Ashutosh Patra
Balasore,Odisha
Summary
Ashutosh Patra is a cybersecurity professional with approximately 2 years of hands-on experience in technical security assessments. He specializes in Red Teaming, Vulnerability Assessment and Penetration Testing (VAPT) of web applications, APIs, mobile applications, LLMs, thick-client applications, and network devices.
He has practical experience in configuration reviews and risk-based analysis. He is skilled in identifying security vulnerabilities, preparing detailed reports with remediation steps, and performing revalidation of fixed issues. He brings a technical, attacker-mindset approach to every assessment while ensuring business-aligned security outcomes.
Overview
2
2
years of professional experience
1
1
Certification
Work History
Consultant
Deloitte
08.2023 - Current
- Conducted information gathering and threat enumeration for web and network vulnerability assessments.
- Performed vulnerability assessments and penetration testing on network devices using Nmap and Nessus; consolidated findings into patch advisory reports.
- Validated automated DAST results manually using Burp Suite and other tools to ensure accuracy and reduce false positives.
- Assessed LLM-based applications for prompt injection and input-handling vulnerabilities.
- Executed Red Team operations, including simulated phishing, privilege escalation, lateral movement, and data exfiltration, to test organizational security controls.
- Hands-on experience with configuration reviews and risk-based vulnerability prioritization.
- Created detailed, actionable security assessment reports, including PoCs and technical remediations.
- Collaborated with stakeholders, architects, developers, and business owners to align findings with business context and technical feasibility.
Education
B-Tech - CSE
Silicon Institute of Technology, Bhubaneswar
Odisha, India06-2023
Skills
- Vulnerability Assessment & Penetration Testing (VAPT) – Web, API, Mobile, LLM, Thick-client, Network Devices
- Red Teaming Techniques – Reconnaissance, phishing simulations, lateral movement, privilege escalation, data exfiltration
- Security Testing Tools – Burp Suite, Nmap, Nessus, Nikto, DirBuster, SQLMap, Metasploit, OWASP ZAP, Sublist3r
- Operating Systems – Kali Linux, Parrot OS, Ubuntu, Windows
- Manual Testing Expertise – False positive validation, custom exploit development, POC creation
- Security Standards & Frameworks – OWASP Top 10, MITRE ATT&CK, NIST CSF
Certification
- CEH (Practical) - EC-Council
- CNSP - (The SecOps Group)
- CAP - The SecOps Group
Timeline
Consultant
Deloitte
08.2023 - Current
B-Tech - CSE
Silicon Institute of Technology, Bhubaneswar
Similar Profiles
SIPHOKAZI LIBUKESIPHOKAZI LIBUKE
Internal Auditor- COIDA Compliance at DeloitteInternal Auditor- COIDA Compliance at Deloitte
RAM PRASAD GOGURAM PRASAD GOGU
Senior MuleSoft Lead - Amgen (Life Sciences Domain) at DeloitteSenior MuleSoft Lead - Amgen (Life Sciences Domain) at Deloitte
Vidhya SagarVidhya Sagar
Advisory Specialist Master at DeloitteAdvisory Specialist Master at Deloitte
Dr Nigam Rashmi DharDr Nigam Rashmi Dhar
EA / Marketing / HR / Recruitment at Asian Heart Institute and Research Centre Private LimitedEA / Marketing / HR / Recruitment at Asian Heart Institute and Research Centre Private Limited
TAPAN KUMAR BEHERATAPAN KUMAR BEHERA
Assistant Officer –stores at Larsen & Toubro LimitedAssistant Officer –stores at Larsen & Toubro Limited