ARBIND GARAI

Assistant Manager

Deloitte India

07.2022 - Current

Hold international client working experience for a Bank in Kuwait.
Interacting with stakeholders, architects, business owners, and developer teams to understand and report the
results.
Experienced cybersecurity professional with a solid background in banking. Good experience in complex
application penetration testing.
Based on the requirement, I have performed extensive penetration tests on various applications, ranging
from core banking systems to applications used by oil and gas companies, to transportation, etc to uncover any security vulnerabilities, if present any.
Developed detailed penetration testing methodologies tailored to the specific needs of each application to cover
all potential attack vectors.
Daily execution methodology involves a variety of tools and techniques, including manual testing, automated
scanners, and custom scripts, to identify and exploit security flaws.
Day-to-day activity involves performing risk analysis, preparing reports for the vulnerabilities observed, providing
understanding of the business impact it possesses along with remediation methods to resolve the security gap.
Also, perform the revalidation when the finding is fixed.
Worked closely with development teams to offer guidance on how to address any vulnerabilities for maintaining
the security of banking systems and customer data.
Proposed and delivered an end-to-end Azure Cloud pentesting proposal and delivered presentation about the
same to the client with dedicated Cloud Ops team at Deloitte.
Part of execution involves presenting the findings and recommendations to senior management and stakeholders,
outlining potential risks and suggesting strategies to mitigate them.
Knowledge about security tools such as Nessus, SQL map, Metasploit, Wireshark, Nuclei, etc.