About

About

Summary

As a penetration tester, I am dedicated to identifying security vulnerabilities in Web applications, APIs, network infrastructures, and Active Directory environments. My goal is not only to uncover weaknesses but to provide clear, practical recommendations that help organizations strengthen their defenses effectively.

I stay current with the latest security trends and collaborate closely with development and operations teams to integrate security seamlessly into their workflows. By combining technical expertise with a collaborative approach, I help develop strong, secure systems that protect key assets and align with business priorities.

Achievements

  • Reached #1 Rank on National Leaderboard in Hack the Box.
  • Attained first-class honors in Bachelor’s Honors course, showcasing academic excellence and dedication.

Certifications

  • Certified Professional Penetration Tester (eCPPTv2) - INE Security
  • ISO/IEC 27001:2022 Lead Auditor - Mastermind
  • Cloud Foundations - AWS Academy
  • Cloud Security Foundations - AWS Academy
  • Network Security Expert : NSE 1 - Fortinet
  • Network Security Expert : NSE 2 - Fortinet
  • Network Security Expert : NSE 3 - Fortinet

Working Experience

Security Testing Engineer @ F1Soft International Pvt. Ltd | July, 2025 - Present

  • Conducted Vulnerability Assessment & Penetration Testing across Web, Mobile, and API Platforms in accordance with industry-standard guidelines.
  • Executed both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) to identify vulnerabilities throughout the software development lifecycle.
  • Researched, implemented, and ensured compliance with key regulatory frameworks including ISO 9001, GDPR, CCPA, PCI-DSS, and other relevant standards.
  • Integrated automated security checks within CI/CD pipelines, fostering Security-as-Code practices to enhance DevSecOps workflows.
  • Delivered internal training sessions and security awareness programs to empower teams with best practices and threat mitigation strategies.
  • Continuously performed security research to stay updated on Emerging Threats, Vulnerabilities, and Technologies.

Penetration Tester @ CryptoGen Nepal Pvt. Ltd | Feb, 2022 - July, 2025

  • Performed Vulnerability Assessment and Penetration Testing to identify vulnerabilities and weaknesses for various Organizations.
  • Performed research on new vulnerabilities, Security Frameworks and Methodologies and practiced the approaches and attacks on simulated environment for better understanding.
  • Researched and performed Web/Mobile Application, API and Network Infrastructure Penetration Testing Following Standard Guidelines.
  • Researched on Red Team Assessments and AWS Cloud Security Testing.
  • Documented various vulnerabilities found during penetration testing and made report with proper proof-of-concepts

Education

InstitutionDurationQualification
Coventry University2019 - 2022BSc (Hons) Ethical Hacking and Cyber Security
Uniglobe Higher Secondary School2017 - 2019High School Diploma in Computer Science