Nimmy Shakya

Experience

• 

  Midas

  Jan 2019 - Apr 2019

  Web Design Intern
• 

  Incwell

  Apr 2019 - Nov 2019

  Graphic Designer
• 

  Bits-bitmap IT solution

  Feb 2022 - May 2022

  UI Designer
• 

  Greentick

  Jun 2022 - Sept 2023

  I had the opportunity to work in a dynamic and challenging environment where I learned and honed my skills in SOC (Security Operations Center), SIEM (Security Information and Event Management), VAPT (Vulnerability Assessment and Penetration Testing) and cybersecurity. It was an exciting and rewarding experience that allowed me to develop a deep understanding of these areas and their importance in today's digital landscape. I gained hands-on experience in analyzing security incidents, detecting and responding to threats, identifying vulnerabilities, and implementing effective security measures. Overall, it was a valuable learning journey that equipped me with a diverse skill set in the field of cybersecurity. Show less

  • Cyber security researcher

    Sept 2022 - Sept 2023

  • Cyber Security

    Jun 2022 - Aug 2022
• 

  One Cover Pvt Ltd

  Dec 2023 - Feb 2024

  Penetration Testing Engineer

  Penetration Testing Expert duties and responsibilitiesOperate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, operating systems, wired and wireless networks, and mobile applications/devicesDevelop and maintain security testing plansAutomate penetration and other security testing on networks, systems and applicationsDevelop meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on riskProduce actionable, threat-based, reports on security testing resultsAct as a source of direction, training, and guidance for less experienced staffMentor and coach other IT security staff to provide guidance and expertise in their growthConsult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediationCommunicate security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors and regulatorsDeliver the annual penetration testing schedule and conducting awareness campaigns to ensure proper budgeting by business lines for annual testsFoster and maintain relationships with key stakeholders and business partners Show less