Application

Praveen Kumar from India applies for Blue Card Germany

Software and applications developers and analysts not elsewhere classified

Personal data:

For personal data please contact us
with the following Applicants-ID: 16709

Profession:

Name of profession: Software and applications developers and analysts not elsewhere classified Name of latest business sector: CyberSecurity,Information Security Latest occupation/title: Lead Security Services Latest main activities: Penetration Testing, Vulnerability Assessment, Application and Network Security, Security Testing, Mobile Security Testing, SIEM, Computer Forensics, ISMS,ISO 27001

Education:

Completed education: bachelor Title or Qualification: Bachelor of Technology Specialisation: Computer Science and Engineering Additional trainings: CEH CHFI ECSA

Preferred countries:

1. Preferred country | region / city: Germany | 2. Preferred country | region / city: Luxembourg | 3. Preferred country | region / city: Belgium |

Language skills:

1. Language skills: english => excellent 2. Language skills: 3. Language skills: Telugu, Hindi => excellent

Personal note /detailed application:

__________________________________________________________________________________

CAREER OBJECTIVE:

To use my skills, experience and adaptability to obtain a promising position in the competitive world where I am constantly challenged. My greatest strength is my ability to walk into a new environment and be functional immediately. I am quick to learn and adapt to new situations, configurations and technologies. Seeking to contribute to an organization which promotes from within and utilizes & encourages continuing education and gathering credential certification. My greatest assets is my ability to build a framework of understanding in the development of Networks, Security, Risk Assessment, Risk Reduction, as well as the development of Personnel which support those Infrastructures for Corporations on a Global basis.

PROFESSIONAL OVERVIEW:

More than Five Years of dedicated experience in Information Security with expertise in penetration testing, vulnerability assessments, security policy and procedures, firewalls and technical security documentation and compliance.
Hands on experience with Vulnerability Assessment, Penetration Testing, Ethical Hacking, Network Security and Techniques.
Hands on experience on different Vulnerability Management tools like Qualys Guard, Appscan, Acunetix, netsparker etc.

CORE COMPETENCIES:

Web and Machine based Vulnerability Assessment
Writing Test case Analysis by performing Social Engineering.
Network Security Testing
Database pen-test and report generation.
Application Testing
Forensic Testing
Evidence Reporting
Automation testing for quick report generation.
Intensive pen test with Linux security Distro
Application test from remote and local view.
Web Exploitation based on versions.
Firewall Vulnerability Assessment
White box/Black box testing
Security Awareness Training
Machine Auditing

Languages : C++, Java, Python
Scripting Languages : HTML, JavaScript, PHP
Databases : MySQL, MSSQL, POSTGRESQL
Operating Systems : Windows, Mac, Linux Distros

Security Tools

Information Gathering: Nmap, Angry IP, Maltengo,Neo Trace, Dradis, SSL Scan
Vulnerability Scanner: Nexpose, Acunetix, Core Impact, Retina, Nessus, OpenVas, SQL Map, DB Audit, Appscan, Qualys Guard.
Pen Testing: Fast track, Metasploit, Social Engineering Tool Kit.
Forensic Investigation: Forensic Tool Kit (FTK), EnCase, HELIX Distro.
Intrusion Detection Systems: Snort
Security Distros: Kali Linux, Black Box, Caine, Helix.
SIEM: OSSIM


ACADEMIC QUALIFICATIONS:

Certification Courses in Ethical Hacking and Forensic Investigation from EC-Council,2009

Bachelor of Technology
Avanthi institute of science and technology, JNTU University, June 2011

Board of Intermediate Education (M.P.C )
Sri Chaitanya Junior College, April 2007, Hyderabad

Board of Secondary Education
Gade Rukma Reddy Memorial High School, Mahbubabad, April 2005, Warangal



CERTIFICATIONS:

EC-Council CEH Certified Ethical Hacker.
EC-Council CHFI Computer Hacking Forensic Investigator
EC-Council ECSA EC-Council Certified Security Analyst
Axelta Certified IoT Professional
Received Certificate of EC-Council Continuing Education for having 120 minimum credits to maintain all EC-Council Certifications and to do MSS in EC-Council.


