Sparsh Gulati
Bengaluru
Summary
As an experienced cybersecurity professional, I have worked at Intimetec and Airtel, and I am currently employed with IBM ISL. My expertise lies in various penetration testing methodologies, tools, and techniques, and I specialise in Penetration Testing, Vulnerability Management, and Network Security. I am dedicated to continuous skill development and staying abreast of industry trends.
Overview
3
3
years of professional experience
1
1
Certification
Work History
Penetration Tester
IBM
05.2024 - Current
- Conduct comprehensive security assessments across various platforms including Web, API, Mobile, Network, and Cloud environments.
- Conducted in-depth manual source code reviews to identify vulnerabilities and improve code security.
- Prepared executive reports following OWASP and CVSS standards, aligning with security frameworks and compliance.
- Enhanced IT security posture by performing VAPT on critical components, including Active Directory, Domain Controllers, Layer 3 Switches, and Firewall.
- Identified and mitigated critical vulnerabilities in web & API applications for high-profile clients through detailed Vulnerability Assessment and Penetration Testing (VAPT).
- Proficient in conducting security design reviews, threat modelling.
- Conduct penetration testing and vulnerability assessments on network.
- Worked closely with development teams to embed security best practices into the SDLC, enabling early detection and resolution of security issues.
- Developed a script to automate daily security tasks.
Information Security Analyst
Airtel
11.2022 - 05.2024
- Conducted extensive VAPT on a variety of web applications, ensuring robust security and mitigating potential threats.
- Executed comprehensive VAPT on mobile applications for both Android and iOS platforms, enhancing the security posture of mobile solutions.
- Conducted meticulous manual source code reviews, identifying and addressing potential vulnerabilities at the code level.
- Utilized advanced tools such as Coverity and Blackduck for automated code reviews, streamlining the detection of security issues.
- Improved security posture of IT infrastructure by conducting VAPT on essential components such as Active Directory, Domain Controllers, Layer 3 Switches, and Firewall.
- Implemented gate checks for DAST and SAST security issues within the CI/CD pipeline, enhancing automated security measures.
- Troubleshoot various pipeline-related issues, ensuring the smooth operation of CI/CD processes.
Jr. Cyber Security Engineer
In Time Tec
02.2022 - 10.2022
- Executed comprehensive security assessments on Web, API, Mobile, and Network.
- Facilitated closing meetings with product teams to review assessment findings and discuss mitigation strategies.
- Conducted meticulous manual source code reviews, identifying and addressing potential vulnerabilities at the code level.
- Conducted security audits to identify vulnerabilities.
- Developed a script to automate daily security tasks.
Education
Bachelor of Technology - Computer Science & Engineer
JECRC University
Jaipur, India05-2022
Skills
Web Application Penetration Testing
Android & IOS Penetration Testing
API Testing
Source Code Review
Threat Modelling
Red Teaming
Security Design Review
Network & Infrastructure Penetration Testing
VAPT
Red Teaming
Certification
- CRTP: Certified Red Team Professional
- CEH: Certified Ethical Hacker EC-Council
- CHFI: Computer Hacking Forensic Investigator
- CCNAv7
- Cyber Forensics & Investigation Certificate
- NSE 1: Network Security Associate
- NSE 2: Network Security Associate
- Microsoft Technology Associate: Security Fundamentals
Achievements
- Received the Airtel Rookie Award for exceptional performance in testing.
- Earned the Abner Security Bug Slayer Award for identifying and submitting critical vulnerabilities.
- Recognized with a CISCO Merit Letter for achieving CCNAv7 certification.
- Named Anti-Cyber Security Society Intern of the Month for outstanding contributions.
- Featured in JECRC University's Tech-Herald Bi- Annual Newsletter for notable achievements.
Timeline
Penetration Tester
IBM
05.2024 - Current
Information Security Analyst
Airtel
11.2022 - 05.2024
Jr. Cyber Security Engineer
In Time Tec
02.2022 - 10.2022
Bachelor of Technology - Computer Science & Engineer
JECRC University
Similar Profiles
RAJKUMAR PRAJKUMAR P
Azure Devops Engineer at IBMAzure Devops Engineer at IBM
PARIKSHITH UPADHYAYAPARIKSHITH UPADHYAYA
Onshore Lead & Business Analyst, Oracle CC&B at IBMOnshore Lead & Business Analyst, Oracle CC&B at IBM
MOHD YASIRMOHD YASIR
Senior Application Developer at IBMSenior Application Developer at IBM
Prakhar MishraPrakhar Mishra
AI/ML Intern at IBMAI/ML Intern at IBM
Keshav PushadappuKeshav Pushadappu
Community Specialist at G2.com Private LimitedCommunity Specialist at G2.com Private Limited