Raunak K.Bagchi

• Conducted comprehensive Vulnerability Assessments and Penetration Testing for diverse applications including Client, Web, Mobile, and IT Infrastructure and Network Devices.
• Executed Penetration Testing and Wireless and Network penetration testing.
• Conducted Vendor Security & Risk Assessments, contributing to enhanced security posture and risk mitigation strategies.
• Applied manual testing skills for web applications, modifying, and compiling exploit code for tailored security solutions.
• Displayed practical experience in auditing various OS and networks.
• Proficient in Penetration Testing using diverse open-source and professional tools and methodologies, ensuring comprehensive security assessments.
• Leveraged Open-Source Intelligence (OSINT) techniques for enhanced threat intelligence and proactive security measures.
• Applied expertise in VA/PT Tools like Nessus, Qualys, MetaSploit, WebInspect, BurpSuite, etc., for thorough security evaluations.
• In-depth understanding of the Top 10 OWASP Vulnerabilities and Attack Vectors, ensuring targeted security measures.
• Provided Training on technical concepts and undertaken sessions for students as well as Corporates(Govt. and Non-Govt.) on different areas of cybersecurity.
• Worked as a trainer/mentor and conducted multiple seminars and workshops on various areas of cybersecurity in colleges across India.

• Responsible for performing VAPT on client applications and used automated as well as manual tools and techniques to perform penetration testing.
• Learning to find and exploit 33+ kinds of vulnerabilities manually and using automated tools on web application in an ethical way to report for bounty.
• VAPT of networks and client infrastructure.
• Expertise on tools such as Nmap,Nexpose,Nessus,Acunetix and Burp Suite.
• Preparation of VAPT reports accordingly for multiple clients.

• Part of a research team for Soc defense where received hands on training and experience in handling various SIEM tools,EDR,XDR,threat intelligence devices etc.
• Researched and worked on various areas in cybersecurity encompassing MITRE ATT&CK framework,STRIDE model,SOAR,Malware analysis,log monitoring and analysis,SIEM,NG-SIEM,Ransomwares,OSINT,Honeypot and deception technology,OWASP,web application vulnerabilities etc.
• Prepared detailed documentation on various cybersecurity threats and alerts including malware alerts,Advanced Persistent threats,Fileless malware exploits,Log4j vulnerability and various other upcoming threats, adversaries and their methodologies etc.
• Hands on experience in the tools mentioned below:

Cynet(XDR),Vanguard (AWS automation),Rapid-7 SIEM,Sumologic(NG-SIEM),Threat Connect(Threat intelligence),Trend Micro(XDR),VMWare Carbon Black(XDR),Splunk(SIEM).