Arpan Dasgupta

Executing in-depth penetration testing on mobile and web applications, identifying security gaps and recommending corrective actions. Conducting API security assessments, focusing on vulnerabilities in authentication, data handling, and access controls to secure essential services. Directing network security evaluations, performing internal and external penetration tests to uncover misconfigurations and attack vectors. Simulating advanced cyber-attacks, including privilege escalation, SQL injection, and buffer overflows, to assess system resilience. Producing comprehensive vulnerability reports with actionable remediation steps, aligned with OWASP, NIST, and CIS standards. Presented findings, risks, and conclusions to management and relevant stakeholders to ensure informed decision-making. Assessed the potential impact of security breaches on business operations and user experience, aligning recommendations with business objectives. Analyzed vulnerabilities that could disrupt business functions if left unaddressed, emphasized the importance of timely remediation. Conducted training sessions for users to mitigate future security risks and enhance overall cybersecurity awareness.

Performed ethical hacking to expose weaknesses such as SQL Injection, Cross-Site Scripting (XSS), Broken Authentication, and XML External Entity (XXE) attacks across applications and infrastructure. Led network security scans, analyzing configurations to highlight potential security threats. Interpreted data from network logs and packet captures to identify patterns indicative of potential breaches. Developed recommendations for security enhancements and implemented fixes based on test outcomes. Communicated findings to stakeholders with clear, non-technical documentation. Utilized automated testing technologies including Nessus and OpenVAS.

Supported major clients such as Phoenix Life and Aviva, tailoring system solutions to meet their needs. Assisted in product development and customization based on client requirements. Managed deployment requests and implemented changes within the system. Resolved technical issues promptly, ensuring smooth operations and client satisfaction.