Trekking
Aditya Chavan
Senior Security Consultant
Mumbai,Maharastra
Work Preference
Summary
Result-driven Senior Security Consultant with 4 years of experience enhancing organizational security and mitigating risks. Expert in Vulnerability Assessment and Penetration Testing (VAPT) across Banking, Insurance, Private and Government sectors. Proven leader with experience managing a team of 21 employees to deliver high-stakes security projects. Specialized in Web, Android, API, Infrastructure, Source Code, SAST & DAST and Thick Client assessments, as well as Firewall Rule Reviews.
Overview
5
5
years of professional experience
5
5
Certificates
4
4
Languages
6
6
Areas of expertise
Work History
Senior Security Consultant
TalaKunchi Networks Pvt Ltd
12.2021 - Current
-Manage and mentor a team of 21 employees as a project leader to ensure high-performance delivery.
-Lead VAPT projects for clients in the Banking, Insurance, and Private sectors, focusing on web, mobile, and API platforms.
-Conduct manual and automated penetration testing using SAST and DAST assessments.
-Perform specialized Firewall Rule Reviews and Thick Client assessments to harden infrastructure security.
-Execute Source-Code reviews and scans to identify underlying security flaws in application logic.
-Utilize industry-standard tools including Burp Suite Pro, Nessus, Fortify, and WebInspect.
-Author comprehensive security reports and documentation, providing actionable risk mitigation recommendations.
-Respond to security-related incidents and provide detailed post-event analysis.
Relationship Officer
HDB Financial Services Limited
6 2021 - 10.2021
- Set appointments, carry out sales call visits, and prospecting and early engagement with bank customers
- Manage client's finance and KYC activities including account opening and personal finance
- Overall responsibility for implementing and driving the sales & cross sales strategy for HDFC Bank.
Equity Advisor
Motilal Oswal Financial Services Ltd
11.2020 - 04.2021
- Assisted clients in building diversified portfolios to achieve optimal returns while minimizing risk exposure.
- Analyzed market trends, macroeconomic indicators, and company financials to deliver accurate equity recommendations.
Education
GFMP Edge Fintech -
BSE Institute Limited
Bachelor of Science In Information Technology -
University of Mumbai
Mumbai, IndiaHigher Secondary School Certificate -
Board of Maharashtra
Mumbai, India 04.2001 -
Secondary School Certificate -
Board of Maharashtra
Mumbai, India 04.2001 -
Skills
Vulnerability Scanning
Vulnerability Assessment
Penetration Testing
Network Security
Application security
Security Testing
Reporting and documentation
Python
Git & Github
Adaptability
Interpersonal Skills
About Me
Aditya Chavan | 26, Male |
Cyber Security Consultant | VAPT Lead Mumbai, Maharashtra 400068 | 8108403134 |
adityachavan531@gmail.com
Accomplishments
I have received formal commendations and high-level technical appreciation from key stakeholders at the following organizations:
- Deloitte & BEE (Govt. of India): Commended for "technical rigor" in securing the National RCO Portal under critical timelines.
- IndusInd Bank: Appreciated for "outstanding proficiency" during the high-stakes Core Bank Revamp Project.
- Sikkim State Police (CCTNS): Personally recognized for identifying a critical API security flaw and providing the immediate corrective fix.
- Canara Robeco & Transbnk: Received "heartfelt appreciation" for high-standard security testing of asset management and fintech systems.
- Protean Tech, UnitXPro & Dista: Acknowledged for "technical expertise and prompt support" during complex enterprise VAPT assessments.
Additional Information
Skills & Abilities:-
- Thorough awareness and knowledge of risk assessments, risk management, security assessments, vulnerability management, and penetration testing.
- Conducting security assessments using vulnerability testing and risk analysis.
- I am well-versed in the OWASP Top 10 for web, api and mobile applications.
- For the client's vulnerability closure, I created a mitigation tracker and a prioritization chart.
- I have performed automated and manual vulnerability assessments and penetration testing on web, mobile, and API platforms.
- I have worked with tools such as Nessus, Burp Suite Pro, Kali Linux, DirBuster, Nikto, Fortify, WebInspect, Nmap, Hex Neo Editor, Postman, Wireshark, ADB Tool, Genimotion, ApkTool, Drozer, JD-GUI, and others.
- Strong verbal and written communication skills, with the ability to build relationships across diverse teams.
- I have performed security assessments on Web Applications, Mobile Applications (Android and iOS), Thick Client, API Penetration Testing and Infrastructure Penetration Testing, including e-commerce platforms, payment gateways, customer management applications, Banking application, Government applicagtion and sales management applications.
Certification
Practical Ethical Hacking by TCM Security Academy
Interests
Playing Football
Photography
Anime/Web series
Music
Books
Driving Cars & Riding Bikes
Areas of expertise
• Web Application Penetration Testing
• Infrastructure Penetration Testing
• Mobile Application Penetration Testing
• Vulnerability Assessment & Compliance Audit
• API Assessment
• Thick Client Assessment
• Source-Code Review
• SAST & DAST Scans
Software
Burp Suite Pro, Kali Linux
Fortify webinspect
Fortify SCA
MS-Office
Nessus
MobSF, Platform Tools, Apktool, Dex2jar, JD-GUI, JADX, Drozer, Jarsigner, Apksigner, Genymotion, Frida, Objection, MEmu, Uber APK Signer, Dirb, Gobuster, Nikto, Apk-mitm
Sysinternals Suite, dnSpy, Regshot, Hex Editor (Hex Neo), BinScope, EchoMirage,Postman, Fiddler Classic, TCPView, WinSpy, Process Hacker, Wireshark, WinHex
Quote
Judge a man by his questions rather than his answers.
Voltaire
Linked In
https://www.linkedin.com/in/adichavaan/