Professional Experience

October 2025 – Present

Performed 140+ penetration testing projects across Web, API, Mobile (Android & iOS), and Infrastructure, with 40% focused on mobile applications.
Conducted penetration testing services for major banking institutions with a primary focus on mobile applications.
Lead Junior Penetration Tester during penetration testing activities.
Assisted the client in implementing vulnerability mitigation recommendations.
Created detailed reports of penetration testing results using CVSS v3 and OWASP scoring methodologies.
Presented penetration testing findings to clients in a clear and professional manner.
Performed retest on previously identified vulnerabilities after fixing, and prepared the final reports outlining retesting results.

July 2023 – October 2025

Handled 100+ penetration testing projects, including Web, API, Mobile Applications (Android & iOS), and Infrastructure,based on OWASP WSTG and MSTG standards.
Created detailed reports of penetration testing results using CVSS v3 and OWASP scoring methodologies.
Presented penetration testing findings to clients in a clear and professional manner.
Performed retest on previously identified vulnerabilities after fixing, and prepared the final reports outlining retestingresults.

June 2022 – May 2023

Performed initial and follow-up scans on tens of thousands of assets using a white-box approach.
Analyzed root causes for scanning failures on specific IP addresses and escalated unresolved issues to Vulnerability Assessment Tier 2 for further investigation.
Compiled detailed reports on asset scanning results for documentation.
Conducted penetration testing using a black-box approach to assess web & mobile application (binary checking).
Prepared comprehensive reports outlining findings, severity, and recommendations from penetration testing activities.