Seeking a Security Analyst, Junior AppSec, or Vulnerability Research Internship to transition my independent research background into structured corporate workflows, enterprise Agile sprint cycles, and collaborative engineering environments.
Looking for a job
Aryan Akbar
@aryanakbar
Penetration Tester | Offensive Security | API & Web App Pentester | Founder @ CyberSecOrg
PakistanWhat I'm looking for
I am a cybersecurity professional and penetration tester with a strong track record of identifying and responsibly disclosing critical security risks through authorized testing. Self-taught with a foundation built during my Matric (Computer Science) studies, I have earned multiple industry-recognized certifications and developed deep expertise in web security, ethical hacking, and OSINT research.
My work has contributed to securing assets for global organizations such as 3CX, Origin Protocol, SquareX, GulAhmed, and as well as major academic institutions across Pakistan such as AIOU, LUMS, NUST, NUCES, PU, and Aspire Colleges. The vulnerabilities I’ve reported span authentication bypasses, sensitive data exposure, injection flaws, and access control issues.
I am the Founder of CyberSecOrg, where I lead security assessments, penetration testing engagements, OSINT investigations, and comprehensive cybersecurity audits. I have developed advanced security tools and regularly contribute to red team style assessments simulating real-world attack scenarios.
Notably, I discovered and responsibly disclosed a critical authentication vulnerability (CVSS 9.8) in Shakepay’s financial platform, managing the full disclosure lifecycle from identification to remediation. My approach emphasizes structured testing methodologies, CVSS scoring, proof-of-concept development, and clear technical reporting, working closely with security teams to improve overall security posture.
Experience
Work history, roles, and key accomplishments
Current
•Conducted security assessments on web applications and REST/GraphQL APIs.
•Discovered critical vulnerabilities including IDOR, SSRF, and authentication bypasses.
•Reported high-severity bugs through authorized responsible disclosure programs globally.
•Authored technical PoC reports detailing exploitation steps and remediation guidance.
FR
Current
Responsible Disclosure Researcher
Freelance
Jan 2022 - Present (4 years 5 months)
Conducted security assessments securing assets for organizations such as 𝟑𝐂𝐗, 𝐎𝐫𝐢𝐠𝐢𝐧 𝐏𝐫𝐨𝐭𝐨𝐜𝐨𝐥, 𝐒𝐪𝐮𝐚𝐫𝐞𝐗, and 𝐆𝐮𝐥𝐀𝐡𝐦𝐞𝐝, plus academic institutions including AIOU, LUMS, NUST, and NUCES.. Discovered and responsibly disclosed high-impact issues, including a critical authentication flaw (CVSS 9.8) in Shakepay, with detailed reports and PoC exploits.
Education
Degrees, certifications, and relevant coursework
GV
Gov.t High School, Vehari
Matriculation , Computer Science
2024 - 2026
Currently pursuing Matric in Computer Science, focusing on foundational knowledge in computer science principles and practices.
GC
Government Graduate College,Vehari
FA(IT), Computer Systems Networking and Telecommunications, Computer Science
2026 - 2028
Focused on networking fundamentals, system architecture, and IT infrastructure.
Actively applying academic knowledge in real-world security testing and tool development
Tech stack
Software and tools used professionally
Availability
Looking for a job
Location
PakistanAuthorized to work in
Salary expectations
60k-80k USD
Social media
Job categories
Interested in hiring Aryan?
You can contact Aryan and 90k+ other talented remote workers on Himalayas.
Message AryanFind your dream job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
