"In the Spotlight: noob_akum

---

Senior Security Engineer - MIQ ( Present )

• Perform Vulnerability Assessment and Penetration Testing (VAPT) on web applications, network systems, and cloud infrastructure, utilizing a wide array of both open-source and commercial tools. 
• Designing  and implement network mapping strategies to identify and assess ports and services across both on-premises and cloud-based environments, ensuring comprehensive coverage and security posture analysis 
• Continuously research and enhance expertise in computer network exploitation, encompassing tools, methodologies, countermeasures, and emerging trends in network vulnerabilities and threats. Remain vigilant in monitoring advancements in network security, encryption, and the evolving Cloud threat landscape. 
• Perform AWS threat hunting and modelling for MIQ infrastructure, proactively identifying and mitigating potential security threats and vulnerabilities within the Amazon Web Services environment
• Monitor and track emerging vulnerabilities and threats across diverse networks, security devices, and multi-service Cloud Infrastructures. Implement proactive mitigation strategies to address identified risks effectively. 

Security Analyst - Ernst & Young ( EY)

• Responsible for spearheading engagements, encompassing comprehensive planning, scoping, meticulous execution, detailed reporting, and conducting client readouts, ensuring satisfaction and obtaining engagement sign-off. 
• Conducted penetration testing on a wide array of targets including web applications, networks, thick clients, web services, IoT devices, Cloud platforms, and infrastructure. Developed and formulated penetration test methodologies and plans tailored to each specific target. 
• Experienced and proficient in establishing and nurturing customer relationships, adept at gathering and understanding business requirements to ensure alignment between client needs and project objectives. 

Technical Consultant - CYRRACS

• Conducted over 100 Application Vulnerability Assessment and Penetration Testing (VAPT) projects adhering to OWASP standards for both internal and external applications. Possess extensive hands-on experience in conducting manual and automated VAPT on various platforms including Web Applications and mobile applications, while also emphasizing the importance of maintaining focus on network-based attack vectors 
• In the customer-facing role, actively engage in discussions, strategizing, and implementing web application security requirements with clients. Continuously support customers in enhancing their risk and security posture, both at the application level and across the organization, through ongoing guidance and collaboration. 

CERTIFICATS :

• CRTO
• CRTP
• OSCP
• DANTE Red Team
• CEH
• AWS Security Specialist 
• AZ-500

Conference Speaker 

•  B-sides Bangalore 
•  B-sides Ahmedabad 
•  John Deer Tech Event 
•  ISC2  
•  Null Bangalore Chapter

Guest Speaker 

•  Singhania university India 
•  Rama University India 
•  Career Point University India 
•  IIT Kanpur India 
•  Gurugram Police Cyber Cell Internship 

Volunteer 

• Technical Speaker for ISC2 ( Present )
• Technical Speaker for B-sides Bangalore ( Present )
• Null Chapter Leader ( December 2023 - Jan 2024 )

Achievements 

• Hall of Fame by NCIIPC
• Hall of Fame by UN-Women
• Hall of Fame by Dell
• Hall of fame by Dutch Government