Help & Supportcareers@gravityer.com
Cyber security- VAPT with 5+ years in VAPT, Mobile, Web & API Security
AI is analyzing your overall score…
Identifying your key strengths…
Evaluating your skill match against the job requirements…
Assessing your cultural and operational fit
Application Security Engineer with over 4 years of experience at Tata Consultancy Services, specializing in performing VAPT across mobile applications, web applications, APIs, and network environments. Skilled in identifying exploitable vulnerabilities using real-world attack techniques, with strong expertise in DAST, API security testing, and Vulnerability Validation. Proficient in tools like Burp Suite and well-versed in industry standards such as OWASP Top 10 (Web/Mobile) and SANS Top 25.
Srinivasa Institute of Technology and Science (JNTUA)
Bachelor of Technology · Computer Science Engineering
N/A – June 30, 2021
Tata Consultancy Services (TCS)
Application Security Engineer
April 1, 2021 – Present
India
BANKING APPLICATION & MOBILE SECURITY ASSESSMENT
June 19, 2026 – Present
Performed a comprehensive security assessment on a high-stakes banking web and mobile application to identify and mitigate critical vulnerabilities that could lead to financial data breaches. Identified critical vulnerabilities including Broken Access Control, Injection flaws, and Authentication issues. Detected IDOR (Insecure Direct Object Reference) flaws and insecure local data storage in mobile versions. Identified LLM Prompt Injection vulnerabilities in integrated AI chatbots to protect against prompt manipulation. Performed API testing for authorization flaws using Burp Suite and Postman. Conducted manual business logic testing to identify flaws in fund transfer modules. Executed automated scans using Acunetix and Nessus, followed by manual validation to eliminate false positives. Outcome: Provided detailed remediation guidance and performed retesting to validate fixes.
CompTIA Network+ Certified Professional
CompTIA
June 1, 2026 – Present
Continuous Learning: Active practitioner on TryHackMe and Hack The Box labs (Web & Mobile tracks)
Unknown
June 1, 2026 – Present
Cultural Fit Analysis
The candidate's experience at Tata Consultancy Services, a large service-based organization, suggests an ability to work within structured environments and potentially with diverse client requirements. The continuous learning initiatives (TryHackMe, Hack The Box) indicate a passion for cybersecurity and a proactive attitude towards staying current with attack techniques, which aligns well with a culture of continuous improvement and threat awareness. The focus on banking applications and critical infrastructure security implies a strong sense of responsibility and attention to detail, which are valuable cultural traits for a VAPT role.
Soft Skills & Operational Fit
The candidate's resume indicates a strong focus on practical application security work, including detailed vulnerability identification, remediation guidance, and retesting. The continuous learning through TryHackMe and Hack The Box labs suggests a proactive and self-driven approach to skill development, which is beneficial for operational roles requiring constant adaptation to new threats. The detailed project description highlights a structured approach to security assessments, from initial scanning to manual validation and reporting.