A highly competent and result-oriented security consultant with 2.5+ years of
experience in the field of Information Security, interested in working in an organization where positions are challenging and testing different applications. Would like to prove my IT Security experience to help organizations become more secure and efficient. WORK EXPERIENCE
11/2023 - present APTEAN - BENGALURU, INDIA
Security Consultant (Contract) Providing expert security consultancy services on a contract basis for Aptean. Conducted penetration tests on web applications, mobile applications(Android), and Thick-Client applications. Identified and reported security issues in Aptean internal applications. Collaborating with cross-functional teams to implement robust security measures and protocols to safeguard sensitive data.
10/2021 - 10/2023 ENTERSOFT INFORMATION SYSTEMS PRIVATE LIMITED - HYDERABAD,
INDIA Penetration Tester Hands-on experience in working with various sectors and having a good understanding of applications related to the following sectors: Fintech, Healthcare, IT Services, Financial Services, Banking, E-Commerce, etc, and found many vulnerabilities. Mobile Application Security(Android): Exploiting Business Logic is the top priority, Man-in-the-Middle Attacks, Database Analysis, Data Storage, Component Checks, etc. Web Application Security: Follows OWASP, WASC, and SANS standards. Always work along the application's Business Logic to exploit critically risk-vulnerable issues. Network Security: Look for Open ports, services running and try to connect, enumerate, and try the latest exploits based on versions.
CERTIFICATIONS
2024 - 2025 Certified Appsec Practitioner (CAP)
Certification Number : 8386669 2023 - 2024 eLearnSecurity Junior Penetration Tester (EJPTv2) Certification Number : 88520774 2023 - 2024 EC-Council Certified Ethical Hacker (CEHv12) Certification Number : ECC7962145038 EDUCATION
ENGINEERING COLLEGE Bachelor of Technology - Electrical and Electronics Engineering 2015 - 2018 USHA RAMA COLLEGE OF ENGINEERING AND GPA 8.23 TECHNOLOGY Diploma - Electrical and Electronics Engineering SKILLS
Android Penetration Testing
Web Application Penetration Testing Network vulnerability scan and penetration testing Experience with tools: Burpsuite, Metasploit, Nmap, Wireshark, Sqlmap, John- Ripper, Hydra, Nessus, MobSF, Apktool, HTTP Tool kit, etc. Operating Systems (Windows, Kali Linux)
DECLARATION
I hereby declare that the information furnished above is true to the best of my knowledge. Date: 19/06/2024 Place: Vijayawada SRINIVAS REDDY KARNATI
