Summary
Overview
Work History
Education
Skills
Certification
Extra-Curricular Activities
Disclaimer
Timeline
Generic

SOHAL GAUTAM

Nagpur

Summary

B.E. Graduate in Information Technology with 2.7 years of experience in Cybersecurity, Vulnerability Assessment & Penetration Testing (VAPT), and Threat Analysis. Specialized in Web Application Security, Network Security, and Exploitation Techniques, with expertise in identifying, assessing, and mitigating vulnerabilities. Proficient in OWASP Top 10 and industry-standard security frameworks, delivering detailed security assessments and actionable remediation strategies. Known for a sharp analytical mindset, attention to detail, and a proactive approach to cybersecurity, ensuring robust security defenses and risk mitigation in evolving threat landscapes.

Overview

5
5
years of professional experience
1
1
Certification

Work History

ANALYST (CYBER SECURITY & DIGITAL FORENSICS)

Suma Soft Pvt. Ltd.
01.2023 - Current
  • As a Security Analyst, Conducted in-depth security testing of web applications, identifying vulnerabilities like XSS, SQL Injection, Business Logic flaws, Account Takeover, and RCE
  • Provided detailed reports with OWASP-aligned remediation strategies to enhance security posture
  • Specialized in web application security, threat analysis, and security hardening
  • Performed comprehensive VAPT assessments to identify and mitigate risks, ensuring compliance with industry standards
  • Conducted black box and grey box penetration testing on web and network infrastructures, simulating real-world attacks to assess security resilience
  • Conducted static analysis of mobile applications using MobSF, identifying vulnerabilities related to insecure storage, API security, and authentication flaws
  • Assessed Android and iOS apps for security weaknesses and provided remediation strategies

ANALYST (CYBER SECURITY & DIGITAL FORENSICS)

FORnSEC Solutions
07.2020 - 04.2023
  • Acquired comprehensive knowledge of cybersecurity and digital forensics concepts, methodologies, and best practices
  • Gained hands-on experience with advanced tools and techniques to analyze, mitigate, and respond to security threats effectively
  • Successfully identified critical vulnerabilities in complex applications and infrastructures, including SQL injection, Server-Side Request Forgery (SSRF), and intricate business logic flaws, ensuring robust security measures
  • Conducted and managed high-stakes forensic investigations, uncovering and analyzing digital evidence to safeguard organizational assets and mitigate risks to the digital landscape
  • Demonstrated proficiency in preserving the chain of custody and ensuring compliance with regulatory standards

Education

Bachelor's of Engineering - Information Technology

Rajiv Gandhi College of Engineering and Reseach

Diploma - Electronics and Telecommunication

Anjuman College of Polytechnic Nagpur

Skills

  • Penetration Testing
  • OWASP Top 10
  • Burp Suite
  • Web application security
  • Nessus

  • Rapid7
  • Source Code Review-Checkmarx
  • Android Penetration Testing
  • Communication and Collaboration with Development Teams

Certification

  • CEHv13 (EC Council)
  • EHE (EC Council)
  • DFE (EC Council)
  • Certified VAPT Tester
  • Pursuing CHFI (Certified Hacking Forensics Investigator)

Extra-Curricular Activities

Bug Bounty Recognitions

  • Recognized in multiple Hall of Fames for uncovering critical web vulnerabilities.
  • Awarded for strengthening security across various platforms.


Delivered Workshop on Cyber Security Awareness

  • Conducted cybersecurity workshops for 5,000+ professionals across industries.
  • Specialized in web and mobile security, equipping participants with hands-on vulnerability mitigation skills.

Disclaimer

I hereby declare that the information provided in this resume is true and accurate to the best of my knowledge and belief. I take full responsibility for the authenticity of the details mentioned above.

Timeline

ANALYST (CYBER SECURITY & DIGITAL FORENSICS)

Suma Soft Pvt. Ltd.
01.2023 - Current

ANALYST (CYBER SECURITY & DIGITAL FORENSICS)

FORnSEC Solutions
07.2020 - 04.2023

Diploma - Electronics and Telecommunication

Anjuman College of Polytechnic Nagpur

Bachelor's of Engineering - Information Technology

Rajiv Gandhi College of Engineering and Reseach
SOHAL GAUTAM