Information Security Web
Resume:
PROFESSIONAL SUMMARY
Information Security Analyst with over 3+ years of security experience. Experience in a broad range of roles and verticals (Government, Education and IT sectors). Strengths include Web Application penetration testing, Network vulnerability assessments.
Analytical and articulate; strong ability to plan, prioritize and deliver in complex projects under aggressive timelines
Expertise in Web Application Security Testing, ethical hacking
Hands on experience on OWASP TOP 10
Technical Proficiencies
Platforms
Windows/Linux server operating systems, Kali, Ubuntu etc…
Network Testing
Nmap, Metasploit Pro, Nessus, etc.
Web Testing
Burp suite, ZAP proxy, SQLmap etc.
EMPLOYMENT HISTORY
Cycops Information Security Services, Hyderabad (Information Security Analyst)
I PRIMED Educational institution,Banglore (cyber security trainer )
CERTIFICATION
Certified security professional from EC council (CEHv10)
Key Deliverables
Responsible for IT Risk/ Technical Compliance assessment activities such as Vulnerability assessment, Penetration test for network and web applications.
Network vulnerability Testing for corporate infrastructure
Applications security assessments assignment for corporate business applications
Handled Operational work with respect to Web application Security and Penetration testing, performing periodic assessments and reporting to the respective application/device owners.
Analyzing test and results and preparing reports.
Manual testing using proxy tool Burp Suite.
PROJECTS
Project: Vulnerability assessment for network infrastructure
Responsibilities: Vulnerability assessments on all network devices.
Documenting the vulnerabilities and scanned results by performing Vulnerability assessment
Generating reports and sending for closure as per security compliance and security fixes as per latest threats and vulnerabilities
Project: Web Application Penetration Testing
Description: Performed Web Application Penetration Testing in an in depth assessment of the application to identify the potential Vulnerabilities and exploited .The objective of the test was to find out vulnerabilities that could be seen and compromised by malicious users. Periodically check the security status of the Application and provide suitable recommendations to the new vulnerabilities. These vulnerabilities are categorized based on OWASP Top Ten methodology vulnerabilities and also generated reports using the company standard format templates.
Responsibilities: Penetration Testing on Internet facing application
Documenting the vulnerabilities and scanned results by performing Vulnerability assessment and Penetration Testing
Generating reports and sending for closure as per software compliance and security fixes as per latest threats and vulnerabilities
Client Premium Car Rental Services
Project Web Application and Web service Penetration Testing
Description Performed web application penetration testing as per OWASP TOP 10 2017
And identified multiple vulnerabilities.
Achievements Successfully manipulated parameters (Parameter tampering).
Executed Cross site scripting (XSS) on multiple pages. Exploited CSRF vulnerability and provided POC.
Client International Business School
Project Network Vulnerability assessment and web application penetration testing: - Managed Security Service
Description As a part of four member POC team that was responsible to perform Network vulnerability assessment and web application pen testing
Achievements
Executed Cross site scripting on multiple pages.
Exploited CSRF vulnerability and provided poc.
Exploited File upload vulnerability and Uploaded a proof of concept web backdoor and demonstrated it to the client.
ACADEMIC PROFILE
Bachelor of Technology (ECE), JNTU Ananthapur
Contact this candidate