I'm a highly self-motivated individual with a deep passion for computer security, boasting a robust foundation in cybersecurity and a Bachelor of Technology degree in Computer Engineering. With over 4 years of hands-on experience, I specialize in various aspects of cybersecurity, including web application security, vulnerability assessment, penetration testing, and mobile application security for both iOS and Android platforms.
I am a highly self-motivated individual with a passion for computer security, boasting a robust foundation in cybersecurity and a Bachelor of Technology degree in Computer Engineering. With over 4 years of hands-on experience, I specialize in areas such as web application security, vulnerability assessment, penetration testing, and mobile application security for iOS and Android platforms.
My expertise extends to both black-box and white-box security testing methodologies, enabling me to conduct thorough security assessments on web applications, APIs, enterprise, and engineering applications. I am well-versed in dynamic application security testing (DAST) tools like Burp Suite Professional, Qualys, and Traceable, as well as Static Application Security Testing (SAST) tools such as GitHub Advanced Security and Mobile Security Framework (MobSF).
I have a keen understanding of web security principles, techniques, and technologies, utilizing a diverse range of penetration testing tools. My hands-on experience includes executing attack vectors from the OWASP Top 10 and working with various open-source security tools, including proxies and fuzzers.
Actively engaging in security-specific conferences, webinars, and Capture The Flag (CTF) contests, I stay abreast of the latest developments in the field. Strong in documentation, I excel in delivering thorough penetration test reports. My skills and knowledge equip me to tackle complex security challenges with a creative and out-of-the-box thinking approach.
- π± Always learning and staying up-to-date with the latest trends in cybersecurity.
- π¬ Ask me about web security, penetration testing tools, or mobile application security.
-
πΌ ZEE - Technology & Innovation/Security Engineer
- β’ Performed Manual and Automated Web application security (Black Box, White Box), Vulnerability assessment (Static application security testing (SAST) and Dynamic application security testing (DAST)), Penetration testing, API security, Mobile Application security for iOS and Android platforms in line with OWASP TOP 10 Network Penetration testing. β’ Successfully led the organization-wide adoption of DevSecOps practices, enhancing collaboration between development, security, and operations teams for streamlined and secure software delivery. β’ Managed enterprise level automated tools like GitHub Advance security for securing enterprise repositories. β’ Provided developer support in securing applications and assisting in the identification and remediation of vulnerabilities of the applications. β’ Hands-on experience with commercial and open-source tools e.g., Burp suite Professional, Metasploit, SQLMAP, Nmap, Qualys, FUFF, Dirsearch, Objection, Frida, MobSF, iOS Jailbreaking tools, GitHub Advanced Security, Strobes etc.
β’ Conducted Black Box, Grey Box, White Box Web Application and Network Penetration Testing β’ Created reports and developer support in securing applications and assisting in the identification and remediation of vulnerabilities of the applications. β’ Audits of third-party vulnerability reports for internal applications, ensuring proactive identification and resolution of potential security risks.
- Cybersecurity: Web application security, penetration testing, vulnerability assessment.
- Tools: Proficient in Burp Suite Professional, Qualys, Traceable, GitHub Advanced Security, and Mobile Security Framework (MobSF).
- Methodologies: Black-box and white-box testing, OWASP Top 10, dynamic and static application security testing.
- Platforms: iOS, Android, Apple TV.
- π Bachelor of Technology in Computer Engineering
- π β’ Microsoft Certified: Azure Fundamentals (AZ-900) β’ Certified Ethical Hacker (CEH) β’ Qualys Certified Specialist β’ Rapid7 InsightVM Certified Administrator β’ EY Cybersecurity Bronze
- π Actively participate in security-specific conferences and webinars.
- π© Regularly engage in Capture The Flag (CTF) contests.
- π§ Email: arunnagath#gmail.com
- πΌ LinkedIn: https://www.linkedin.com/in/arunnagath
- π¦ Twitter: https://twitter.com/arun_nagath
Thanks for stopping by my profile! Feel free to connect and explore my projects.