Arun S

Experience

• 

  HackerOne

  Sept 2018 - now

  Security Researcher Freelance

  ✓ Bug Bounty Hunting.✓ Web Application Security Testing.✓ Bug Reporting and Mitigation.

• 

  Chegg Inc.

  Mar 2020 - Jan 2021

  Subject Matter Expert Computer Science
• 

  S3 Infosoft

  Oct 2020 - Jan 2021

  Cyber Security Intern

  Work From Home Internship

• 

  Haryana

  Jun 2021 - Jul 2021

  Intern at Gurugram Police Cyber Security Summer Internship
• 

  Cognizant

  Aug 2021 - Jun 2022

  Security Testing Engineer

  ✓ Cloud Penetration Testing.✓ API Security Testing.✓ Web Application Static Source Code Analysis.✓ Android & iOS Source Code Analysis.✓ Web Application Vulnerability Assessment & Penetration Testing.✓ Static Application Security Testing (SAST).✓ Dynamic Application Security Testing (DAST).

• 

  Trend Micro

  Jun 2022 - now

  Information Security Specialist (R&D)

  ✓ Developed and implemented numerous Zero Day rules for attack detection, enhancing the security posture of the organization.✓ Created and maintained filters specifically designed to detect and mitigate vulnerabilities associated with Microsoft Patch Tuesday releases, ensuring timely protection against emerging threats.✓ Successfully reproduced vulnerabilities from scratch to accurately analyze and understand their intricacies, enabling the creation of effective filters and proactive defense measures.✓ Conducted thorough research and analysis of the latest security vulnerabilities and exploits, staying up to date with the evolving threat landscape.✓ Develop and Test IPS, Integrity Monitoring, and Log Inspection rules for quality, functionality, false positives and false negatives, regression, performance, etc. This involves✓ Vulnerability/attack scenario reproduction to ensure the attack is well understood and well protected against✓ Carry out testing with exploit PoCs, viruses, Metasploit, and other exploit tools.✓ Review for flaws in the rule and relevant codes which have a tendency of being logical/state/detail-oriented✓ Security patch analysis✓ Implement and design small-scale to medium-scale automation in order to simplify testing tasks, improve and assure the best quality using Perl, python, ruby, etc.✓ Vulnerability and threat monitoring✓ Vulnerability scanner execution & results analysis✓ Develop and perform test cases based on the objectives of the test✓ Script various tasks and activities by using bash, ruby, python, Perl✓ Understand and interpret the detailed information on vulnerabilities and exploits in pursuance of quality testing, test cases generation, and quality assurance✓ Utilize common tools such as VMware suite, SQL, binary editors, terminal clients, RDP clients, Metasploit, Wireshark, Burp Suite, browser’s developers’ tools Show less