PROFESSIONAL SKILLS:

Broad knowledge of Software, and Networking technologies to provide a powerful combination of analysis, implementation, and support.
Exceptional ability to investigate and analyze information and to draw conclusions.
An innovator, who is willing to go the extra mile to get the desired results.
Able to quickly learn and apply new technologies and adapt to new environments.
Creative, Resourceful and Organized.


WORK EXPERIECNCE:



Smartnet IT Solutions
Security Analyst
July 2011-March 2014

Key Responsibilities:

Perform onsite and remote security consulting including penetration testing, application testing, web application security assessment, internet security assessment, social engineering
Perform ethical cracks ("hacks") to assess the vulnerabilities of test, Internet, and/or Intranet connected systems, networks, and applications including Windows and Linux.
Generate and present reports on security vulnerabilities to both internal and external customers.
Responsible for system, network, and data integrity within the enterprise.
Testing Application Security using Manual and Automation methods
Hands on experience in Security Testing tools.
Exposure in Vulnerability Assessment, Network Security and Ethical Hacking Techniques
Conducted Firewall Vulnerability Assessment
Preparing the Test Plan and defining the scope of Test Plan
Conducted Security awareness workshops to clients.




Infotree Solutions
Lead, Information Security Services
March 2014-Present

Key Responsibilities:

Perform onsite and remote security consulting including penetration testing, application testing, web application security assessment, internet security assessment, social engineering
Perform ethical cracks ("hacks") to assess the vulnerabilities of test, Internet, and/or Intranet connected systems, networks, and applications including Windows and Linux.
Generate and present reports on security vulnerabilities to both internal and external customers.
Responsible for system, network, and data integrity within the enterprise.
Testing Application Security using Manual and Automation methods
Hands on experience in Security Testing tools.
Exposure in Vulnerability Assessment, Application Security, Network Security, Wireless Security, Ethical Hacking Techniques and Computer Forensics.
Conducts Firewall Vulnerability Assessment
Preparing the Test Plan and defining the scope of Test Plan
Perform Computer Forensics for the Law Enforcement Agencies through the company.
Team Lead of Information Security Team and R & D Activities of the company.
Leads the product security in the organization.
Perform Penetration Testing using OWASP, SANS, OSSTMM and other custom methodologies.
Conducts Security Tech Friday campaigns to create security awareness among the employees.
Conducts OWASP Top 10 Best Practices training to developers to perform secure coding.
Leads the Security Monitoring Team, performs threat management and safeguard the organization from cyber security threats.
Acts as ISO 27001 MR, ISO 27001 Lead Implementer and maintains the ISMS in the organization.
Acts as Lead Auditor and performs the Information Security audits in the organization.


SEMINARS AND WORKSHOP:

Conducted Workshops in Avanthi Institute of Engineering & Technology and gave seminars on Network security and Ethical Hacking in many Educational Institutions in Andhra Pradesh.
Conducted Ethical Hacking Workshops and Information Security Awareness Training camps in-house and in many client locations.

ACHEIVEMENTS:

Participated in Hack track Contest conducted by Tech-Defense and received CEH level-1 Certificate
Participated and semi-finalist in InCTF’10 (India’s First National Level CTF Style Hacking Contest)
Completed the PGDCA Course in the year 2004(in 9th class).
Participated and won the quiz and crossword puzzles contest in security conducted by C-DAC, Hyderabad.
Represented India in Global Cyberlympics 2012 with a team name of star.starnull.
Worked as a Team Captain of *.*null and Represented and Lead INDIA (*.*null) Team in Global Cyberlympics 2013 World Finals.
Worked as a Team Captain of InTrSecT and Represented and Lead INDIA (InTrSecT) Team in Global Cyberlympics 2014.
Participated in many bug bounties and found some of the critical vulnerabilities in the applications.



 

Facebook

Google Plus