SEP 2024 - FEB2024 MAR

Penetration Testing Internship

Hacktify Cyber Security

• Specialized in fortifying web application security, particularly in identifying and exploiting vulnerabilities such as HTML injection and Clickjacking techniques.
• eepened understanding of Cross-Site Scripting (XSS) and Insecure Direct Object References (IDOR), elevating my ability to detect and resolve security flaws.
• Developed advanced skills in detecting and exploiting Cross-Site Request Forgery (CSRF) and Server-Side Request Forgery (SSRF) vulnerabilities.
• Actively engaged in Capture the Flag (CTF) competitions and Open Source Intelligence (OSINT) challenges, where I applied my expertise to tackle practical security issues.

NOV 2023 - JAN 2024

Cloud Security Engineer Intern

Virtually Testing Foundation

• Proficiently completed Amazon and AWS labs covering threat detection, incident response, security logging, monitoring, infrastructure security, identity and access management, and data protection.
• Implemented SQL best practices specifically designed for Azure environments.
• Enhanced threat detection mechanisms within Microsoft Sentinel platform for improved security posture.
• Actively contributed to collaborative efforts centered around Azure Application Gateway, ensuring its functionality and security were optimized.

SEP 2023 - OCT 2023

Cyber Security Internship

Senselearner Technologies Pvt. Ltd.

• Obtained Practical Cybersecurity Experience through real-world projects to develop practical skills and knowledge.
• Apply theoretical knowledge acquired in academic settings to practical scenarios and challenges.
• Developed technical expertise in areas such as vulnerability assessments, penetration testing, incident response, and security tools.
• Conducting research on emerging cyber security trends, tools, and technologies.

MAR 2021 - PRESENT

Media Room Controller & IT Infrastructure Specialist - PART TIME

Crystal Convention Center

• Collaborated with Network Lead to ensure efficient installation and configuration of network equipment.
• Troubleshot network issues and resolved connectivity problems to maintain seamless network operations.
• Provided technical support to end-users, addressing network-related concerns and enhancing user satisfaction.
• Documented network procedures, emphasizing ISO 9001:2015 familiarity and its continued relevance within the organization.

AUG 2023 - PRESENT

Cybersecurity Analyst

Vulnerability Management Personal Project

• Installed and configured Nessus Essentials for credentialed vulnerability scans on Windows 10 Hosts.
• Led creation of Vulnerability Management Function for sandbox networks, covering Discover, Prioritize, Assess, Report, Remediate, and Verify phases.
• Innovated automated remediation process for preemptive handling of vulnerabilities from updates and third-party software.

JUN 2023 - PRESENT

SOC Analyst

Microsoft Sentinel (SIEM) Personal Project

• Developed custom PowerShell script to extract Windows Event Viewer metadata and derive geolocation data via a third-party API.
• Configured Azure Log Analytics Workspace for seamless ingestion of complex geographic logs, enhancing threat analysis.
• Designed dynamic Sentinel workbook for visualizing global attack data, revealing patterns by location and magnitude.

JUN 2023 - PRESENT

System Administrator

Active Directory Personal Project

• Automated Active Directory tasks using PowerShell, streamlining user account provisioning and maintenance.
• Set up Remote Access Server (RAS) features, enhancing secure remote resource access.
• Managed Windows DNS, DHCP services, and configured File Servers with quotas and NTFS permissions for efficient data handling and access control.

OCT 2016 - FEB 2021

SEO Expert - Freelance Consultant

• Engaged in continuous learning through industry webinars, online courses, and certifications to enhance skills and maintain expertise in SEO.
• Collaborated with a variety of clients to grasp their business objectives and target audience, aligning SEO strategies accordingly.
• Successfully executed link building campaigns, contributing to improved search engine rankings.

AUG 2023 - Ongoing Certifications

• Microsoft Azure Fundamentals AZ-900
• Splunk Core

JUN 2023

AZ-900 Microsoft Azure Fundamentals Training

cloudthat

APR 2023

Level 1 - Cyber Threat Hunting Training

Active Countermeasures

• Hands-on experience in tracking down real-world C2 channels in a live lab environment and proficiency in the use of network threat hunting tools, including tcpdump, Wireshark, Zeek, and ngrep.

APR 2023

Ethical Hacking Essentials (EHE)

Codered - EC Council

• Network-level attacks including sniffing, denial-of-service, and session hijacking, and their countermeasures.
• Application-level attacks including webserver exploitation and SQL injection and their countermeasures.

APR 2023

Cloud Governance Principles

Cybrary

• Orchestrating Account Management, Budget Enforcement, and Continuous Compliance for Optimal Cloud Operations.