Himalayas logo
RK
Open to opportunities

Riaz Khan

@riazkhan1

Systems engineer and penetration tester with 3+ years' experience in application and API security.

India
Message

What I'm looking for

I seek roles focused on application and API security where I can perform penetration testing, drive remediation, integrate security into SDLC, and grow technically while mentoring teams.

I am a systems engineer and penetration tester with over three years of hands-on experience in manual penetration and application testing, focused on web and mobile applications.

I have performed Dynamic Application Security Testing (DAST) and manual penetration testing using Burp Suite and Postman, identifying OWASP Top 10 vulnerabilities such as SQLi, XSS, XML injection, IDOR, path traversal and insecure file upload.

I collaborate with development teams to review findings, explain exploitability and impact, and provide remediation guidance; I also conduct regression and progression testing within enterprise release cycles and integrate security across the SDLC.

I hold a B.Tech in Computer Science and certifications including Certified Ethical Hacker (CEH) and Purdue Applied Cybersecurity Essentials, and I seek roles where I can strengthen application security posture and mentor engineering teams.

Experience

Work history, roles, and key accomplishments

OL

Software Tester

Ouris Health Pvt Limited

Sep 2020 - Nov 2021 (1 year 2 months)

Executed manual functional testing for web and mobile (iOS/Android) health applications, authored detailed bug reports and maintained test cases across the SDLC to support timely releases. Collaborated with cross-functional teams to deliver validated releases.

Manual TestingBug ReportingMobile TestingWeb TestingSDLCRegression Testing

Education

Degrees, certifications, and relevant coursework

EC-Council (Certified Ethical Hacker) logoEH

EC-Council (Certified Ethical Hacker)

Certified Ethical Hacker, Cybersecurity

2024 - 2024

Obtained Certified Ethical Hacker (CEH) certification in 2024.

Purdue University (Applied Cybersecurity Essentials) logoPE

Purdue University (Applied Cybersecurity Essentials)

Applied Cybersecurity Essentials, Cybersecurity

2022 - 2022

Completed Applied Cybersecurity Essentials course from Purdue University in 2022.

SC

Sri Manakula Vinayagar Engineering College

Bachelor of Technology, Computer Science and Engineering

2015 - 2019

Grade: CGPA 6.9

Bachelor of Technology in Computer Science and Engineering with CGPA 6.9 completed between 2015 and 2019.

AS

Amalorpavam Higher Secondary School

H.S.C, Higher Secondary (Science)

2014 - 2015

Grade: 81.41%

Completed Higher Secondary Certificate with 81.41% in 2014–2015.

AS

Amalorpavam Higher Secondary School

S.S.L.C, Secondary Education

2012 - 2013

Grade: 88.8%

Completed Secondary School Leaving Certificate with 88.8% in 2012–2013.

Tech stack

Software and tools used professionally

Postman logo

Postman

Gmail logo

Gmail

Jira logo

Jira

XML logo

XML

iOS logo

iOS

SQL logo

SQL

Burp Suite logo

Burp Suite

Availability

Open to opportunities

Location

India

Authorized to work in

India

Job categories

Penetration TesterSystems EngineerApplication Security EngineerSecurity AnalystSecurity Test DeveloperVulnerability AnalystSecurity ConsultantDevSecOps EngineerSecurity ResearcherSenior Penetration TesterCyber Security Penetration Testing

Skills

Penetration TestingSecurity TestingAPI TestingVulnerability ManagementBurp suitePostmanJiraOWASP Top 10SDLCRegression TestingTest PlanningMobile App TestingWeb TestingAgile MethodologiesGmailSQLXMLiOS

Interested in hiring Riaz?

You can contact Riaz and 90k+ other talented remote workers on Himalayas.

Message Riaz

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Riaz Khan - Systems Engineer - Infosys | Himalayas