I’m armed with eight years of experience in Information Security & Information Technology field. I’ve worked for software development companies for last seven years. I started off as a Systems Administrator who managed AWS and Linux / Windows servers for 3 years. I have done extensive work on hardening servers and making the infrastructure secure. I have a strong knowledge in configuring Linux(Redhat,Ubuntu,Debian and Centos) Server operating systems and Application/Web Servers (Jboss,Apache,Nginx,Plone). Also I have maintained high availability in cloud and non cloud environments(HA Proxy).
As my current engagement I spend all my time on source code review and web/mobile pentesting. I work very close with development team for remediation and adapt SSDLC practices. I use Checkmarx and Burp Suite pro in my day to day pentesting. Also I’m familiar with popular penetration testing distros (Backtrack 5 - r3, Kali Linux), Vulnerability Scanners (nessus/OpenVas), IPS/IDS(Snort, Bro) and Firewalls(ISA, pfsense & modsecurity). I keep myself up to date by listening to infosec podcast,tech talks and professional reading.