Avneet Bhatia

Dynamic professional with extensive experience at Synopsys Inc., specializing in web application security and vulnerability assessments. Proven ability to identify and remediate critical security risks while engaging clients effectively. Skilled in utilizing industry-standard tools, ensuring robust security audits, and fostering clear communication to enhance security measures.

• Over 1.6 years of work experience as Security Service Associate at Black Duck India (Formerly Synopsys Inc.)
• Expertise in the following fields - 1. Web Application Penetration testing (Grey and Black Box) 2. Web Services & API Security
• Experienced in handling US/Canada, China, Cambodia, Australia, EU based Clients.
• Collaborating with the clients to remediate the vulnerabilities and helping them secure their organization.
• Excellent Reporting Skills.
• Experience working both as part of a team and independently.

• Conducted black box and grey box security tests in alignment with the OWASP Top 10 framework for Web Applications and APIs.
• Executed automated and manual security tests, pinpointing and eliminating false positives to ensure a precise vulnerability assessment
• Analyzed risks based on business criticality, evaluating the impact of vulnerabilities on applications to prioritize remediation efforts.
• Delivered daily updates on identified vulnerabilities and offered support for revalidating them concurrently with active testing.
• Generated executive reports featuring detailed technical summaries of findings, accompanied by pertinent recommendations for addressing identified vulnerabilities.
• Validated the closure of security risks by conducting retests on web applications and web services, affirming the effectiveness of implemented remediation measures.

• Network Penetration Testing.
• Mobile Testing (Android & iOS).
• Cloud Configuration Review (AWS).

• Expertise in using tools like Burp Suite, Postman, Soap UI, SQLmap, Nmap, Dirb, TestSSL, HTTP Smuggler, and other security tools.