Seeking opportunities in vulnerability management (primary focus), along with infrastructure and web security. Interested in roles involving VAPT, risk remediation, and improving security posture. Looking for a permanent remote (work from home) position where I can contribute and grow.
Looking for a job
Karan thakor
@karanmakwana
OSCP certified infra security & vulnerability management professional with 9+ years experience and a background in UI development.
IndiaWhat I'm looking for
I am a cybersecurity professional with over 9 +years of experience in infrastructure security, vulnerability assessment, vulnerability management, and Software Composition Analysis (SCA). I have worked with organizations like Tata Consultancy Services, FireCompass, Accenture and Indegene where I focused on identifying security weaknesses, validating findings, and driving effective remediation.
I have strong hands-on experience with tools such as Nessus, Qualys, Burp Suite, and HCL AppScan. I specialize in vulnerability analysis, reducing false positives, and providing clear, actionable remediation guidance. I have also worked on component-level assessments and handled SCA findings using tools like BlackDuck, ensuring accurate reporting and reducing noise for development teams. Additionally, my background in web development helps me better understand application behavior and security gaps.
I hold the OSCP certification, reflecting my practical security testing skills and problem-solving approach. I am particularly interested in infrastructure security and improving vulnerability management processes. I enjoy deep-diving into vulnerabilities, refining testing methodologies, and continuously enhancing my skills, and I am looking for opportunities where I can contribute to strengthening an organization’s security posture.
Experience
Work history, roles, and key accomplishments
TS
Current
Currently working as a Consultant, performing VAPT and vulnerability management using tools like Nessus, Qualys, Burp Suite, and AppScan. Responsible for validating findings, reducing false positives, and providing remediation guidance. Also handle SCA findings via BlackDuck and ensure timely closure of vulnerabilities within SLA through stakeholder coordination.
TS
Current
Conducted VA/PT assessments using Nessus, HCL AppScan, Qualys and Burp Suite, validated findings and mitigated false positives while ensuring timely remediation within SLA. Performed component vulnerability assessments and managed ServiceNow tickets for BlackDuck false positives.
FL
Red Team Security Analyst
Firecompass Technologies Pvt. Ltd.
Apr 2021 - Jan 2023 (1 year 9 months)
Conducted security assessments for external-facing Web applications, Mobile applications, API and on continuously monitored delta assets. Executed Dark web assessments for clients and contributed to internal Network Security assessments using the Nessus tool. Perform Azure cloud assessment using ScoutSuite to identify potential misconfigurations.
AL
Associate Consultant
AccentureSolutions Pvt. Ltd.
Feb 2017 - Apr 2021 (4 years 2 months)
Conducted VA and PT Assessments, employing tools like Nessus, Acunetix, HCL AppScan and Burp Suite. Produced concise, actionable reports for teams and played a key role in facilitating efficient remediation processes.
AL
Senior Analyst
Accenture Solutions Pvt. Ltd.
Feb 2017 - Apr 2021 (4 years 2 months)
Conducted application security assessments, executed security tools, validated findings and mitigated false positives to improve application security posture across engagements.
IL
Web Designer
Indegene Pvt. Ltd.
Jan 2016 - Feb 2017 (1 year 1 month)
Worked on front-end development technologies like HTML, CSS, JavaScript and jQuery to create Emailers and Responsive Websites.
Education
Degrees, certifications, and relevant coursework
RR
R.K. College of Engineering & Technology, Rajkot
Bachelor of Engineering, Information Technology
2010 - 2014
Grade: 6.38 CGPA
Completed a Bachelor of Engineering in Information Technology with a 6.38 CGPA.
RK University
Bachelor Of Engineering, Information Technology
2010 - 2014
Grade: 6.38 CGPA
HR
Harivandana School of Science, Rajkot
Higher Secondary (12th), Science
2008 - 2010
Grade: 55%
Completed Higher Secondary (12th Science) with an aggregate of 55%.
SB
St Xavier’s School, Bhachau
High School (10th), General Education
2007 - 2008
Grade: 77.08%
Completed High School (10th) with an aggregate of 77.08%.
Tech stack
Software and tools used professionally
Availability
Looking for a job
Location
IndiaAuthorized to work in
Social media
Job categories
Skills
NessusBurp suiteFront End Web TechnologiesHTMLCSSJavaScriptjQueryResponsive Web DesignServiceNowVulnerability ManagementVulnerability AssessmentVulnerability TestingVulnerability ResearchVulnerability Scanning SolutionsVulnerability Management SecurityQualysCybersecurityOffensive SecurityOSCPCEHPenetration TestingScoutSuiteBlackDuck (Component Vulnerability Assessment)Azure Security CertificationWeb Application SecurityAPI SecurityDark Web AssessmentBootstrapReactGmailJanJava
Interested in hiring Karan?
You can contact Karan and 90k+ other talented remote workers on Himalayas.
Message KaranFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
