicate vulnerability description, risk, impact, recommendation to mitigate cyber risk and drafting report in defined templates which includes high level and low-level understanding for concern stake holder• Managing a team for performing application secure architecture review from Information security perspective for various banking applications• Conducting architecture assessments for on-premise applications, SAAS Cloud applications hosted on AWS/Azure/GCP, Hybrid Applications, service mesh application architecture and container/DevOps/DevSecOps based environment

• Developed automated Nessus scanner and report generation as a part of contribution to automating the tasks won Turbo Award for the innovative idea for the year 2019• Created C&C in C++/Python for Red Team Assessments.• Experience in performing Network VA/PT for complex client environments • Managed the Web Application and Mobile Application VA/PT team for EY Internal App Certification• Responsible to interact and agree on the scope of the work, client management and act as a quality SPOC for multiple engagements• Actively participated in Tool Development like C&C Exploit Framework, Automations and etc.

• Created Web, Network and Endpoint penetration testing and methodology for the team.• Research threats and attack vectors that impact Organization’s applications and infrastructure.• Development of Tool for Network, Web & Reverse Engineering• Infrastructure Design and Audit (ESXI, vCenter, vRealize Automation, NSX)• Executed Wi-Fi Penetration Testing and Network Penetration Testing• Performed security audit of Firewalls, IPS, Routers, AV servers etc.• Team Building: Knowledge sharing, training, motivating and development of team members.• Build testing tools and platforms to encourage reusable and measurable approaches to assessment.• Respond to external vulnerability researcher inquiries and vulnerability reports.• Configuration of Infrastructure and its Auditing.