
Cyber security- VAPT with 5+ years in web app security & network assessments.
AI is analyzing your overall score…
Identifying your key strengths…
Evaluating your skill match against the job requirements…
Assessing your cultural and operational fit
Seasoned cybersecurity professional with hands-on experience in web app security, configuration reviews, and network assessments. Skilled in identifying vulnerabilities, securing systems, and driving remediation. Strong technical foundation backed by real-world threat analysis and risk mitigation.
National Law School of India University
PG Diploma · Cyber Law & Cyber Forensics
August 1, 2025 – June 30, 2026
Chitkara University
Executive MBA · Cybersecurity
August 1, 2025 – June 30, 2027
NSHM Knowledge Campus, Kolkata
M.SC · Information & Cyber Security
August 1, 2021 – June 30, 2023
Sikkim Manipal University
BCA · Computer Application
August 1, 2018 – June 30, 2021
DON BOSCO SCHOOL LILUAH
Higher Secondary Education
June 1, 2015 – May 31, 2017
DON BOSCO SCHOOL LILUAH
Secondary Education
June 1, 2013 – May 31, 2015
Deloitte Touche Tohmatsu India LLP
ASSISTANT MANAGER (T&T)
January 1, 2022 – Present
Kolkata, West Bengal, India
Ernst & Young LLP
CYBER SECURITY ANALYST
January 1, 2021 – January 1, 2022
Kolkata, West Bengal, India
Australian Bank - API and Web Application Security Testing
January 1, 2022 – June 1, 2026
Performed in-depth security testing of core banking web applications and APIs. Focused on identifying authentication, authorization, and business logic flaws, ensuring alignment with OWASP Top 10 and secure coding practices.
Global Manufacturing Unit - Holistic Cybersecurity Assessment with Red Teaming
January 1, 2022 – June 1, 2026
Led a full-spectrum cybersecurity assessment incorporating Red Team simulations, social engineering, and physical security testing. Identified gaps in detection and response capabilities, and provided strategic remediation guidance.
Steel Manufacturing Company - Network Penetration Testing of Enterprise IT Infrastructure
January 1, 2022 – June 1, 2026
Conducted internal and external network penetration testing of routers, firewalls, and core systems. Delivered a detailed risk posture analysis and prioritized mitigation roadmap.
Power Sector Client - Configuration and Security Hardening Review
January 1, 2022 – June 1, 2026
Reviewed configurations of Active Directory, firewalls, databases, and critical servers. Benchmarked against CIS standards and industry best practices to enhance infrastructure security and compliance.
Healthcare Technology Provider - Cloud Security Review and Web and Mobile Application Testing
January 1, 2022 – June 1, 2026
Assessed security controls of cloud-hosted health platforms and performed web application testing with emphasis on HIPAA compliance and data privacy.
Pharmaceutical Client - 24x7 SOC Monitoring and Threat Intelligence Integration
January 1, 2022 – June 1, 2026
Supported 24x7 SOC operations, monitored security alerts from EDR, SIEM, and DLP systems. Correlated threat intelligence feeds with IOCs for early detection of targeted threats.
CERTIFIED INFORMATION SYSTEMS AUDITOR® (CISA)
ISACA
January 1, 2025 – Present
LICENSED PENETRATION TESTER (MASTER) [LIPT]
EC-Council
January 1, 2022 – Present
CERTIFIED PENETRATION TESTING PROFESSIONAL [CPENT]
EC-Council
January 1, 2022 – Present
CERTIFIED ETHICAL HACKER v10 [CEH]
EC-Council
January 1, 2020 – Present
CISCO CERTIFIED NETWORK ASSOCIATE (CCNA)
Cisco
January 1, 2020 – Present
Cultural Fit Analysis
The candidate's experience across diverse industries (banking, manufacturing, pharmaceutical, healthcare, power sector) and client types (Deloitte, EY) demonstrates adaptability and a broad understanding of different security landscapes. The pursuit of an Executive MBA in Cybersecurity and a PG Diploma in Cyber Law & Forensics indicates a commitment to continuous learning and a holistic view of cybersecurity, which aligns well with a culture of professional growth and comprehensive security strategy. The variety of projects, from API security to Red Teaming, shows a versatile skill set applicable to various organizational needs.
Soft Skills & Operational Fit
The candidate's project descriptions and experience highlight strong analytical and problem-solving skills, crucial for identifying complex vulnerabilities. The mention of 'Creative Idea, Team Work, Communication, Problem Solving' in personal skills suggests a good fit for collaborative and dynamic security environments. Experience in preparing detailed reports and working with client technical teams indicates strong communication and stakeholder management abilities, essential for operational effectiveness in a senior VAPT role.