A profound Web3 and Web2 security researcher and cyber security
professional with over 5 years of experience in the network and cyber
security industry, with proven ability to detect and exploit vulnerability in
systems to prevent data breaches. Possess knowledge in carrying out security
risk assessment, developing policies and procedures for implementation. I've
helped organizations like, Google.com, Microsoft.com, Apple,
PaloaltoNetworks, Zoho, Mahara, etc by identified vulnerability and
proffered technical assistance that improves their security
Currently working in Web3 security with @zokyoLabs as lead security engineer
Experience: 4 years
Yearly salary: $150,000
Hourly rate: $60
Nationality: 🇮🇳 India
Residency: 🇮🇳 India
Experience
Security Engineer & Co-founder
Unbound Finance & DefiEdge 2020 - 2023
Defined, developed, and maintained an Information and Cyber Security Framework across Unbound and DefiEdge in line with relevant legislation, regulation, and industry standards as applicable. Defined, builded, and maintained the required culture, plans, policies, procedures, systems, controls, reporting mechanisms, and assurance framework. Solidity development and deployment of smart contracts. Reviewed the smart contract source code for vulnerabilities. Fuzzed the complex logics using Echidna and foundry. Fixed the critical bugs & vulnerabilities. Directed and/or assisted with investigations into information security breaches, in Defi hacks. Written a secure smart contract code for Limit orders on top of DeFiedge Using Gelato ops and ChainLink Keeper.
Security Analyst
Lumiverse Solution Pvt.Ltd 2020 - 2021
Performing automated and manual vulnerability assessment and penetration testing of the web applications, as per standards using both commercial and open source tools. Thick client security testing. API security testing. Proactive research on latest vulnerabilities and exploits. Validate the vulnerability reported from external researchers and clients. Performed both Dynamic Application Security Testing (DAST) and Static Application Security. Proficient in different Security Tools like Burp Suite, Fiddler, OWASP ZAP, Acunetix, Nessus, NMAP, Postman, SwaggerUI, Nipper, etc. Source code review using automated tool and manual method.
Intern Security analyst
SecureLayer7 Technologies Private Limited 2018 - 2018
Performing VAPT Activities such as Network, Web, Mobile, API & Cloud Penetration Testing. Preparing the Detailed Reports on the identified Vulnerabilities. Preparing the detailed Workaround/Mitigations of the vulnerabilities while reporting to the client. Detailed Discussion with Clients on the vulnerabilities & Mitigations as per their feasibility. Writing Technical Blogs on the latest vulnerabilities or technologies in the market. Giving Technical Talks to the internal team on the latest technologies and approach for different applications/networks. Giving Webinars on the latest technologies or vulnerabilities. Research on finding Zero-days on the applications/products in the market.
Skills
android
ios
javascript
security
solidity
typescript
web3
