Burp Suite Pro
Shubham Nema
Professional Services Consulting,Senior Consultant
Bengaluru,KA
Summary
A dedicated and results-driven Cybersecurity Consultant with 3.9 years of experience in Vulnerability Assessment and Penetration Testing (VAPT) across banking, insurance, e-commerce, and fintech sectors. Skilled in identifying and mitigating security risks through network, web, and API penetration testing, ensuring compliance with industry standards. Proficient in using Burp Suite, Nessus, Nmap, and applying frameworks like OWASP Top 10, NIST, and MITRE ATT&CK. Strong analytical and project management skills, with a track record of delivering comprehensive security assessments, clear remediation strategies, and actionable reports. Adept at collaborative problem-solving and risk management, committed to enhancing security infrastructure and safeguarding digital assets.
Overview
4
4
years of professional experience
2
2
Languages
Work History
Senior Consultant
Black Duck
06.2021 - Current
- Company Overview: formerly known as Synopsys
- Performed comprehensive penetration testing for leading financial institutions, health insurers, e-commerce platforms, and FinTech applications to identify and mitigate security risks
- Led web and API penetration testing projects for clients, identifying critical vulnerabilities and delivering comprehensive remediation guidance to strengthen their security posture.
- Network Penetration Testing – Internal & external testing, including CDE (Cardholder Data Environment) and non-CDE networks for PCI DSS compliance.
- Performed segmentation testing and Attack Surface Mapping (ASM) to strengthen clients' security infrastructures and minimize attack exposure.
- Delivered high-quality security assessments, technical reports, and client presentations, ensuring timely completion and alignment with project requirements
- Conducted in-depth Web Application Security Assessments (DAST, PT) following OWASP guidelines, analyzing business logic flows using both manual and automated testing with proxy tools like Burp Suite.
- Conducted penetration testing on APIs and web services, including RESTful APIs, SOAP, and GraphQL, to identify and remediate security vulnerabilities
Education
PG Diploma - IT Infrastructure, Systems and Security
CDAC
Bengaluru, India 04.2001 -
Bachelor of Engineering - Electrical And Electronics Engineering
Oriental Institute of Science & Technology
Bhopal, India 05.2014 - 06.2018
Skills
Web, API, and Network Penetration Testing
Software
NMAP
Nessus
POSTMAN
Kali Linux
SQL MAP
Wireshark
Timeline
Senior Consultant
Black Duck
06.2021 - Current
Bachelor of Engineering - Electrical And Electronics Engineering
Oriental Institute of Science & Technology
05.2014 - 06.2018
PG Diploma - IT Infrastructure, Systems and Security
CDAC
04.2001 -
Similar Profiles
Safeeq BidarkundiSafeeq Bidarkundi
PROFESSIONAL SERVICES CONSULTING, STAFF CONSULTANT at Black DuckPROFESSIONAL SERVICES CONSULTING, STAFF CONSULTANT at Black Duck
Shubham NemaShubham Nema
Senior Consultant at Black DuckSenior Consultant at Black Duck
Amanda TritzAmanda Tritz
Operations Manager at Black Duck PartnersOperations Manager at Black Duck Partners