Security Researcher · Penetration Tester · Cybersecurity Engineer
I secure web apps, APIs, and cloud workloads. I translate findings into clear, risk-based remediation for technical and non-technical stakeholders.
I’m a cybersecurity engineer with 5+ years of hands-on experience in Cybersecurity with a specialized interest in Vulnerability Assessment and Penetration Testing across networks, hosts, APIs, and web applications. I’ve helped secure government and enterprise systems, translating technical findings into clear, actionable remediation.
Tip: Start with the e-gov VAPT work
Assessed 50+ platforms; flagged 400+ issues (misconfig, weak CORS, XSS); built scripts for HTTP-methods/CVE triage; wrote exec-level summary.
Stack: Python, Bash, nmap, nuclei, custom scanners
Secured API endpoints, improved logging and safe defaults, reviewed auth.
FastAPI/Flask, JWT, Docker
Built a minimal Linux shell to understand parsing, piping, job control.
C, Linux, Make
Implemented & tuned enterprise DLP policies; trained analysts; improved detections.
Symantec DLP, Splunk/Tenable
Deployed CyberArk (PVWA, PSM, CPM, PSMP, AAM); enforced admin access controls.
CyberArk Suite
Open to roles in Penetration Testing / Red Team / AppSec.