With years of experience across offensive security and incident response, he has led high-impact security assessments and incident handling efforts for enterprise environments, law enforcement, and academic institutions.
Conducted black box and grey box penetration tests for web, mobile, and API applications, aligned with OWASP Top 10 and industry standards.
Performed internal network assessments, threat modeling, and exploited vulnerabilities including XSS, SQLi, CSRF, auth bypass, and more.
Delivered 500+ application security assessments across various domains; collaborated with teams to communicate findings and remediation strategies.
Created custom testing checklists and automation scripts in Python and Bash to streamline offensive testing workflows.
Responded to real-world incidents involving phishing, malware, insider threats, and application breaches—handling log analysis, containment, and forensics.
Developed incident response playbooks, participated in red/blue team exercises, and supported root cause analysis and recovery efforts.
Trained the Maharashtra State Police, led programs at Visa University, and conducted cybersecurity courses in Mumbai colleges.
Worked on security infrastructure improvement projects, aligning solutions with organizational needs and post-incident reviews.