- Reply rate:
- -
- Availability:
- Hourly ($/hour)
- Age:
- 39 years old
- Location:
- nashik, maharashtra, India
- Experience:
- 3 years
PROFILE
Ashish Kavishwar
Accomplished IT team Player, with over 8 years of experience in assessments and
reviews spanning: network / application security and process design
implementation and measurement;. Experienced network vulnerability and
penetration tester, and. Quality and security focused process Engineer. Having
hands on experienced conducting internal and external Information Security
Audits. Conducdting risk assessment, gap analysis, Implementation of security
controls etc.
Address
75 J B Badgujar Colony near GTP Stop
Deopur
Dhule 424005
WORK EXPERIENCE
Phone Number
-
Performed Client site ISMS audits on the behalf of YES bank.
Carried Out Vendor Risk Assessment.
Policy Drafting.
Policy Implementation.
Performed Penetration Testing.
Email Address-Date Of Birth
22 December 1985
Linkedin
ashhp1
(September 2019 - February 2020)
(May 2017 - Present)
Security Analyst-Freelancer
AWARDS
Bug Bounty
Google
Reported Multiple Security
Vulnerabilites in their application.
Bug Bounty
ATT
Reported Multiple Security
Vulnerabilities and Received Rewards
against the reported Vulnerabilities
The focus of manual Penetration Testing is on actively Probing the designated
target for security and privacy vulnerabilities.
Network Level Vulnerabilities.
Application-level Vulnerabilities like implementation of specified constraints,such
as accesslevels, data access, manipulations of backend and frontend.
Prioritization of the OWASP Top 10 issue and business logic flaws.
Overview of Relevant flaws in the versions of Libraries and frameworks that are in
use.
Vulnerabilities identified during automated and manual scans of the system
Testing Reports-This report details which tools were used. Testing approach and
coverage ofthe target app.
Test Cases- Test cases are claimed in the test cycle and are used to guide testing
approach aswell as allow to client get more insight into overall approach.
HELIOS Solutions,Vadodara,India
Bug Bounty
(October 2016 - May 2017)
Senior Security Analyst
IBM
Rported 16 cross site scripting
vulnerbailities
Bug Bounty
UNITED AIRLINES
Rewarded 6,00,000 united airmiles
form United Airlines for reported
sceuirty vulnerbilities.
Bug Bounty
OUTSCALE 3ds
CVE Contribution
mitre
CERTIFICATIONS
ISO 27001 LA
June 2021
PECB
GDPR
July 2021
ITGSQ
ISO 27001 LA TRAINER
PECB
Application-level Vulnerabilities like implementation of specified constraints,such
as accesslevels, data access, manipulations of backend and frontend.
Prioritization of the OWASP Top 10 issue and business logic flaws.
Overview of Relevant flaws in the versions of Libraries and frameworks that are in
use.
Vulnerabilities identified during automated and manual scans of the system
KTK INFOTRONICS PVT LTD, Mumbai, India
Security Analyst
Cybrary
Computer Forensic
Cybrary
ISACA CXS Boot Camp
ISACA
LANGUAGES
ENGLISH
MARATHI
FLUENT
NATIVE
(April 2015 - August 2016)
Responsibilities: Application and network vulnerability and penetration testing,
database security, and risk.
Performed vulnerability testing, application security, database security, and
penetration testing for UK Law Firm
Executed application penetration tests against a wide variety of technologies UK
LawFirm According to OWASP -10 methodology perform web application
penetrationtesting.
Documents exploits and results in remediation and final report.
Conducted Penetration Testing for the web application and related
infrastructure, including web servers, database servers.
Perform Manual Pen Test and Validations of vulnerability. Scan result
Documented details Penetration Test Reports.
HCL Infoteck Ltd, Mumbai, India
Penetration Testing
NATIVE
Risk Manager
APPLAUSE INC, MA,USA
Github
ashhp1
HINDI
INFOSEC VENTURES PVT LTD, Mumbai, India
(December 2013 - March 2015)
Associate
Associate
Responsibilities: Troubleshooting and configurations On the network Devices,
Desktop, laptops, server Troubleshooting and configuration on Network
Cameras, Router, Switches, Outlook mail, Rfid devices, Printers, scanner, Wi-Fi
BCP web application etc.
Installations of network cameras, Router, Switches, Outlook mail, Rfid devices,
Printers, scanner, WI-Fi BCP web application etc.
Maintained the It Assets Inventory List.
Prepare daily check list Reports for operational it assets and coordinate with
other it staff.
EDUCATION
Pune University
Bachelor of Engineering Electronics and Telecommunication
SKILLS
Penetration Testing
IS AUDIT
Expert
EXPERT
GDPR
Vulnerability Assessment
INTERMIDIATE
Expert
KALI LINUX
QUALYS
EXPERT
EXPERT
NESSUS
ALIEN VALUT SIEM
EXPERT
EXPERT
BRUPSUIT
METASPLOIT
EXPERT
EXPERT
