Cyber security- VAPT with 5+ years in Penetration Testing & Security Assessments
AI is analyzing your overall score…
Identifying your key strengths…
Evaluating your skill match against the job requirements…
Assessing your cultural and operational fit
Application Security Consultant with 5.2 years of experience performing advanced penetration testing and security assessments across Web, API, and Mobile platforms. Skilled in uncovering business logic flaws, exploiting real-world attack chains, and delivering high-quality security reports to global clients. Proficient in manual techniques beyond automated tools, with strong understanding of OWASP Top 10, API Security Top 10, and secure SDLC. Experienced in threat modeling using industry-standard frameworks and tools to identify and remediate design-level vulnerabilities. Adept at collaborating with development teams for remediation and compliance.
Saveetha Engineering College
Bachelor of Engineering
August 1, 2014 – June 30, 2018
Black Duck (Formerly Synopsys SIG)
Sr. Consultant
October 1, 2021 – Present
India
Digital Age Strategies Pvt. Ltd.
VAPT Auditor
August 1, 2020 – September 1, 2021
India
Retail E-Commerce Web App
June 1, 2026 – Present
Discovered HTTP parameter pollution in the cart update endpoint, allowing attackers to inject duplicate product IDs and manipulate order quantities without changing the displayed price, leading to potential financial loss.
Trading Platform API
June 1, 2026 – Present
Identified order price manipulation vulnerability where the API accepted client-supplied price values during market orders, allowing orders to be executed at arbitrary prices instead of fetching live market rates.
Logistics Mobile App
June 1, 2026 – Present
Identified insecure local storage and bypassed SSL pinning on Android.
Certified Ethical Hacker (CEH)
Unknown
June 1, 2026 – Present
Cultural Fit Analysis
The candidate's experience across different companies (Black Duck, Digital Age Strategies) and diverse project types (e-commerce, logistics, trading platform) indicates adaptability and a broad exposure to various security challenges. The focus on manual penetration testing and adherence to industry standards (OWASP, NIST, ISO 27001) aligns well with a professional security culture. The role as 'Sr. Consultant' at Black Duck suggests a capacity for leadership and client interaction, which is beneficial for cultural fit in a senior VAPT role.
Soft Skills & Operational Fit
The candidate's experience description highlights collaboration with developers for secure coding practices and remediation, indicating good teamwork and communication skills. The ability to deliver detailed reports with PoCs suggests strong analytical and documentation skills. The project descriptions demonstrate problem-solving and critical thinking in identifying complex vulnerabilities.