Hareesh Kumar Sanga

I have over all 7 years of Professional IT experience in performing Vulnerability Assessment, Penetration testing, Application security testing - DAST and SAST of web application, Endpoint Security with strong analytical skills.

Skilled in performing both manual and automated security scanning and testing for web application based on OWASP.

Hands-on experience in reviewing and defining requirements for information security solutions and mitigation techniques.

• CEH - Certified Ethical Hacker (CEH V13) ECC4301276958

• Hands on experience in Web Application Security Assessments, Vulnerability Assessment Penetration Testing (VAPT).
• DAST (Dynamic Application Security Testing): Performed Vulnerability Assessment for web applications, API and Network. Validating the target for all the vulnerabilities like XSS, SQL Injection etc.
• Performing tool-based Security assessment followed by manual validation of reported findings to remove false positive analysis.
• Involved in Scanning of the application for web vulnerabilities using OWASP ZAP, Burp Suite, IBM App Scan.
• Identifying the Critical, High, Medium, Low vulnerabilities in the applications based on OWASP TOP -10.
• Involved in preparing the documentation of all testing methods and results including impact, remediation and recommendation for identified vulnerabilities.
• Network security device management and reporting and continuous monitoring of end points for vulnerabilities or malware's and analysis of the same.
• Have experience with tool such as Nexpose and vulnerability scanner. Generate the reports on daily basis and executing the daily tasks.

I, Hareesh Kumar, do hereby confirm that the information given above is true to the best of my knowledge. 

Place: Bengaluru                                                                                                             S. Hareesh Kumar