Open to opportunities

Suyash Jain

@suyashjain2

Message

Offensive security analyst with expertise in web application security.

India

Message

What I'm looking for

I am looking for a role that challenges my skills in offensive security and offers opportunities for growth in a collaborative environment.

I am an Offensive Security Analyst with over three years of experience specializing in web application security, cloud assessments, and red team methodologies. My career has been marked by leading over 400 penetration tests across various platforms, including web applications, AWS, and APIs. I pride myself on identifying real risks that others may overlook, providing clear explanations, and assisting teams in implementing effective fixes swiftly.

Throughout my journey, I have earned several certifications, including eWPTX and CRTE, and achieved a commendable rank of 239 on Intigriti. My work experience includes roles as a Senior Information Security Analyst and an Information Security Analyst Intern at Astra Security, where I conducted extensive audits and discovered critical vulnerabilities. I am passionate about offensive security and continuously seek to enhance my skills and contribute to the field.

Experience

Work history, roles, and key accomplishments

Current

Senior Information Security Analyst

Current

Astra Security

Nov 2022 - Present (2 years 10 months)

Performed over 200 audits across web applications, APIs, and AWS assets, identifying critical issues such as logic flaws and misconfigured IAM roles. Discovered CVEs in an open-source CRM and provided direct remediation support to more than 50 clients.

Report Writing Vulnerability Assessment Penetration Testing

Current

Bug Bounty Hunter

Current

Intigriti

Nov 2021 - Present (3 years 10 months)

Proficiently identified bugs in web applications ranging from low to critical severity through both automated bash scripting and manual testing. Actively participated in bug bounty programs on platforms like Intigriti, achieving a rank of 239.

Bug Bounty Asset Discovery Automation Bash Scripting Manual Testing Vulnerability Research

AWS Cloud Intern

F13 Technologies

Jul 2022 - Present (3 years 2 months)

Gained practical experience in configuring real-world AWS environments with a strong emphasis on security best practices. Performed advanced vulnerability assessments in a sandboxed environment for AWS infrastructure.

AWS Config Review Cloud Security Documentation Vulnerability Assessment

Cloud Security Intern

Viden.io

Nov 2021 - Present (3 years 10 months)

Utilized tools like ScoutSuite and Prowler to conduct basic configuration testing on AWS environments. Discovered insecure key handling setups and helped address misconfigurations that could lead to high-impact exposure.

Cloud Security AWS ScoutSuite Prowler Vulnerability Assessment Misconfiguration Remediation

Education

Degrees, certifications, and relevant coursework

Unknown

Bachelor of Technology, Computer Science & Engineering with specialization in Cyber Security

2018 - 2022

Completed a Bachelor of Technology in Computer Science & Engineering with a specialization in Cyber Security. This program provided a strong foundation in cybersecurity principles and practices.