Sundareswaran C

Experience

• 

  HackerOne

  Oct 2020 - now

  Ethical Hacker

  I’m responsible for identifying vulnerabilities and weaknesses in web applications, websites, and related systems to safeguard against potential security threats. This role plays a critical part in ensuring the security and integrity of an organization’s online assets.Key Responsibilities: Vulnerability Assessment: Conduct thorough assessments of web applications and websites to identify security vulnerabilities, including but not limited to SQL injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and more. Penetration Testing: Perform ethical hacking tests to exploit vulnerabilities and determine the potential impact of security flaws. Document findings and provide recommendations for remediation. Code Review: Analyze application source code for security issues, following best practices and coding standards. Collaborate with developers to address identified vulnerabilities. Security Analysis: Assess the overall security posture of web applications, considering factors like authentication, authorization, data encryption, and access control. Reporting: Prepare detailed reports that outline discovered vulnerabilities, their severity, and potential risks. Provide clear and actionable recommendations for mitigation. Compliance and Standards: Stay updated with industry standards, security trends, and compliance requirements (e.g., OWASP Top Ten, PCI DSS, GDPR) to ensure applications adhere to best security practices. Tools and Techniques: Utilize a variety of penetration testing tools and methodologies to simulate real-world attacks and validate security measures. Collaboration: Work closely with development and IT teams to communicate findings, assist in remediation efforts, and promote a culture of security awareness. Documentation: Maintain accurate records of testing activities, findings, and remediation progress. Ensure that all documentation meets regulatory and audit requirements. Show less