Professional Documents
Culture Documents
CAREER OBJECTIVE:
EXPERIENCE SUMMARY:
ACADEMIC QUALIFICATION:
WORK EXPERIENCE:
Working as a security analyst at STRATADATA Technologies, since March 2015
SUMMARY OF SKILLS:
Vulnerability Testing Tools – IBM Rational App Scan, HP Fortify Source Code Review, Acunetix
Black Box Web Vulnerability Scanner, Burp suite, Zap Proxy, Sqlmap.
Network Vulnerability /
NMAP, Nessus, Wireshark, Metasploit.
Penetration Testing Tools
UNIX,BackTrack-5R3, KALI-1.03
Operating Systems
Ubuntu-12.10, Fedora-17, Windows-XP,2003,Vista,7,8,10
Projects:
Description:
Conducted Security vulnerability assessments with IBM app scan and validating the results manually
with the help of burp suite on web applications developed in java. BKFS is one of the major mortgage
company in USA a portfolio of applications, which are related to House loans, Mortgage loans, etc.
Projects Classified as vulnerability assessments on New Enhancements & Maintenance.
Page 2 of 3
Conducted black box security testing on the web applications using IBM Appscan and Burp
Suite for OWASP top 10 Vulnerabilities like XSS, SQL Injection, CSRF, and Privilege
Escalation.
Performing automated source code review with HP fortify and eliminate false positives.
Regularly performed research to identify potential vulnerabilities and threats to existing
technologies, and provided timely, clear, technically accurate notification to management of the
risk potential and options for remediation.
Manual analysis of web applications for vulnerabilities with Burp Suite and Zed Attack Proxy.
Preparing reports for the application security assessments with vulnerability explanation, risk
analysis and remediation process.
Scheduling vulnerability demo calls with developers to explain and convince them for patching
identified vulnerabilities.
Revalidation of vulnerabilities after developer closing them and providing go or no go from
application security perspectives
Page 3 of 3