Lubna Siddiqui
Summary
A proficient Security Analyst with more than 3 years of experience in the industry. My proficiency lies in cybersecurity, where I excel at identifying and exploiting vulnerabilities in computer systems, networks, and applications. With a strong foundation in ethical hacking and an in-depth understanding of both offensive and defensive security strategies, I am adept at thoroughly assessing an organization's security posture and proposing effective risk mitigation solutions.
Overview
3
3
years of professional experience
1
1
Certification
Work History
Security Analyst
Infosys Limited
06.2021 - Current
- Understanding of latest Cyber Security Technologies, Security threats and Security best practices.
- Have Application Security vulnerability knowledge including OWASP top 10.
- Application security testing through Burp Suite, Postman, Mobile Security Framework, WebInspect. Etc. Hands-on.
- Familiarity with common web vulnerabilities including XSS, SQL Injection, File Inclusion/Path Traversal Attacks, CSRF, authentication, OWASP top 10 issues.
- Performing VAPT on Google Cloud Platform application.
- Performed Host Based Audit on Linux servers, Windows servers, and Oracle Database by following the Center of Internet Security(CIS) Benchmark.
- Planning and implementing automated testing along with timely releases of products and vulnerability scanning of websites, API, and servers.
- Performed Black/Gray-box penetration testing on applications to exploit web-based gaps in client-server-side attacks making the application more secure.
- Conducted network penetration testing and vulnerability assessment on the client's banking applications to assess security postures and recommended security remediation steps.
- Reviewing project test and implementation schedules, monitoring, documenting, and reporting the severity of defects for each testing cycle.
- Discussing scope of client application to assess security postures and recommended security remediation steps.
- Prepare detail practices and procedures on technical processes.
- Reporting, documentation.
Education
Bachelor of Technology -
Shri Shankaracharya Technical Campus
Bhilai05.2020
Skills
- Vulnerability Assessment and Penetration Testing
- Web Application Security, Network Security, Mobile Application Security, Web Services And Cloud Security
- OWASP top 10
- Knowledge of Nmap, Postman, Nessus, Burp suite, WebInspect, OWASP ZAP
- GCP Services: Security Command Centre
- Risk Assessment and Mitigation
- Excellent spoken and written communication skills in English and Good presentation skills
- Adaptability, Teamwork, Attention to detail, Professionalism, Quick learner
Accomplishments
Recipient of the prestigious RISE INSTA AWARD on two occasions, acknowledged by the project manager for my exceptional achievements in acquiring and mastering a range of testing technologies, encompassing Web, API, Network VA, and Mobile domains.
Certification
- T200-Certified Ethical Hacker from E C Council
- Purdue Applied Cybersecurity Essentials Certification
- Infosys Certified Security Testing Professional
- Infosys Certified Application Security Specialist
Timeline
Security Analyst
Infosys Limited
06.2021 - Current
Bachelor of Technology -
Shri Shankaracharya Technical Campus
Similar Profiles
Ekta DakhaneEkta Dakhane
Technology Analyst at Infosys LimitedTechnology Analyst at Infosys Limited
BISWANATH DASBISWANATH DAS
Project manager at Infosys LimitedProject manager at Infosys Limited
Sriram Chennimalai SubbukrishnanSriram Chennimalai Subbukrishnan
Technology Architect | Oracle EBS R12.2.4 Enhancements at Infosys LimitedTechnology Architect | Oracle EBS R12.2.4 Enhancements at Infosys Limited