Dipak Kumar Das (OSCP)

Senior Security Analyst at Safehats | Bug Hunter | Blogger

Bengaluru, Karnataka, India

Summary
Security Research Bug Bounty Hunter OWASP Vulnerabilies Information & Network Security Vulnerability Assessment Penetration Testing
I am a passionate Web Application Security Researcher. Love to play with Web application.
I am active bug bounty hunter over years . Always want to learn new things . Very much interested on cyber security
Experience

Senior Security Analyst at Safehats

Senior Security Analyst at SafeHats

Dec 2016 - Present

• Deciding the scope and out of the scope of the bug bounty program for clients. • Creating bug bounty taxonomy according to client budget for bug bounty program. • Triaging vulnerability on Safehats managed the program. • Client consulting on reported security vulnerabilities and their business impact. • Functionality, idea and workflow design of both enterprise and researcher of Safehats platform.

Security Analyst at InstaSafe

May 2016 - Present

• Conduct risk Assessments, Vulnerability Assessments and Threat Analyses periodically and consistently to identify risk to organization's information. • Responsible for Information Security, Vulnerability, Risk and Compliance implementation and adversary service for various banking applications. • Establish, monitor, evaluate and report metrics to provide management with accurate information regarding the effectiveness of information security strategy. • Determine appropriate risk treatment options to manage risk to acceptable levels. • Evaluate information security controls to determine whether they are appropriate and effectively mitigate risk to an acceptable level. • Exploit security flaws and vulnerabilities with attack simulations on multiple projects working against specific client focused scopes of work. • Designing operational documents and remediation process guides for remediation and threat information bulletins. • Conduct client reviews and analyses security vulnerability data to identify applicability and false positives. • Conduct penetration testing according to client requirement. • Testing mobile applications, Web application &Web services.

Education

B.Tech at Gandhi Engineering college

Dec 2011 - Dec 2015

image/svg+xml