Looking for a job

Shubham Sonawane

@shubhamsonawane1

Message

Penetration tester and security engineer focused on practical risk reduction.

India

Message

What I'm looking for

I seek hands-on roles in penetration testing or security engineering where I can run assessments, collaborate with dev teams, and help reduce risk while continuing technical growth through CTFs and certifications.

I am a penetration tester and security engineer with hands-on experience in web, network, and Android application security, having contributed to vulnerability assessments, exploitation validation, and remediation guidance while working with security teams and clients.

I have placed in multiple national CTFs and completed professional certifications and learning paths (CEHv12, TryHackMe tracks), and I reliably deliver clear reports, actionable remediation recommendations, and collaboration with developers to improve secure coding and overall security posture.

Experience

Work history, roles, and key accomplishments

Current

Cyber security analyst

Current

Softcell Technologies Global Private Limited

Mar 2025 - Present (1 year 3 months)

End to end VAPT of Web, android, api, network, iot ot devices and scr.

Penetration Testing Security Web Application Security Source Code Review Network Security API Security Vulnerability Management Vulnerability Assessment Vulnerability Analysis Vulnerability Discovery Vulnerability Reports IoT Security SAST DAST SDLC Secure SDLC

Current

Cyber Security Analyst

Current

Softcell Technologies Global Pvt. Ltd.

Mar 2025 - Present (1 year 3 months)

Executed end-to-end penetration tests across web, enterprise infrastructure, internal networks, mobile apps, REST/SOAP APIs, and IoT/OT devices, identifying attack vectors across the full kill chain. Automated reconnaissance and vulnerability discovery pipelines using Nmap, Nessus, and Python, and authored OWASP/CVSS-aligned reports with prioritized remediation roadmaps for development and IT team

Penetration Testing Web Application Security Nmap Nessus OWASP CVSS Python

Security Engineer

Bobble AI

Jul 2024 - Feb 2025 (7 months)

Worked in S-SDLC to manage vulnerabilities and improve security posture, contributing to CTF wins and reducing company security risks.

VAPT Nmap OSINT Nessus

Penetration Tester

SecLance Pvt. Ltd.

Feb 2024 - Jun 2024 (4 months)

Conducted vulnerability scans and penetration tests across web, Android, and network surfaces and delivered mitigation recommendations to improve application security.

Penetration Testing Application Security MobSF Frida Metasploit Vulnerability Assessment Reporting Linux

Penetration Tester Intern

SecLance Pvt. Ltd.

Jan 2024 - Jun 2024 (5 months)

Performed reconnaissance, port scanning, and vulnerability exploitation across web, API, Android, and network targets under supervision of senior penetration testers. Documented findings with reproduction steps, risk ratings, and remediation recommendations, producing client-ready report sections independently by the end of tenure.

Port Scanning Vulnerability Reports

Education

Degrees, certifications, and relevant coursework

Smt. Kashibai Navale College of Engineering

Bachelor of Engineering, Android Application Security

2021 - 2024

Grade: 9.05 CGPA

Completed Bachelor of Engineering with a focus on Android application security and conducted vulnerability assessments and mitigation recommendations.

Smt. Kashibai Navale College of Engineering

Bachelor of Engineering (B.E.), Computer Engineering

2021 - 2024

Grade: CGPA: 9.05 / 10

Earned a Bachelor of Engineering (B.E.) in Computer Engineering from Smt. Kashibai Navale College of Engineering (2021–2024), achieving a CGPA of 9.05/10.