sonu shrma

I’m a Dedicated Security Engineer - VAPT, delivering end-to-end security assessments that identify vulnerabilities and strengthen the security posture of IT infrastructure, web applications, and networks. I’m hands-on with industry-standard tooling and I focus on turning findings into clear, actionable remediation guidance.

During my Cyber Security Intern role at Recent Scudo Cyber Solution Pvt. Ltd., I performed end-to-end Vulnerability Assessment and Penetration Testing (VAPT) across client environments. I identified and exploited security vulnerabilities using Burp Suite, Nessus, and OWASP to assess potential impacts, then produced detailed assessment reports with risk levels and recommended remediation measures.

I also care deeply about communication and collaboration—bridging the gap between technical detail and non-technical stakeholders. I worked with client IT teams to prioritize and address security issues, ensuring high-quality, actionable recommendations that support real-world risk reduction.

On the offensive-security side, I’ve demonstrated impact through projects and bug bounties, including a critical vulnerability report for Epic Games’ public bug bounty program. I’ve also built custom automation tooling (for web pentesting utilities and reconnaissance) to streamline repetitive tasks and improve the efficiency of end-to-end security assessments, backed by my CEH and CRTA certifications.